Problems with wpa_supplicant and Linksys WPC54G + WPA EAP-TTLS

Dan Parsons dparsons at pioneer-pra.com
Fri Dec 17 20:56:30 EST 2004 

I'm having trouble making my Linksys WPC54G (v1) card work with WPA 
(EAP-TTLS) in Linux.

Basically, I can make the card talk to a WPA-PSK access point in Linux 
with no problems, it's only when I try WPA EAP+TTLS that I fail. I know 
the EAP+TTLS access point is configured correctly because I can connect 
to it with a Windows machine and also a Mac.

The problem is simply not being able to authenticate to my access point 
set up with WPA using EAP-TTLS. I've tried it against a Cisco Aironet 
1200 and an Apple Airport Extreme. Both APs I can successfully connect 
to with eap-ttls under Windows and MacOS.

In addition to not being able to authenticate, my machine 
freezes/crashes sporadically when running wpa_supplicant.

I'm not sure if this is a wpa_supplicant or a ndiswrapper problem... 
I'm very interested in any tips you may have. I'm sitting about 10 feet 
away from the access point so I don't think it's a range problem.

Kernel "2.6.9-1.681_FC3.stk16" on Fedora Core 3 running on a Dell 
Latitude D600 laptop. I'm using a 16k stack kernel.

In addition to the below, I've also tried the latest cvs versions of 
ndiswrapper and wpa_supplicant without success.

I'm using ndiswrapper-0.12 with the bcmwl5a driver referenced for this 
card on the ndiswrapper Windows drivers page.

I'm using wpa_supplicant 0.3.1. My .config for wpa_supplicant looks 
like this:

CONFIG_DRIVER_NDISWRAPPER=y
CONFIG_EAP_TTLS=y
CONFIG_EAP_TLS=y

When I 'modprobe ndiswrapper', this shows up in dmesg:

ndiswrapper: using irq 11
divert: allocating divert_blk for wlan0
wlan0: ndiswrapper ethernet device 00:0c:41:2c:25:5d using driver 
bcmwl5a
wlan0: encryption modes supported: WEP, WPA with TKIP, WPA with AES/CCMP
ndiswrapper: driver bcmwl5a (Broadcom,04/09/2004, 3.40.69.0) added

iwconfig shows wlan0.

The wpa_supplicant command I'm using is this:

wpa_supplicant -i wlan0 -dd -c /etc/wpa_supplicant.conf

My /etc/wpa_supplicant.conf file looks like this:

#ctrl_interface=/var/run/wpa_supplicant
#ctrl_interface_group=0
ap_scan=1

network={
	ssid="SDPRA"
	proto=WPA
	key_mgmt=WPA-EAP
	auth_alg=OPEN
	pairwise=TKIP
	group=TKIP
	eap=TTLS
	identity="someuser"
	anonymous_identity="foo"
	password="someword"
	phase2="autheap=PAP"
}

The output of wpa_supplicant is at the bottom of this post.

The relevent lspci lines:

03:00.0 Network controller: Broadcom Corporation BCM4306 802.11b/g 
Wireless LAN Controller (rev 02)
03:00.0 Class 0280: 14e4:4320 (rev 02)


