hostapd and XP Authentication Help Needed (fwd)

kshogan at nomadisp.com kshogan at nomadisp.com
Sun Jul 2 12:48:09 EDT 2006 

Hello Group,

I've been using hostap for a few years, and it works great!  Thanks Jouni!

Recently started to use hostapd as an authenication for a WPA on an atheros 
chipset using hostapd.  Versions are all 0.4.9 on a 2.6.11 kernel. My problem 
is that I am unable to get win xp to authenticate to the ap. It sees it, and 
shows it as a WPA ap, but the authentication fails.  The dump of the process is 
below.  Seems that the EAPOL Timeout may be an issue.  It connects to begin 
with, but the 4 way handshake seems to be the problem.

Does anyone have a set of working hostapd.conf configs that they would share as 
a starting point for me to customize?  Or, can anyone point to the problems 
that might be causing the errors?

Thanks in advance!
KH

Info below...

# cat hostapd.conf | grep -vh '^#' | grep -v '^$'
interface=ath2
bridge=br1
driver=madwifi
logger_syslog=-1
logger_syslog_level=2
logger_stdout=-1
logger_stdout_level=0
debug=4
dump_file=/tmp/hostapd.dump
ctrl_interface=/var/run/hostapd
ctrl_interface_group=0
ssid=ranger_private
macaddr_acl=0
auth_algs=1
wpa=1
wpa_passphrase=letmeinnow
wpa_key_mgmt=WPA-PSK
wpa_pairwise=TKIP CCMP

Dump of session with win xp home, sp2 connecting.....

