association req - to inject

Vaidehi Kasarekar vaidehi_30
Sun Jul 20 15:46:13 PDT 2003


Hello all,

I am using Libradiate and have configured HostAP in a
client mode. I am trying out the "inject" demo. of the
Libradiate package.

As mentioned in the README file, i have compiled
hostap_cs with PRISM2_MONITOR_PACKET_INJECT defined in
prism2.c and prism2_config.h. (I was not sure where to
define it.)

I am trying to inject an association request thr one
of my clients, on my wireless lan and  dump the
packets again on the base-station. Ideally i should be
able to see the injected "association request".

However, i cannot see the injected frame in the dumped
packets.

I understand that some cards cannot monitor and send
the packets at the same time. So my NIC is set to
monitor mode 1, and i am using tethereal on the
basestation.

Here is the kernel.log for that:
>>>> iwpriv wlan0 monitor 1
Jul 20 17:28:30 vaidehi kernel: Disabling monitor mode
Jul 20 17:28:30 vaidehi kernel: wlan0: INFO -
fid=0x024f - len=2 type=0xf200
Jul 20 17:28:30 vaidehi kernel:   LinkStatus=2
(Disconnected)
Jul 20 17:28:30 vaidehi kernel: wlan0: INFO -
fid=0x03f7 - len=2 type=0xf200
Jul 20 17:28:30 vaidehi kernel:   LinkStatus=1
(Connected)

>> ./inject 2

After timeout, my kernel.log shows:
Jul 20 17:33:22 vaidehi kernel: wlan0: TXEXC -
fid=0x0426 - status=0x0001 ([RetryErr])
tx_control=000c
Jul 20 17:33:22 vaidehi kernel:    retry_count=0
tx_rate=0 fc=0x0908 (Data::0)
Jul 20 17:33:22 vaidehi kernel:   
addr1=00:02:2d:0d:fc:5b addr2=00:04:e2:1e:10:1d
addr3=00:90:27:8f:0a:85
Jul 20 17:33:46 vaidehi kernel: no SNAP?
(e0:e0:03:ff:ff:00)
Jul 20 17:33:48 vaidehi last message repeated 3 times
Jul 20 17:34:02 vaidehi kernel: no SNAP?
(f0:f0:03:2c:00:ff)

Here: addr1 is my bssid, and addr2 is my source NIC.
According to the README file, prism2.o will show an
RetryErr (i.e., no ACK received and retry limit
exceeded
My destination (addr2) is an accesspoint, wherein i am
injecting an association request from my mac id to the
access point.
Why wont the AP give ACK back? Any clues???

The changes My inject.c are:

char assoc[] = { 0x00, 0x00, /* capability information
*/
                         0x01, 0x00, /* listen
interval */
                         0x00, 0x0f, 'W', 'a', 'v',
'e', 'L', 'A', 'N', ' ', 'N', 'e', 't', 'w', 'o', 'r',
'k', '1',/* SSID */
                         0x01, 0x04, 0x82, 0x84, 0x0b,
0x16 /* supported rates
                                                      
      */
//As the ssid is not TEST but WaveLAN Network1.

Other changes are:
	/* DA */
	tx.addr1[0] = 0xff;
        tx.addr1[1] = 0xff;
        tx.addr1[2] = 0xff;
        tx.addr1[3] = 0xff;
        tx.addr1[4] = 0xff;
        tx.addr1[5] = 0xff;

	/* addr2 = SA */
        tx.addr2[0] = 0x00;
        tx.addr2[1] = 0x04;
        tx.addr2[2] = 0xe2;
        tx.addr2[3] = 0x1e;
        tx.addr2[4] = 0x10;
        tx.addr2[5] = 0x1d;        

	/* BSSID */
        tx.addr3[0] = 0x00;
        tx.addr3[1] = 0x02;
        tx.addr3[2] = 0x2d;
        tx.addr3[3] = 0x0d;
        tx.addr3[4] = 0xfc;
        tx.addr3[5] = 0x5b;

Y cant i see any injected packet?

Any help will be really appreciated
Thanks
-Vaidehi

__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
http://sbc.yahoo.com




More information about the Hostap mailing list