cant ping from qnx AP (running hostapd) to wireless client and vice versa, after client status shows 'connected'

Jouni Malinen j at w1.fi
Fri May 29 14:14:28 EDT 2009


On Wed, May 27, 2009 at 04:44:54AM -0700, joyce tanks wrote:

> I'm trying to run hostapd (0.6.4) on QNX (RTOS) board using the configuration below.  The driver for QNX is BSD net80211 layer.

How much effort was there in getting hostapd running on QNX?

> I'm running hostapd with the -d option now, I get the messages below.
> I'm
> new to this so I'm not sure whats going on.  I made sure I entered the
> correct password "password"too. I see the error 'Could not set station
> 00:21:5c:88:ea:99 flags for kernel driver (errno=22)'. Does anyone know
> whats happening?

It looks like the 4-way handshake is completed successfully which means
that EAPOL frame transmission and reception is working fine. However,
the following group key handshake fails due to not receiving a response
to the message 1/2:

> run0: STA 00:21:5c:88:ea:99 WPA: pairwise key handshake completed (WPA)
> WPA: 00:21:5c:88:ea:99 WPA_PTK_GROUP entering state REKEYNEGOTIATING
> bsd_get_seqnum: addr=00:00:00:00:00:00 idx=1
> run0: STA 00:21:5c:88:ea:99 WPA: sending 1/2 msg of Group Key Handshake
> WPA: Send EAPOL(version=2 secure=1 mic=1 ack=1 install=0 pairwise=0 kde_len=16 keyidx=1 encr=1)
> run0: STA 00:21:5c:88:ea:99 WPA: EAPOL-Key timeout
...
> WPA: 00:21:5c:88:ea:99 WPA_PTK_GROUP entering state KEYERROR
> WPA: 00:21:5c:88:ea:99 WPA_PTK entering state DISCONNECT
> hostapd_wpa_auth_disconnect: WPA authenticator requests disconnect: STA 00:21:5c:88:ea:99 reason 2
> bsd_sta_deauth: addr=00:21:5c:88:ea:99 reason_code=2

The group key message 1/2 is the first encrypted frame in the
connection, so my first guess would be that either encryption was
configured incorrectly or the driver is somehow unable to encrypt this
message or decrypt the message 2/2 from the supplicant. You should be
able to use a wireless sniffer to confirm whether either of these
message show up in the air (though, they would be encrypted, so you
would need to search for the frames that come immediately after the
4-way handshake EAPOL-Key frames).

-- 
Jouni Malinen                                            PGP id EFC895FA


More information about the HostAP mailing list