# hostapd -dd hostapd.conf
Configuration file: hostapd.conf
Configure bridge br1 for EAPOL traffic.
madwifi_set_iface_flags: dev_up=0
Using interface ath2 with hwaddr 06:0b:6b:4d:99:61 and ssid 'ranger_private'
madwifi_set_ieee8021x: enabled=1
madwifi_configure_wpa: group key cipher=1
madwifi_configure_wpa: pairwise key ciphers=0xa
madwifi_configure_wpa: key management algorithms=0x2
madwifi_configure_wpa: rsn capabilities=0x0
madwifi_configure_wpa: enable WPA= 0x1
madwifi_set_iface_flags: dev_up=1
madwifi_set_privacy: enabled=1
WPA: group state machine entering state GTK_INIT
GMK - hexdump(len=32): 66 a3 11 43 e3 f2 b7 b1 a8 94 f1 ed c1 37 aa bb 00 35 72 
1f ed d1 eb b6 33 80 6d 10 15 1a eb 2f
GTK - hexdump(len=32): c6 21 68 c1 dc d0 a8 7f f0 35 8d 7b 4e b5 79 f9 68 ca 98 
7d ee 80 5e fe cc 0f 74 c9 56 77 04 e2
WPA: group state machine entering state SETKEYSDONE
madwifi_set_key: alg=TKIP addr=00:00:00:00:00:00 key_idx=1
Flushing old station entries
madwifi_sta_deauth: addr=ff:ff:ff:ff:ff:ff reason_code=3
Deauthenticate all stations
l2_packet_receive - recvfrom: Network is down
Wireless event: cmd=0x8c03 len=20
ath2: STA 00:0c:41:10:94:46 IEEE 802.11: associated
   New STA
ath2: STA 00:0c:41:10:94:46 WPA: event 1 notification
ath2: STA 00:0c:41:10:94:46 WPA: start authentication
WPA: 00:0c:41:10:94:46 WPA_PTK entering state INITIALIZE
madwifi_del_key: addr=00:0c:41:10:94:46 key_idx=0
ath2: STA 00:0c:41:10:94:46 IEEE 802.1X: unauthorizing port
madwifi_set_sta_authorized: addr=00:0c:41:10:94:46 authorized=0
WPA: 00:0c:41:10:94:46 WPA_PTK_GROUP entering state IDLE
WPA: 00:0c:41:10:94:46 WPA_PTK entering state AUTHENTICATION
WPA: 00:0c:41:10:94:46 WPA_PTK entering state AUTHENTICATION2
WPA: 00:0c:41:10:94:46 WPA_PTK entering state INITPSK
WPA: 00:0c:41:10:94:46 WPA_PTK entering state PTKSTART
ath2: STA 00:0c:41:10:94:46 WPA: sending 1/4 msg of 4-Way Handshake
TX EAPOL - hexdump(len=113): 00 0c 41 10 94 46 06 0b 6b 4d 99 61 88 8e 02 03 00 
5f fe 00 89 00 20 00 00 00 00 00 00 00 01 95 88 2e c9 72 51 79 c7 49 2c f5 f3 
0e 55 93 1f d4 02 ab 28 c2 81 fa a9 70 9d 91 17 0f 8d 95 01 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
IEEE 802.1X: 99 bytes from 00:0c:41:10:94:46
    IEEE 802.1X: version=1 type=3 length=95
ath2: STA 00:0c:41:10:94:46 WPA: received EAPOL-Key 2/2 Group with unexpected 
replay counter
expected replay counter - hexdump(len=8): 00 00 00 00 00 00 00 01
received replay counter - hexdump(len=8): 00 00 00 00 00 00 00 07
IEEE 802.1X: 5 bytes from 00:0c:41:10:94:46
    IEEE 802.1X: version=1 type=1 length=0
    ignoring 1 extra octets after IEEE 802.1X packet
ath2: STA 00:0c:41:10:94:46 WPA: EAPOL-Key timeout
WPA: 00:0c:41:10:94:46 WPA_PTK entering state PTKSTART
ath2: STA 00:0c:41:10:94:46 WPA: sending 1/4 msg of 4-Way Handshake
TX EAPOL - hexdump(len=113): 00 0c 41 10 94 46 06 0b 6b 4d 99 61 88 8e 02 03 00 
5f fe 00 89 00 20 00 00 00 00 00 00 00 02 95 88 2e c9 72 51 79 c7 49 2c f5 f3 
0e 55 93 1f d4 02 ab 28 c2 81 fa a9 70 9d 91 17 0f 8d 95 01 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