Initializing interface 'wlan0' conf '/etc/wpa_supplicant.conf' driver 
'default'
Configuration file '/etc/wpa_supplicant.conf' -> 
'/etc/wpa_supplicant.conf'
Reading configuration file '/etc/wpa_supplicant.conf'
ap_scan=1
Line: 5 - start of a new network block
ssid - hexdump_ascii(len=5):
      53 44 50 52 41                                    SDPRA
proto: 0x1
key_mgmt: 0x1
auth_alg: 0x1
pairwise: 0x8
group: 0x8
eap methods - hexdump(len=2): 15 00
identity - hexdump_ascii(len=7):
      70 72 61 75 73 65 72                              prauser
password - hexdump_ascii(len=6): [REMOVED]
phase2 - hexdump_ascii(len=23):
      61 75 74 68 65 61 70 3d 50 41 50 20 61 75 74 68   autheap=PAP auth
      65 61 70 3d 4d 44 35                              eap=MD5
Priority group 0
    id=0 ssid='SDPRA'
Initializing interface (2) 'wlan0'
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: KEY_RX entering state NO_KEY_RECEIVE
EAPOL: SUPP_BE entering state INITIALIZE
EAP: EAP entering state DISABLED
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
Own MAC address: 00:0c:41:2c:25:5d
Setting scan request: 0 sec 100000 usec
Starting AP scan (broadcast SSID)
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 
idleWhile=0
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 
idleWhile=0
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 
idleWhile=0
Scan timeout - try to get results
Received 941 bytes of scan results (3 BSSes)
Scan results: 3
Selecting BSS from priority group 0
0: 00:12:7f:47:f4:a0 ssid='SDPRA' wpa_ie_len=24 rsn_ie_len=0
    selected
Trying to associate with 00:12:7f:47:f4:a0 (SSID='SDPRA' freq=2452 MHz)
Cancelling scan request
Automatic auth_alg selection: 0x1
Overriding auth_alg selection: 0x1
WPA: using IEEE 802.11i/D3.0
WPA: Selected cipher suites: group 8 pairwise 8 key_mgmt 1
WPA: using GTK TKIP
WPA: using PTK TKIP
WPA: using KEY_MGMT 802.1X
WPA: Own WPA IE - hexdump(len=24): dd 16 00 50 f2 01 01 00 00 50 f2 02 
01 00 00 50 f2 02 01 00 00 50 f2 01
No keys have been configured - skip key clearing
Setting authentication timeout: 5 sec 0 usec
EAPOL: External notification - portControl=Auto
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 
idleWhile=0
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 
idleWhile=0
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 
idleWhile=0
Wireless event: cmd=0x8b15 len=20
Wireless event: new AP: 00:12:7f:47:f4:a0
Association event - clear replay counter
Associated to a new BSS: BSSID=00:12:7f:47:f4:a0
No keys have been configured - skip key clearing
Associated with 00:12:7f:47:f4:a0
EAPOL: External notification - portValid=0
EAPOL: External notification - portEnabled=1
EAPOL: SUPP_PAE entering state CONNECTING
EAPOL: txStart
TX EAPOL - hexdump(len=18): 00 12 7f 47 f4 a0 00 0c 41 2c 25 5d 88 8e 
01 01 00 00
EAPOL: SUPP_BE entering state IDLE
EAP: EAP entering state INITIALIZE
EAP: EAP entering state IDLE
Setting authentication timeout: 10 sec 0 usec
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=29 
idleWhile=59
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=28 
idleWhile=58
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=27 
idleWhile=57
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=26 
idleWhile=56
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=25 
idleWhile=55
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=24 
idleWhile=54
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=23 
idleWhile=53
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=22 
idleWhile=52
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=21 
idleWhile=51
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=20 
idleWhile=50
Authentication with 00:12:7f:47:f4:a0 timed out.
No keys have been configured - skip key clearing
EAPOL: External notification - portEnabled=0
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: SUPP_BE entering state INITIALIZE
EAP: EAP entering state DISABLED
EAPOL: External notification - portValid=0
Setting scan request: 0 sec 0 usec
Starting AP scan (broadcast SSID)
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=19 
idleWhile=49
Wireless event: cmd=0x8b15 len=20
Wireless event: new AP: 00:12:7f:47:f4:a0
Association event - clear replay counter
Associated with 00:12:7f:47:f4:a0
EAPOL: External notification - portValid=0
