Is Cisco 4012 "Airespace" WPA-PSK implementation faulty?

Holger Schurig hs4233 at mail.mn-solutions.de
Fri Jan 13 05:42:27 EST 2006 

I have a problem with a Cisco HS-4012 Controller+AccessPoint system.

When I roam from one AP to the other, then for about 8 Seconds I'm 
"disconnected". I made a trace using "wpa_supplicant -i eth1 -D hermes 
-c /etc/wpa_supplicant.conf -d -d -t -K" with those 4012 system and one with 
1200 APs, where it worked.

When I grep for "State:", I see an obvious difference. First the fast one with 
the 1200:

Apr 22 02:20:06.515947: State: COMPLETED -> ASSOCIATED
Apr 22 02:20:06.712836: State: ASSOCIATED -> 4WAY_HANDSHAKE
Apr 22 02:20:06.753073: State: 4WAY_HANDSHAKE -> 4WAY_HANDSHAKE
Apr 22 02:20:06.846492: State: 4WAY_HANDSHAKE -> 4WAY_HANDSHAKE
Apr 22 02:20:06.878548: State: 4WAY_HANDSHAKE -> GROUP_HANDSHAKE
Apr 22 02:20:07.064605: State: GROUP_HANDSHAKE -> GROUP_HANDSHAKE
Apr 22 02:20:07.092648: State: GROUP_HANDSHAKE -> COMPLETED
Apr 22 02:20:07.100233: State: COMPLETED -> GROUP_HANDSHAKE
Apr 22 02:20:07.132660: State: GROUP_HANDSHAKE -> COMPLETED


And now the slow one for the 4012:

Apr 22 02:52:03.826198: State: COMPLETED -> 4WAY_HANDSHAKE
Apr 22 02:52:05.113043: State: 4WAY_HANDSHAKE -> 4WAY_HANDSHAKE
Apr 22 02:52:07.152616: State: 4WAY_HANDSHAKE -> 4WAY_HANDSHAKE
Apr 22 02:52:09.563069: State: 4WAY_HANDSHAKE -> ASSOCIATED
Apr 22 02:52:09.580852: State: ASSOCIATED -> 4WAY_HANDSHAKE
Apr 22 02:52:09.716334: State: 4WAY_HANDSHAKE -> 4WAY_HANDSHAKE
Apr 22 02:52:09.748514: State: 4WAY_HANDSHAKE -> GROUP_HANDSHAKE
Apr 22 02:52:11.263727: State: GROUP_HANDSHAKE -> GROUP_HANDSHAKE
Apr 22 02:52:11.282870: State: GROUP_HANDSHAKE -> COMPLETED

That's more than 7 Seconds !

I'm getting an Observer 9 log by e-mail today, to see what happens on the air.

Currently I assume that either wpa_supplicant or the 4012 violates the WPA-PSK 
state machine. But if it does, then Windows XP's WPA-PSK code handles this, 
because with XP there's no such long delay.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: wpa-log.cisco4012.gz
Type: application/x-gzip
Size: 7381 bytes
Desc: not available
Url : http://lists.shmoo.com/pipermail/hostap/attachments/20060113/8b4dd354/attachment.bin

More information about the HostAP mailing list