This is an old problem. Openwrt has a patch for this. What you did also remove replay from AP/Client, what is not required. Check this:<br><br><a href="http://projects.qi-hardware.com/index.php/p/openwrt-xburst/source/tree/203384ef2cc5e7fa0f0fb8626c683409e3de2338/package/madwifi/patches/458-ibss_wpa_none.patch">http://projects.qi-hardware.com/index.php/p/openwrt-xburst/source/tree/203384ef2cc5e7fa0f0fb8626c683409e3de2338/package/madwifi/patches/458-ibss_wpa_none.patch</a><br>
<br><br><br><div class="gmail_quote">On Tue, Oct 30, 2012 at 12:25 PM, Kees-Jan Hermans <span dir="ltr"><<a href="mailto:hermans@fox-it.com" target="_blank">hermans@fox-it.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hello,<br>
<br>
Madwifi can be used to have an ad-hoc crypto mode, using WPA and no key<br>
management. This is, as far as I know, the only way to use<br>
wpa_supplicant in ad-hoc mode and have some crypto. Alternatives are<br>
ad-mode in plain-text or no ad-hoc mode at all. However, the method<br>
above causes replay messages to appear (and hosts not working) when a<br>
third host is added to the mesh. To fix this, the patch below, I<br>
believe, shuts down the replay check.<br>
<br>
Sincerely,<br>
<br>
KJ<br>
<br>
diff -u -r madwifi-0.9.4-r4178-20120131/net80211/ieee80211_crypto_tkip.c<br>
madwifi-changes/net80211/ieee80211_crypto_tkip.c<br>
--- madwifi-0.9.4-r4178-20120131/net80211/ieee80211_crypto_tkip.c<br>
2011-02-02 22:22:31.000000000 +0100<br>
+++ madwifi-changes/net80211/ieee80211_crypto_tkip.c 2012-10-30<br>
11:42:19.442439586 +0100<br>
@@ -297,6 +297,7 @@<br>
tid = ((struct ieee80211_qosframe *)wh)->i_qos[0] &<br>
IEEE80211_QOS_TID;<br>
<br>
ctx->rx_rsc = READ_6(ivp[2], ivp[0], ivp[4], ivp[5], ivp[6],<br>
ivp[7]);<br>
+/*<br>
if (ctx->rx_rsc <= k->wk_keyrsc[tid]) {<br>
/*<br>
* Replay violation; notify upper layer.<br>
@@ -305,6 +306,7 @@<br>
vap->iv_stats.is_rx_tkipreplay++;<br>
return 0;<br>
}<br>
+*/<br>
/*<br>
* NB: We can't update the rsc in the key until MIC is verified.<br>
*<br>
<br>
_______________________________________________<br>
HostAP mailing list<br>
<a href="mailto:HostAP@lists.shmoo.com">HostAP@lists.shmoo.com</a><br>
<a href="http://lists.shmoo.com/mailman/listinfo/hostap" target="_blank">http://lists.shmoo.com/mailman/listinfo/hostap</a><br>
</blockquote></div><br><br clear="all"><br>-- <br>-------------------------------------------------------------------<br>Douglas Gameiro Diniz<br>Engenheiro de Computação - 2003 - UNICAMP<br><br>Mobile: (19) 92158777<br>
Gtalk: dgdiniz<br>Msn: <a href="mailto:thedougdiniz@hotmail.com" target="_blank">thedougdiniz@hotmail.com</a><br>