IEEE 802.1X: 125 bytes from 00:0c:41:10:94:46
    IEEE 802.1X: version=1 type=3 length=121
ath2: STA 00:0c:41:10:94:46 WPA: received EAPOL-Key frame (2/4 Pairwise)
WPA: 00:0c:41:10:94:46 WPA_PTK entering state PTKCALCNEGOTIATING
PMK - hexdump(len=32): 7a 91 27 93 a9 c1 0f b0 75 1e aa 7e 06 d0 9a 88 d8 97 f6 
6a 87 ac 6b ff 04 85 1b 30 0f 08 9d 6d
PTK - hexdump(len=64): 12 51 d8 48 2f b4 40 0d 50 b5 79 7e 85 8b a0 1f 65 86 e7 
a6 4b 0f ec 2a a2 bc 65 59 67 77 b8 13 1f a3 2c b3 22 c5 4f 8f 62 18 77 3f e8 
56 80 00 0b bc 29 45 35 d9 f9 12 4f 11 85 8e 25 61 a7 13
WPA: 00:0c:41:10:94:46 WPA_PTK entering state PTKCALCNEGOTIATING2
WPA: 00:0c:41:10:94:46 WPA_PTK entering state PTKINITNEGOTIATING
madwifi_get_seqnum: addr=00:00:00:00:00:00 idx=1
ath2: STA 00:0c:41:10:94:46 WPA: sending 3/4 msg of 4-Way Handshake
TX EAPOL - hexdump(len=141): 00 0c 41 10 94 46 06 0b 6b 4d 99 61 88 8e 02 03 00 
7b fe 01 c9 00 20 00 00 00 00 00 00 00 03 95 88 2e c9 72 51 79 c7 49 2c f5 f3 
0e 55 93 1f d4 02 ab 28 c2 81 fa a9 70 9d 91 17 0f 8d 95 01 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
9a 54 1a 86 98 f0 1c c2 93 0b f2 db 92 96 b4 5a 00 1c dd 1a 00 50 f2 01 01 00 
00 50 f2 02 02 00 00 50 f2 04 00 50 f2 02 01 00 00 50 f2 02
IEEE 802.1X: 99 bytes from 00:0c:41:10:94:46
    IEEE 802.1X: version=1 type=3 length=95
ath2: STA 00:0c:41:10:94:46 WPA: received EAPOL-Key frame (4/4 Pairwise)
WPA: 00:0c:41:10:94:46 WPA_PTK entering state PTKINITDONE
madwifi_set_key: alg=TKIP addr=00:0c:41:10:94:46 key_idx=0
ath2: STA 00:0c:41:10:94:46 IEEE 802.1X: authorizing port
madwifi_set_sta_authorized: addr=00:0c:41:10:94:46 authorized=1
madwifi_sta_clear_stats: addr=00:0c:41:10:94:46
ath2: STA 00:0c:41:10:94:46 WPA: pairwise key handshake completed (WPA)
madwifi_sta_clear_stats: addr=00:0c:41:10:94:46
WPA: 00:0c:41:10:94:46 WPA_PTK_GROUP entering state REKEYNEGOTIATING
madwifi_get_seqnum: addr=00:00:00:00:00:00 idx=1
ath2: STA 00:0c:41:10:94:46 WPA: sending 1/2 msg of Group Key Handshake
Plaintext EAPOL-Key Key Data - hexdump(len=32): c6 21 68 c1 dc d0 a8 7f f0 35 
8d 7b 4e b5 79 f9 68 ca 98 7d ee 80 5e fe cc 0f 74 c9 56 77 04 e2
TX EAPOL - hexdump(len=145): 00 0c 41 10 94 46 06 0b 6b 4d 99 61 88 8e 02 03 00 
7f fe 03 91 00 20 00 00 00 00 00 00 00 04 95 88 2e c9 72 51 79 c7 49 2c f5 f3 
0e 55 93 1f d4 02 ab 28 c2 81 fa a9 70 9d 91 17 0f 8d 95 00 d4 02 ab 28 c2 81 
fa a9 70 9d 91 17 0f 8d 95 02 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
16 a6 14 7a 0b 2a d7 30 94 54 db 69 2c e7 a2 4d 00 20 22 44 a3 f0 b0 f3 04 e5 
7e b2 26 2e 24 70 cc 45 c4 f5 9c c8 d3 3a cb da a7 9b 29 61 6d 2e 3c ba
ath2: STA 00:0c:41:10:94:46 WPA: EAPOL-Key timeout
WPA: 00:0c:41:10:94:46 WPA_PTK_GROUP entering state REKEYNEGOTIATING
madwifi_get_seqnum: addr=00:00:00:00:00:00 idx=1
ath2: STA 00:0c:41:10:94:46 WPA: sending 1/2 msg of Group Key Handshake
Plaintext EAPOL-Key Key Data - hexdump(len=32): c6 21 68 c1 dc d0 a8 7f f0 35 
8d 7b 4e b5 79 f9 68 ca 98 7d ee 80 5e fe cc 0f 74 c9 56 77 04 e2
