wpa_supplicant: Errors with EAP-SIM

[Kenneth Man]

Hi,

I am trying EAP-SIM authentication with the bulit in wpa_supplicant of
ubuntu 14.04 Linux.
The version of wpa_supplicant is v2.1.

wap_supplicant succesfully gets the IMSI of the 3G SIM card but fails to
authenticate.

EAP-SIM: GSM authentication algorithm
SCARD: GSM auth - RAND - hexdump(len=16): d4 d1 a5 f7 e7 dd 08 37 b9 ac 2b
4a bd bd 1d 48
SCARD: scard_transmit: send - hexdump(len=22): 00 88 00 80 11 10 d4 d1 a5
f7 e7 dd 08 37 b9 ac 2b 4a bd bd 1d 48
SCARD: scard_transmit: recv - hexdump(len=2): 61 0e
SCARD: scard_transmit: send - hexdump(len=5): a0 c0 00 00 0e
SCARD: scard_transmit: recv - hexdump(len=2): 6e 00
SCARD: unexpected data length for USIM auth (len=2, expected 16)
EAP-SIM: GSM SIM authentication could not be completed

1. wpa_supplicant first sends a command with "00 88" prefix, which is
a correct 3G authentication command.
2. The card replies an error "61" with lengh "0e" (14 bites).
3. wpa_supplicant then sends a second command to ask for that 14 byte
error, with "a0 c0" prefix, which is a 2G authentication command.
4. The card replies "6e 00" which means that the Class Byte in the command
is incorrect.
5. wpa-supplicat complains that a 16- byte message is expected instead of 2.

Why wpa-supplicat sends a 2G command "a0 c0"?

I also try with a 2G SIM.  Also get problem:

TX EAPOL: dst=00:13:92:85:74:82
TX EAPOL - hexdump(len=60): 01 00 00 38 02 00 00 38 01 31 34 35 34 31 36 31
31 30 33 30 30 36 37 39 38 40 77 6c 61 6e 2e 6d 6e 63 31 36 31 2e 6d 63 63
34 35 34 2e 33 67 70 70 6e 65 74 77 6f 72 6b 2e 6f 72 67
EAPOL: SUPP_BE entering state RECEIVE
nl80211: Event message available
nl80211: Drv Event 46 (NL80211_CMD_CONNECT) received for wlan0
nl80211: Ignore connect event (cmd=46) when using userspace SME
wlan0: RX EAPOL from 00:13:92:85:74:82
RX EAPOL - hexdump(len=10): 02 00 00 06 01 01 00 06 19 20
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Request id=1 method=25 vendor=0 vendorMethod=0
EAP: EAP entering state GET_METHOD
EAP: configuration does not allow: vendor 0 method 25
EAP: vendor 0 method 25 not allowed
wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25 -> NAK
EAP: Status notification: refuse proposed method (param=PEAP)
EAP: Building EAP-Nak (requested type 25 vendor=0 method=0 not allowed)
EAP: allowed methods - hexdump(len=1): 12
EAP: EAP entering state SEND_RESPONSE
EAP: EAP entering state IDLE
EAPOL: SUPP_BE entering state RESPONSE
EAPOL: txSuppRsp
TX EAPOL: dst=00:13:92:85:74:82
TX EAPOL - hexdump(len=10): 01 00 00 06 02 01 00 06 03 12
EAPOL: SUPP_BE entering state RECEIVE
EAPOL: startWhen --> 0
wlan0: RX EAPOL from 00:13:92:85:74:82
RX EAPOL - hexdump(len=8): 02 00 00 04 04 01 00 04
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Failure
EAP: Status notification: completion (param=failure)
EAP: EAP entering state FAILURE
wlan0: CTRL-EVENT-EAP-FAILURE EAP authentication failed
EAPOL: SUPP_PAE entering state HELD
EAPOL: Supplicant port status: Unauthorized
nl80211: Set supplicant port unauthorized for 00:13:92:85:74:82
EAPOL: SUPP_BE entering state RECEIVE
EAPOL: SUPP_BE entering state FAIL
EAPOL: SUPP_BE entering state IDLE
EAPOL authentication completed - result=FAILURE

Thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.shmoo.com/pipermail/hostap/attachments/20150924/4b77a916/attachment.htm>