EAPOL: External notification - portEnabled=1
EAPOL: SUPP_PAE entering state CONNECTING
EAPOL: txStart
TX EAPOL - hexdump(len=18): 00 12 7f 47 f4 a0 00 0c 41 2c 25 5d 88 8e 
01 01 00 00
EAPOL: SUPP_BE entering state IDLE
EAP: EAP entering state INITIALIZE
EAP: EAP entering state IDLE
Setting authentication timeout: 10 sec 0 usec
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=29 
idleWhile=59
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=28 
idleWhile=58
Scan timeout - try to get results
Received 941 bytes of scan results (3 BSSes)
Scan results: 3
Selecting BSS from priority group 0
0: 00:0c:41:ad:05:fb ssid='NICE_TRY_WARDRIVER' wpa_ie_len=24 
rsn_ie_len=0
    skip - SSID mismatch
1: 00:12:7f:47:f4:a0 ssid='SDPRA' wpa_ie_len=24 rsn_ie_len=0
    selected
Trying to associate with 00:12:7f:47:f4:a0 (SSID='SDPRA' freq=2452 MHz)
Cancelling scan request
Automatic auth_alg selection: 0x1
Overriding auth_alg selection: 0x1
WPA: using IEEE 802.11i/D3.0
WPA: Selected cipher suites: group 8 pairwise 8 key_mgmt 1
WPA: using GTK TKIP
WPA: using PTK TKIP
WPA: using KEY_MGMT 802.1X
WPA: Own WPA IE - hexdump(len=24): dd 16 00 50 f2 01 01 00 00 50 f2 02 
01 00 00 50 f2 02 01 00 00 50 f2 01
No keys have been configured - skip key clearing
Setting authentication timeout: 5 sec 0 usec
EAPOL: External notification - portControl=Auto
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=27 
idleWhile=57
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=26 
idleWhile=56
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=25 
idleWhile=55
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=24 
idleWhile=54
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=23 
idleWhile=53
Authentication with 00:12:7f:47:f4:a0 timed out.
No keys have been configured - skip key clearing
EAPOL: External notification - portEnabled=0
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: SUPP_BE entering state INITIALIZE
EAP: EAP entering state DISABLED
EAPOL: External notification - portValid=0
Setting scan request: 0 sec 0 usec
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=22 
idleWhile=52
Starting AP scan (broadcast SSID)
Wireless event: cmd=0x8b15 len=20
Wireless event: new AP: 00:12:7f:47:f4:a0
Association event - clear replay counter
Associated with 00:12:7f:47:f4:a0
EAPOL: External notification - portValid=0
EAPOL: External notification - portEnabled=1
EAPOL: SUPP_PAE entering state CONNECTING
EAPOL: txStart
TX EAPOL - hexdump(len=18): 00 12 7f 47 f4 a0 00 0c 41 2c 25 5d 88 8e 
01 01 00 00
EAPOL: SUPP_BE entering state IDLE
EAP: EAP entering state INITIALIZE
EAP: EAP entering state IDLE
Setting authentication timeout: 10 sec 0 usec
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=29 
idleWhile=59
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=28 
idleWhile=58
Scan timeout - try to get results
Received 941 bytes of scan results (3 BSSes)
Scan results: 3
Selecting BSS from priority group 0
0: 00:12:7f:47:f4:a0 ssid='SDPRA' wpa_ie_len=24 rsn_ie_len=0
    selected
Trying to associate with 00:12:7f:47:f4:a0 (SSID='SDPRA' freq=2452 MHz)
Cancelling scan request
Automatic auth_alg selection: 0x1
Overriding auth_alg selection: 0x1
WPA: using IEEE 802.11i/D3.0
WPA: Selected cipher suites: group 8 pairwise 8 key_mgmt 1
WPA: using GTK TKIP
WPA: using PTK TKIP
WPA: using KEY_MGMT 802.1X
WPA: Own WPA IE - hexdump(len=24): dd 16 00 50 f2 01 01 00 00 50 f2 02 
01 00 00 50 f2 02 01 00 00 50 f2 01
No keys have been configured - skip key clearing
Setting authentication timeout: 5 sec 0 usec
EAPOL: External notification - portControl=Auto
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=27 
idleWhile=57
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=26 
idleWhile=56
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=25 
idleWhile=55
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=24 
idleWhile=54
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=23 
idleWhile=53
Signal 2 received - terminating
No keys have been configured - skip key clearing
EAPOL: External notification - portEnabled=0
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: SUPP_BE entering state INITIALIZE
EAP: EAP entering state DISABLED
EAPOL: External notification - portValid=0


Dan Parsons
Systems Administrator
Pioneer Research Center USA, Inc.

More information about the HostAP mailing list