FreeBSD + EAP/TLS + IPv6 != OK
Henrik Brix Andersen
brix at gentoo.org
Mon Feb 13 13:25:11 EST 2006
Hi Jouni,
On Wed, Dec 14, 2005 at 10:46:13AM +0100, Henrik Brix Andersen wrote:
> On Wed, Dec 07, 2005 at 10:52:59PM +0200, Sébastien Pierrel wrote:
> > Jouni Malinen wrote:
> > > Have you tried whether IPv4 broadcast packets are received correctly?
> >
> > Yes, they are.
>
> Same here. IPv4 broadcasts gets through, but IPv6 broadcasts seems to
> be mangled somewhere along the way as seen on
> http://www.bughost.org/bugzilla/show_bug.cgi?id=810#c6
>
> I really have no idea on where to go next in order to debug this
> thing... Any help will be greatly appreciated.
I have just confirmed that this problem also exists with the following
setup:
AP: linux-2.6.15.4 + hostap-driver-0.4.7 + hostapd-0.5.1 + WPA2-PSK
CCMP + radvd-0.9.1
STA: linux-2.6.15.4 + hostap-driver-0.4.7 + wpa_supplicant-0.5.1
Whenever radvd sends out an ICMP6 router advertisement the following
messages are printed in the STA syslog:
Feb 13 19:10:43 fangorn CCMP: decrypt failed: STA=00:02:6f:37:fc:68
Feb 13 19:10:43 fangorn wifi0: decryption failed (SA=00:02:6f:37:fc:68) res=-5
A tcpdump running on the AP shows the ICMP6 router advertisements just
fine.
So it would seem that this is related to either hostapd or
wpa_supplicant - not ipw2200/ieee80211 as first assumed
(see http://bughost.org/bugzilla/show_bug.cgi?id=810)?
Hope someone will be able to reproduce this problem.
Regards,
Brix
--
Henrik Brix Andersen <brix at gentoo.org>
Gentoo Metadistribution | Mobile computing herd
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 211 bytes
Desc: not available
Url : http://lists.shmoo.com/pipermail/hostap/attachments/20060213/e4a443d6/attachment.pgp
More information about the HostAP
mailing list