Thanks for answer!<br><br><div><span class="gmail_quote">On 2/14/07, <b class="gmail_sendername">Jouni Malinen</b> <<a href="mailto:jkmaline@cc.hut.fi">jkmaline@cc.hut.fi</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
On Mon, Feb 12, 2007 at 12:38:38AM +0100, Mikhail Kostousov wrote:<br><br>> My provider required 802.1X authorization with dynamic WEP keys for wired<br>> network. I've got it from my desktop computer, with next config:
<br><br>Dynamic WEP keys for wired network?? I've never heard of anyone using<br>WEP on wired network nor am I aware of any driver supporting such a<br>thing..<br><br>> ap_scan=0<br>> network={<br>> key_mgmt=IEEE8021X WPA-EAP
<br><br>WPA-EAP should not be here; WPA is only used with wireless networks.</blockquote><div><br>Ok. I removed it. <br></div><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
> eap=PEAP<br>> phase2="auth=MSCHAPV2"<br>> identity= (my user)<br>> password= (my password)<br><br>I would assume the dynamic WEP part is bogus and you would need to add<br>
eapol_flags=0 to make wpa_supplicant not wait for dynamic keys.</blockquote><div><br>I've added eapol_flags=0 <br></div><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
> With command:<br>> wpa_supplicant -ieth0 -Dwired -c wpa_supplicant_wired.conf -dd<br>><br>> After that I compiled wpa_supplicant for my router, and tried to do such<br>> thing with router. I got following log:
<br>><br>> Initializing interface 'vlan1' conf 'wpa_supplicant.conf' driver 'wired'</blockquote><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
This does not match with your command line above (eth0 vs. vlan1). Which<br>one it is? Is this with a created from eth0?</blockquote><div><br>eth0 is ethernet adapter on my laptop (which connects with this configuration perfectly),
<br>vlan1 is VAN interface of my router (it is wired interface). <br>I tried new configuration on laptop and on router:<br><br>ctrl_interface=/var/run/wpa_supplicant<br>ap_scan=0<br>network={<br> key_mgmt=IEEE8021X
<br> eap=PEAP<br> eapol_flags=0<br> phase2="auth=MSCHAPV2"<br> identity="xxxxx"<br> password="xxxxx"<br><br>}<br><br>Laptop connected fine, by router has the same problem... :( I don't know why... The log from router:
<br></div><br><br><br><br>Initializing interface 'vlan1' conf 'wpa_supplicant.conf.1' driver 'wired' ctrl_interface 'N/A' bridge 'N/A'<br>Configuration file 'wpa_supplicant.conf.1' -> '/tmp/harddisk/wpa_supplicant.conf.1'
<br>Reading configuration file '/tmp/harddisk/wpa_supplicant.conf.1'<br>ctrl_interface='/var/run/wpa_supplicant'<br>ap_scan=0<br>Line: 5 - start of a new network block<br>key_mgmt: 0x8<br>eap methods - hexdump(len=16): 00 00 00 00 19 00 00 00 00 00 00 00 00 00 00 00
<br>eapol_flags=0 (0x0)<br>phase2 - hexdump_ascii(len=13):<br> xx xx xx xx xx xx xx xx xx xx xx xx xx auth=MSCHAPV2<br>identity - hexdump_ascii(len=7):<br> xx xx xx xx xx xx xx xxxxxx
<br>password - hexdump_ascii(len=8): [REMOVED]<br>Priority group 0<br> id=0 ssid=''<br>Initializing interface (2) 'vlan1'<br>EAPOL: SUPP_PAE entering state DISCONNECTED<br>EAPOL: KEY_RX entering state NO_KEY_RECEIVE
<br>EAPOL: SUPP_BE entering state INITIALIZE<br>EAP: EAP entering state DISABLED<br>EAPOL: External notification - portEnabled=0<br>EAPOL: External notification - portValid=0<br>wpa_driver_wired_init: Added multicast membership with packet socket
<br>Own MAC address: 00:15:f2:88:fb:31<br>Setting scan request: 0 sec 100000 usec<br>Added interface vlan1<br>EAPOL: External notification - portControl=Auto<br>Already associated with a configured network - generating associated event
