Could not get PMK

David Dudley DavidDu at cctexas.com
Fri May 23 13:37:11 EDT 2008


So....

Does that mean that I have something in Radius (freeradius2) configured
wrong??

Is there a keyword that should be included in the user definition, or
the eap definition for that?

I'm new to this wireless stuff, and still trying to work out which way
is up.

David

>>> Bryan Kadzban <bryan at kadzban.is-a-geek.net> 5/23/2008 11:33:22 AM
>>>
On Fri, May 23, 2008 at 10:16:05AM -0500, David Dudley wrote:
> OK, what is PMK

Pairwise Master Key.  It's the key that WPA and WPA2 both use to
derive
the Pairwise Temporal Keys (PTKs) that actually encrypt the data.

If you use WPA-PSK (or WPA2-PSK), then the PMK has the same value as
the
PSK, although this is a large hex number, not a string (there's a
fixed
algorithm that combines an ASCII string with the SSID to generate this
hex number).

If you use WPA-EAP, then the RADIUS server is supposed to generate the
PMK randomly.

> and why couldn't hostapd get it?

I don't know for sure.  I can guess that it's something to do with the
fact that it's running on NetBSD, but that's purely a guess.

To troubleshoot, it will probably help to get debugging output from
hostapd (and possibly also the client on the other end of the
association, but that's probably not needed yet).


-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: David Dudley.vcf
Url: http://lists.shmoo.com/pipermail/hostap/attachments/20080523/1c481ca1/attachment.txt 


More information about the HostAP mailing list