HostAP Wired Configuration Problem
Ronny Ko
hrko at g.harvard.edu
Mon Jul 31 12:08:55 PDT 2017
Hi,
I am trying to authenticate a client machine connected to my AP via
LAN. I set up configuration files for HostAPaccordingly. If I run
HostAP, FreeRadius authentication succeeds. However, after HostAP
received success message from FreeRadius, doesn't proceed to
AP-STA-CONNECTED STATE, like in the case of wireless authentication.
For LAN authentication, HostAP's final logs are:
----------------------------------------------------------------
enx00e04c5394ce: RADIUS Received 167 bytes from RADIUS server
enx00e04c5394ce: RADIUS Received RADIUS message
enx00e04c5394ce: STA a0:ce:c8:12:e4:ae RADIUS: Received RADIUS packet
matched with a pending request, round trip time 0.00 sec
RADIUS packet matching with station a0:ce:c8:12:e4:ae
MS-MPPE-Send-Key - hexdump(len=32): [REMOVED]
MS-MPPE-Recv-Key - hexdump(len=32): [REMOVED]
enx00e04c5394ce: STA a0:ce:c8:12:e4:ae IEEE 802.1X: old identity
'teemu' updated with User-Name from Access-Accept 'teemu'
enx00e04c5394ce: STA a0:ce:c8:12:e4:ae IEEE 802.1X: decapsulated EAP
packet (code=3 id=110 len=4) from RADIUS server: EAP Success
EAP: EAP entering state SUCCESS2
IEEE 802.1X: a0:ce:c8:12:e4:ae BE_AUTH entering state SUCCESS
enx00e04c5394ce: STA a0:ce:c8:12:e4:ae IEEE 802.1X: Sending EAP Packet
(identifier 110)
IEEE 802.1X: a0:ce:c8:12:e4:ae BE_AUTH entering state IDLE
------------------------------------------------------------------
But if I test wireless authentication, get the following additional
logs, all the way up to AP-STA-CONNECTED:
--------------------------------------------------------------
WPA: e4:a7:a0:b7:f7:dc WPA_PTK entering state PTKCALCNEGOTIATING2
WPA: e4:a7:a0:b7:f7:dc WPA_PTK entering state PTKINITNEGOTIATING
wlp1s0: STA e4:a7:a0:b7:f7:dc WPA: sending 3/4 msg of 4-Way Handshake
WPA: Send EAPOL(version=2 secure=1 mic=1 ack=1 install=1 pairwise=1
kde_len=50 keyidx=1 encr=1)
WPA: Replay Counter - hexdump(len=8): 00 00 00 00 00 00 00 02
Plaintext EAPOL-Key Key Data - hexdump(len=64): [REMOVED]
WPA: Use EAPOL-Key timeout of 100 ms (retry counter 1)
wlp1s0: Event EAPOL_TX_STATUS (38) received
IEEE 802.1X: e4:a7:a0:b7:f7:dc TX status - version=2 type=3 length=159 - ack=1
WPA: EAPOL-Key TX status for STA e4:a7:a0:b7:f7:dc ack=1
wlp1s0: Event EAPOL_RX (24) received
IEEE 802.1X: 99 bytes from e4:a7:a0:b7:f7:dc
IEEE 802.1X: version=1 type=3 length=95
WPA: Received EAPOL-Key from e4:a7:a0:b7:f7:dc key_info=0x30a type=2
key_data_length=0
WPA: Received Key Nonce - hexdump(len=32): 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
WPA: Received Replay Counter - hexdump(len=8): 00 00 00 00 00 00 00 02
wlp1s0: STA e4:a7:a0:b7:f7:dc WPA: received EAPOL-Key frame (4/4 Pairwise)
WPA: e4:a7:a0:b7:f7:dc WPA_PTK entering state PTKINITDONE
wpa_driver_nl80211_set_key: ifindex=2 (wlp1s0) alg=3
addr=0x557b9b08c4b0 key_idx=0 set_tx=1 seq_len=0 key_len=16
nl80211: KEY_DATA - hexdump(len=16): [REMOVED]
addr=e4:a7:a0:b7:f7:dc
wlp1s0: STA e4:a7:a0:b7:f7:dc WPA: pairwise key handshake completed (RSN)
IEEE 802.1X: e4:a7:a0:b7:f7:dc AUTH_PAE entering state AUTHENTICATED
wlp1s0: AP-STA-CONNECTED e4:a7:a0:b7:f7:dc
---------------------------------------------------------------------------
Please note that WPA is executing above, while my LAN authentication
HostAP doesn't execute WPA. Is HostAP not supposed to get to
AP-STA-CONNECTED state when authenticating a client connected via LAN?
I hope I could get some clue on this problem.. Thanks for anybody's
help in advance.
More information about the Hostap
mailing list