EAP-TLS and wpa_supplicant

wpa at antrina.org wpa at antrina.org
Tue Oct 26 08:04:48 EDT 2004 

Hello,

I have a DLINK wireless router (DI-624) and freeradius 1.0.1 setup for
WPA-EAP using TLS and PEAP for authentication. This set up works very
well for a Broadcom (bcm43xx) wireless mini PCI card and a DLINK
DWL-G650 pcmcia card on a Inspiron 8600 running on Windows XP.

On linux I used the Linuxant Driverloader with the same wireless cards
and wpa_supplicant 0.2.5. I was able to get TLS and PEAP authentication
working with the wireless router. However, if the wireless network is
left idle for about 5 minutes, the network will stop working. When the
network stop working, the output of wpa_supplicant (at the end of this
email) can be seen.

If I have a traffic generator (i.e. ping at 15 seconds interval) going,
the network stays up.

I am pretty sure that the problem does not lie in DI-624 nor freeradius
as this setup works with the same wireless devices under windows.

Any help or suggestions would be much appreciated.

Thank you.

Regards,
Eric Yeo

Wireless event: cmd=0x8c02 len=207
Custom wireless event:
'ASSOCINFO(ReqIEs=000572696e6773010882848b9624b0486c32048c129860dd050010180100dd160050f20101000050f20201000050f20201000050f201 RespIEs=010882848b968c98b04832041224606cdd0c00037f020101010002a34000)'
Association info event
req_ies - hexdump(len=54): 00 05 72 69 6e 67 73 01 08 82 84 8b 96 24 b0
48 6c 32 04 8c 12 98 60 dd 05 00 10 18 01 00 dd 16 00 50 f2 01 01 00 00
50 f2 02 01 00 00 50 f2 02 01 00 00 50 f2 01
assoc_wpa_ie - hexdump(len=24): dd 16 00 50 f2 01 01 00 00 50 f2 02 01
00 00 50 f2 02 01 00 00 50 f2 01
Wireless event: cmd=0x8b15 len=20
Wireless event: new AP: 00:0d:88:85:22:15
Association event - clear replay counter
EAPOL: External notification - portValid=0
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: SUPP_BE entering state INITIALIZE
EAPOL: SUPP_PAE entering state CONNECTING
EAPOL: txStart
EAPOL: SUPP_BE entering state IDLE
EAPOL: SUPP_PAE entering state AUTHENTICATING
EAPOL: SUPP_BE entering state SUCCESS
EAPOL: SUPP_BE entering state IDLE
EAPOL: External notification - portEnabled=1
Setting authentication timeout: 10 sec 0 usec
RTM_NEWLINK, IFLA_IFNAME: Interface 'eth1' added
RX EAPOL from 00:0d:88:85:22:15
Setting authentication timeout: 70 sec 0 usec
EAPOL: Received EAP-Packet frame
WPA: EAPOL frame too short, len 47, expecting at least 99
RX EAPOL from 00:0d:88:85:22:15
EAPOL: Received EAP-Packet frame
WPA: EAPOL frame too short, len 47, expecting at least 99

More information about the HostAP mailing list