wpa_supplicant -> EAP-TTLS/PAP, madwifi-ng (Atheros), problem

Dan Williams dcbw at redhat.com
Tue Oct 10 16:08:43 EDT 2006


On Tue, 2006-10-10 at 21:36 +0200, sabx wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Dan Williams wrote:
> > What does an 'iwlist <device> scan' show for it?  (sorry if I already
> > asked for one).  The kismet dump doesn't show what encryption methods
> > the AP supports for the group and pairwise keys, which is pretty
> > important here.
> 
> `iwlist ath0 scan' show exactly the same result as kismet.
> Sory, can't paste the output, i'm too far away from AP now..
> Today, i haved tried the same thing with xsupplicant+wpa_supplicant.

Right; but we need that output.  It won't be exactly the same as kismet,
because the iwlist scna reports the Group and Pairwise keys
_separately_, but the kismet output you've posted doesn't seem to break
them apart.  We need the iwlist scan output, not the kismet stuff.
There's a difference and a reason why I asked for it specifically.  It
will allow us to see _exactly_ what the AP says it supports, which the
kismet output did not show.

Dan


> - --------- wpa_supplicant.conf ---------
> ap_scan=2
> 
> network={
>         ssid="SSID"
>         scan_ssid=1
>         key_mgmt=WPA-EAP
> }
> - ---------------------------------------
> 
> - ------------------------- xsupplicant.conf -------------------------
> network_list = all
> default_netname = SSID
> 
> SSID
> {
>         type = wireless
>         allow_types = eap_ttls
>         identity = <BEGIN_ID>username<END_ID>
> 
>         eap-ttls
>         {
>                 root_cert = NONE
>                 phase2_type = pap
>                 pap {
>                         username = <BEGIN_UNAME>username<END_UNAME>
>                         password = <BEGIN_PASS>password<END_PASS>
>                 }
>         }
> }
> - --------------------------------------------------------------------
> 
> # wpa_supplicant -iath0 -Dmadwifi -c wpa_supplicant.conf
> # xsupplicant -iath0 -c xsupplicant.conf -W
> 
> And...the result is:
> - ---------- xsupplicant output ----------------
> 
>     ........ output ommited .........
> Authenticated!
> Sending master key to wpa_supplicant.
> Processing EAPoL-Key!
> Unknown EAPoL Key Descriptor (2)!
> Processing EAPoL-Key!
> Unknown EAPoL Key Descriptor (2)!
> Processing EAPoL-Key!
> Unknown EAPoL Key Descriptor (2)!
> Processing EAPoL-Key!
> Unknown EAPoL Key Descriptor (2)!
> - ----------------------------------------------
> 
> - ----------------- wpa_supplicant output --------------------
> Trying to associate with SSID 'SSID'
> Associated with 01:23:45:67:89:00
> CTRL-EVENT-EAP-STARTED EAP authentication started
> EAP: buildIdentity: identity configuration was not available
> CTRL-REQ-IDENTITY-0:Identity needed for SSID SSID
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> CTRL-EVENT-TERMINATING - signal 2 received
> - -------------------------------------------------------------
> 
> 
> Damn...what can I say?
> I'm totaly confused.
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.1 (GNU/Linux)
> 
> iD8DBQFFK/YyaNvjm+L6cN4RAgzmAJ98T+42PjXrOehmox4sykgvc9ZStQCeJbOn
> AaTd5dirMI6DUokJ88AS7q8=
> =ERHW
> -----END PGP SIGNATURE-----




More information about the HostAP mailing list