Is this setting correct?

Jouni Malinen jkmaline at cc.hut.fi
Wed May 31 22:31:15 EDT 2006


On Sun, May 28, 2006 at 01:39:45AM +1000, Nicholas Chan wrote:

> Hi i'm trying to setup an adhoc network using wpa. group=TKIP worked
> perfectly for me but i would like to try group=CCMP.

>  pairwise=NONE
>  group=CCMP

> Line 21: removed CCMP from group cipher list since it was not allowed
> for pairwise cipher

>  Could anyone help me with this? Why is CCMP not allowed for pairwise
> cipher? Am i missing out something here?

That's a bug. CCMP needs to be removed when only TKIP is allowed as a
pairwise cipher, but it should not have been removed in this case. This
is now fixed in CVS (0.5.x branch). You can also fix this with following
change:


Index: config_file.c
===================================================================
RCS file: /home/jm/cvsroot/hostap/wpa_supplicant/config_file.c,v
retrieving revision 1.15
diff -u -p -u -p -r1.15 config_file.c
--- config_file.c	6 May 2006 16:12:46 -0000	1.15
+++ config_file.c	1 Jun 2006 02:27:32 -0000
@@ -138,7 +138,8 @@ static struct wpa_ssid * wpa_config_read
 	}
 
 	if ((ssid->group_cipher & WPA_CIPHER_CCMP) &&
-	    !(ssid->pairwise_cipher & WPA_CIPHER_CCMP)) {
+	    !(ssid->pairwise_cipher & WPA_CIPHER_CCMP) &&
+	    !(ssid->pairwise_cipher & WPA_CIPHER_NONE)) {
 		/* Group cipher cannot be stronger than the pairwise cipher. */
 		wpa_printf(MSG_DEBUG, "Line %d: removed CCMP from group cipher"
 			   " list since it was not allowed for pairwise "


-- 
Jouni Malinen                                            PGP id EFC895FA



More information about the HostAP mailing list