<br>Association info event<br>State: DISCONNECTED -> ASSOCIATED<br>Associated to a new BSS: BSSID=01:80:c2:00:00:03<br>No keys have been configured - skip key clearing<br>Network configuration found for the current AP<br>
WPA: clearing AP WPA IE<br>WPA: clearing AP RSN IE<br>WPA: clearing own WPA/RSN IE<br>EAPOL: External notification - portControl=Auto<br>Associated with 01:80:c2:00:00:03<br>WPA: Association event - clear replay counter<br>
EAPOL: External notification - portEnabled=0<br>EAPOL: External notification - portValid=0<br>EAPOL: External notification - portEnabled=1<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_BE entering state IDLE
<br>EAP: EAP entering state INITIALIZE<br>EAP: EAP entering state IDLE<br>Cancelling scan request<br>EAPOL: startWhen --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: txStart<br>TX EAPOL - hexdump(len=4): 01 01 00 00
<br>EAPOL: startWhen --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: txStart<br>TX EAPOL - hexdump(len=4): 01 01 00 00<br>EAPOL: idleWhile --> 0<br>EAP: EAP entering state FAILURE<br>CTRL-EVENT-EAP-FAILURE EAP authentication failed
<br>EAPOL: SUPP_PAE entering state AUTHENTICATING<br>EAPOL: SUPP_BE entering state FAIL<br>EAPOL: SUPP_PAE entering state HELD<br>EAPOL: SUPP_BE entering state IDLE<br>EAPOL: startWhen --> 0<br>EAPOL: heldWhile --> 0
<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_PAE entering state AUTHENTICATING<br>EAPOL: SUPP_BE entering state FAIL<br>EAPOL: SUPP_PAE entering state HELD<br>EAPOL: SUPP_BE entering state IDLE<br>EAPOL: startWhen --> 0
<br>EAPOL: heldWhile --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_PAE entering state AUTHENTICATING<br>EAPOL: SUPP_BE entering state FAIL<br>EAPOL: SUPP_PAE entering state HELD<br>EAPOL: SUPP_BE entering state IDLE
<br>EAPOL: startWhen --> 0<br>EAPOL: heldWhile --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_PAE entering state AUTHENTICATING<br>EAPOL: SUPP_BE entering state FAIL<br>EAPOL: SUPP_PAE entering state HELD
<br>EAPOL: SUPP_BE entering state IDLE<br>EAPOL: startWhen --> 0<br>EAPOL: heldWhile --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_PAE entering state AUTHENTICATING<br>EAPOL: SUPP_BE entering state FAIL
<br>EAPOL: SUPP_PAE entering state HELD<br>EAPOL: SUPP_BE entering state IDLE<br>EAPOL: startWhen --> 0<br>EAPOL: heldWhile --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_PAE entering state AUTHENTICATING
<br>EAPOL: SUPP_BE entering state FAIL<br>EAPOL: SUPP_PAE entering state HELD<br>EAPOL: SUPP_BE entering state IDLE<br><br><br><br><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
> I've tried to compare log of router and of desktop, and I found that<br>> difference begin from line "EAPOL: idleWhile --> 0". Desktop doesn't have<br>> this line. It has "RX EAPOL from 00:15:62:a3:53:86".
<br>><br>> I cannot understand, why it happens on router. I am using the same<br>> configuration of wpa_supplicant, the same configuration of compilation<br>> (exclude options for CC compiler).<br><br>Are you using the same ethernet configuration (vlan vs. no vlan)?
<br><br>--<br>Jouni Malinen PGP id EFC895FA<br>_______________________________________________<br>HostAP mailing list<br><a href="mailto:HostAP@shmoo.com">HostAP@shmoo.com</a><br>
<a href="http://lists.shmoo.com/mailman/listinfo/hostap">http://lists.shmoo.com/mailman/listinfo/hostap</a><br></blockquote></div><br>