802.1x strange phenomenon

王奕元 dadai.cm91 at gmail.com
Sat Nov 3 22:12:00 EDT 2007


Hello,
I still can't deal with the problem.
I have the same conf as above shows,
both hostapd and wpa_supplicant.

What I want to achieve is connecting with LAN by 802.1X.
My AP's ESSID is "MyAP"
and without any key used.

I meet two problems in my situation.

The first problem is,
after I successfully authentic with server,
I send a ARP packet to AP's IP address,
and AP respond that packet.
But, I can't receive any message at my supplicant!!
What I guess is wpa_supplicant deny those packets and drop them.
I'm sure that AP actually respond those packets,
I use another wireless-card to be a monitor.

The second problem,
every time I connect with AP and successfully authentic,
about two minutes later,
wpa shows:
*Authentication with 00:19:5b:ec:9a:70 timed out.*
*CTRL-EVENT-DISCONNECTED - Disconnect event - remove keys*
and hostapd shows:
*ath0: STA 00:19:5b:72:61:6e IEEE 802.11: disassociated*
*ioctl[unknown???]: Invalid argument*
then, my supplicant shutdown the ath0 interface.

Can someone give me some ideas to deal with these two problem?
I try my best many days and still can't handle them.

Following is my wpa_supplicant debugging message:
Initializing interface 'ath0' conf 'md5.conf' driver 'madwifi'
ctrl_interface 'N/A' bridge 'N/A'
Configuration file 'md5.conf' -> '/root/wifi/wpa_supplicant-0.6.0
/wpa_supplicant/md5.conf'
Reading configuration file '/root/wifi/wpa_supplicant-0.6.0
/wpa_supplicant/md5.conf'
Priority group 0
   id=0 ssid='MyAP'
Initializing interface (2) 'ath0'
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: KEY_RX entering state NO_KEY_RECEIVE
EAPOL: SUPP_BE entering state INITIALIZE
EAP: EAP entering state DISABLED
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
Interface ath0 set UP - waiting a second for the driver to complete
initialization
SIOCGIWRANGE: too old (short) data - assuming WPA is not supported
WEXT: Operstate: linkmode=1, operstate=5
Own MAC address: 00:19:5b:72:61:6e
wpa_driver_madwifi_del_key: keyidx=0
wpa_driver_madwifi_del_key: keyidx=1
wpa_driver_madwifi_del_key: keyidx=2
wpa_driver_madwifi_del_key: keyidx=3
wpa_driver_madwifi_set_countermeasures: enabled=0
wpa_driver_madwifi_set_drop_unencrypted: enabled=1
RSN: flushing PMKID list in the driver
Setting scan request: 0 sec 100000 usec
Added interface ath0
Ignore event for foreign ifindex 3
RTM_NEWLINK: operstate=0 ifi_flags=0x1003 ([UP])
RTM_NEWLINK, IFLA_IFNAME: Interface 'ath0' added
RTM_NEWLINK: operstate=0 ifi_flags=0x1003 ([UP])
RTM_NEWLINK, IFLA_IFNAME: Interface 'ath0' added
RTM_NEWLINK: operstate=0 ifi_flags=0x1043 ([UP][RUNNING])
Wireless event: cmd=0x8b15 len=20
Wireless event: new AP: 00:19:5b:ec:9a:70
State: DISCONNECTED -> ASSOCIATED
wpa_driver_wext_set_operstate: operstate 0->0 (DORMANT)
WEXT: Operstate: linkmode=-1, operstate=5
Associated to a new BSS: BSSID=00:19:5b:ec:9a:70
No keys have been configured - skip key clearing
Network configuration found for the current AP
WPA: clearing AP WPA IE
WPA: clearing AP RSN IE
WPA: clearing own WPA/RSN IE
EAPOL: External notification - portControl=Auto
Associated with 00:19:5b:ec:9a:70
WPA: Association event - clear replay counter
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
EAPOL: External notification - portEnabled=1
EAPOL: SUPP_PAE entering state CONNECTING
EAPOL: SUPP_BE entering state IDLE
EAP: EAP entering state INITIALIZE
EAP: EAP entering state IDLE
Setting authentication timeout: 10 sec 0 usec
Cancelling scan request
RTM_NEWLINK: operstate=0 ifi_flags=0x1043 ([UP][RUNNING])
RTM_NEWLINK, IFLA_IFNAME: Interface 'ath0' added
RTM_NEWLINK: operstate=0 ifi_flags=0x1043 ([UP][RUNNING])
Wireless event: cmd=0x8b06 len=8
EAPOL: startWhen --> 0
EAPOL: SUPP_PAE entering state CONNECTING
EAPOL: txStart
TX EAPOL: dst=00:19:5b:ec:9a:70
RX EAPOL from 00:19:5b:ec:9a:70
Setting authentication timeout: 70 sec 0 usec
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_PAE entering state RESTART
EAP: EAP entering state INITIALIZE
EAP: EAP entering state IDLE
EAPOL: SUPP_PAE entering state AUTHENTICATING
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Request id=1 method=1 vendor=0 vendorMethod=0
EAP: EAP entering state IDENTITY
CTRL-EVENT-EAP-STARTED EAP authentication started
EAP: EAP-Request Identity data - hexdump_ascii(len=5):
     68 65 6c 6c 6f                                    hello
EAP: using real identity - hexdump_ascii(len=8):
     74 65 73 74 75 73 65 72                           testuser
EAP: EAP entering state SEND_RESPONSE
EAP: EAP entering state IDLE
EAPOL: SUPP_BE entering state RESPONSE
EAPOL: txSuppRsp
TX EAPOL: dst=00:19:5b:ec:9a:70
EAPOL: SUPP_BE entering state RECEIVE
RX EAPOL from 00:19:5b:ec:9a:70
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Request id=2 method=4 vendor=0 vendorMethod=0
EAP: EAP entering state GET_METHOD
EAP: Initialize selected EAP method: vendor 0 method 4 (MD5)
CTRL-EVENT-EAP-METHOD EAP vendor 0 method 4 (MD5) selected
EAP: EAP entering state METHOD
EAP-MD5: Generating Challenge Response
EAP: method process -> ignore=FALSE methodState=DONE decision=UNCOND_SUCC
EAP: EAP entering state SEND_RESPONSE
EAP: EAP entering state IDLE
EAPOL: SUPP_BE entering state RESPONSE
EAPOL: txSuppRsp
TX EAPOL: dst=00:19:5b:ec:9a:70
EAPOL: SUPP_BE entering state RECEIVE
RX EAPOL from 00:19:5b:ec:9a:70
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Success
EAP: EAP entering state SUCCESS
CTRL-EVENT-EAP-SUCCESS EAP authentication completed successfully
EAPOL: SUPP_BE entering state RECEIVE
EAPOL: SUPP_BE entering state SUCCESS
EAPOL: SUPP_BE entering state IDLE

