wpa_supplicant -> EAP-TTLS/PAP, madwifi-ng (Atheros), problem
Dan Williams
dcbw
Tue Oct 10 13:08:43 PDT 2006
On Tue, 2006-10-10 at 21:36 +0200, sabx wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Dan Williams wrote:
> > What does an 'iwlist <device> scan' show for it? (sorry if I already
> > asked for one). The kismet dump doesn't show what encryption methods
> > the AP supports for the group and pairwise keys, which is pretty
> > important here.
>
> `iwlist ath0 scan' show exactly the same result as kismet.
> Sory, can't paste the output, i'm too far away from AP now..
> Today, i haved tried the same thing with xsupplicant+wpa_supplicant.
Right; but we need that output. It won't be exactly the same as kismet,
because the iwlist scna reports the Group and Pairwise keys
_separately_, but the kismet output you've posted doesn't seem to break
them apart. We need the iwlist scan output, not the kismet stuff.
There's a difference and a reason why I asked for it specifically. It
will allow us to see _exactly_ what the AP says it supports, which the
kismet output did not show.
Dan
> - --------- wpa_supplicant.conf ---------
> ap_scan=2
>
> network={
> ssid="SSID"
> scan_ssid=1
> key_mgmt=WPA-EAP
> }
> - ---------------------------------------
>
> - ------------------------- xsupplicant.conf -------------------------
> network_list = all
> default_netname = SSID
>
> SSID
> {
> type = wireless
> allow_types = eap_ttls
> identity = <BEGIN_ID>username<END_ID>
>
> eap-ttls
> {
> root_cert = NONE
> phase2_type = pap
> pap {
> username = <BEGIN_UNAME>username<END_UNAME>
> password = <BEGIN_PASS>password<END_PASS>
> }
> }
> }
> - --------------------------------------------------------------------
>
> # wpa_supplicant -iath0 -Dmadwifi -c wpa_supplicant.conf
> # xsupplicant -iath0 -c xsupplicant.conf -W
>
> And...the result is:
> - ---------- xsupplicant output ----------------
>
> ........ output ommited .........
> Authenticated!
> Sending master key to wpa_supplicant.
> Processing EAPoL-Key!
> Unknown EAPoL Key Descriptor (2)!
> Processing EAPoL-Key!
> Unknown EAPoL Key Descriptor (2)!
> Processing EAPoL-Key!
> Unknown EAPoL Key Descriptor (2)!
> Processing EAPoL-Key!
> Unknown EAPoL Key Descriptor (2)!
> - ----------------------------------------------
>
> - ----------------- wpa_supplicant output --------------------
> Trying to associate with SSID 'SSID'
> Associated with 01:23:45:67:89:00
> CTRL-EVENT-EAP-STARTED EAP authentication started
> EAP: buildIdentity: identity configuration was not available
> CTRL-REQ-IDENTITY-0:Identity needed for SSID SSID
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> WPA: Unsupported EAPOL-Key descriptor version 0.
> CTRL-EVENT-TERMINATING - signal 2 received
> - -------------------------------------------------------------
>
>
> Damn...what can I say?
> I'm totaly confused.
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.1 (GNU/Linux)
>
> iD8DBQFFK/YyaNvjm+L6cN4RAgzmAJ98T+42PjXrOehmox4sykgvc9ZStQCeJbOn
> AaTd5dirMI6DUokJ88AS7q8=
> =ERHW
> -----END PGP SIGNATURE-----
More information about the Hostap
mailing list