TX EAPOL - hexdump(len=145): 00 0c 41 10 94 46 06 0b 6b 4d 99 61 88 8e 02 03 00 
7f fe 03 91 00 20 00 00 00 00 00 00 00 05 95 88 2e c9 72 51 79 c7 49 2c f5 f3 
0e 55 93 1f d4 02 ab 28 c2 81 fa a9 70 9d 91 17 0f 8d 95 00 d4 02 ab 28 c2 81 
fa a9 70 9d 91 17 0f 8d 95 03 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
e2 1d 8a d7 d3 53 42 40 7e d0 fb 98 f5 16 35 21 00 20 32 a5 b5 54 5f 6d b0 9f 
f3 6a 45 b2 be 64 44 6c 8c cc 2c 40 a1 16 bd 9b 5d 04 6f ce b7 77 fb 6a
ath2: STA 00:0c:41:10:94:46 WPA: EAPOL-Key timeout
WPA: 00:0c:41:10:94:46 WPA_PTK_GROUP entering state REKEYNEGOTIATING
madwifi_get_seqnum: addr=00:00:00:00:00:00 idx=1
ath2: STA 00:0c:41:10:94:46 WPA: sending 1/2 msg of Group Key Handshake
Plaintext EAPOL-Key Key Data - hexdump(len=32): c6 21 68 c1 dc d0 a8 7f f0 35 
8d 7b 4e b5 79 f9 68 ca 98 7d ee 80 5e fe cc 0f 74 c9 56 77 04 e2
TX EAPOL - hexdump(len=145): 00 0c 41 10 94 46 06 0b 6b 4d 99 61 88 8e 02 03 00 
7f fe 03 91 00 20 00 00 00 00 00 00 00 06 95 88 2e c9 72 51 79 c7 49 2c f5 f3 
0e 55 93 1f d4 02 ab 28 c2 81 fa a9 70 9d 91 17 0f 8d 95 00 d4 02 ab 28 c2 81 
fa a9 70 9d 91 17 0f 8d 95 04 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
6a a5 96 8c 72 6a ac 9d e8 e9 75 3f f9 29 e0 7f 00 20 00 39 3a 14 8c 8e 85 e6 
2f 20 c4 c5 48 c8 13 b4 89 01 aa 29 e1 cd 27 13 57 b3 ca f6 42 aa 9c fd
ath2: STA 00:0c:41:10:94:46 WPA: EAPOL-Key timeout
WPA: 00:0c:41:10:94:46 WPA_PTK_GROUP entering state REKEYNEGOTIATING
madwifi_get_seqnum: addr=00:00:00:00:00:00 idx=1
ath2: STA 00:0c:41:10:94:46 WPA: sending 1/2 msg of Group Key Handshake
Plaintext EAPOL-Key Key Data - hexdump(len=32): c6 21 68 c1 dc d0 a8 7f f0 35 
8d 7b 4e b5 79 f9 68 ca 98 7d ee 80 5e fe cc 0f 74 c9 56 77 04 e2
TX EAPOL - hexdump(len=145): 00 0c 41 10 94 46 06 0b 6b 4d 99 61 88 8e 02 03 00 
7f fe 03 91 00 20 00 00 00 00 00 00 00 07 95 88 2e c9 72 51 79 c7 49 2c f5 f3 
0e 55 93 1f d4 02 ab 28 c2 81 fa a9 70 9d 91 17 0f 8d 95 00 d4 02 ab 28 c2 81 
fa a9 70 9d 91 17 0f 8d 95 05 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
67 36 bc 02 24 6b 89 3d 72 13 a9 6c fd 17 55 02 00 20 27 cd 47 96 e3 ee 98 c3 
73 b7 31 79 4c 9d 4b 07 cf 8d 28 d7 96 9d 4c 95 3a a7 3c c6 2c e6 8e af
WPA: 00:0c:41:10:94:46 WPA_PTK_GROUP entering state KEYERROR
WPA: 00:0c:41:10:94:46 WPA_PTK entering state DISCONNECT
madwifi_sta_deauth: addr=00:0c:41:10:94:46 reason_code=2
WPA: 00:0c:41:10:94:46 WPA_PTK_GROUP entering state IDLE
WPA: 00:0c:41:10:94:46 WPA_PTK entering state DISCONNECTED
WPA: 00:0c:41:10:94:46 WPA_PTK entering state INITIALIZE
madwifi_del_key: addr=00:0c:41:10:94:46 key_idx=0
ioctl[unknown???]: Invalid argument
ath2: STA 00:0c:41:10:94:46 IEEE 802.1X: unauthorizing port
madwifi_set_sta_authorized: addr=00:0c:41:10:94:46 authorized=0
ioctl[unknown???]: Invalid argument
ath2: STA 00:0c:41:10:94:46 IEEE 802.11: deauthenticated due to local deauth 
request
Wireless event: cmd=0x8c04 len=20
ath2: STA 00:0c:41:10:94:46 IEEE 802.11: disassociated

More information about the HostAP mailing list