Until now, I think I authentic with SERVER successfully,
right?

About few minutes later, debugging message continue shows:
EAPOL: authWhile --> 0
EAPOL: startWhen --> 0
EAPOL: idleWhile --> 0
Authentication with 00:19:5b:ec:9a:70 timed out.
Added BSSID 00:19:5b:ec:9a:70 into blacklist
wpa_driver_madwifi_disassociate
No keys have been configured - skip key clearing
State: ASSOCIATED -> DISCONNECTED
wpa_driver_wext_set_operstate: operstate 0->0 (DORMANT)
WEXT: Operstate: linkmode=-1, operstate=5
EAPOL: External notification - portEnabled=0
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: SUPP_BE entering state INITIALIZE
EAP: EAP entering state DISABLED
EAPOL: External notification - portValid=0
Setting scan request: 0 sec 0 usec
State: DISCONNECTED -> SCANNING
Starting AP scan (broadcast SSID)
Trying to get current scan results first without requesting a new scan to
speed up initial association
Received 2921 bytes of scan results (12 BSSes)
Scan results: 12
Selecting BSS from priority group 0
........(a lot of AP information)
No suitable AP found.
Setting scan request: 5 sec 0 usec
CTRL-EVENT-TERMINATING - signal 2 received
Removing interface ath0
State: SCANNING -> DISCONNECTED
wpa_driver_wext_set_operstate: operstate 0->0 (DORMANT)
WEXT: Operstate: linkmode=-1, operstate=5
No keys have been configured - skip key clearing
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
wpa_driver_madwifi_set_drop_unencrypted: enabled=0
wpa_driver_madwifi_set_countermeasures: enabled=0
No keys have been configured - skip key clearing
EAP: deinitialize previously used EAP method (4, MD5) at EAP deinit
Cancelling scan request
Cancelling authentication timeout
WEXT: Operstate: linkmode=0, operstate=6
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shmoo.com/pipermail/hostap/attachments/20071104/805a3ef2/attachment.htm 


More information about the HostAP mailing list