[linux] wifi client - WPA TKIP
Martin Kyrc
martin.kyrc na developers.sk
Středa Duben 26 18:59:15 CEST 2006
ahojte,
pokusam sa (ztial bez uspechu) spojazdnit wifi clienta na linuxe v
zabezpecenej sieti (WPA TKIP). Kedze som nikdy nic take nerobil ani na
'Open' sieti z linuxu neviem ci kroky ktore robim su spravne (podla
dokumentov ktore som precital, by mali byt v poriadku). pokusim sa v
skratke vysvetlit co robim, mozno najdete niekde chybu (ja na to pozeram
uz par dni bez uspechu).
os: debian/testing
sw:
- wpasupplicant 0.4.8-3
- madwifi-source 0.svn20060207-3
wifi hw (pcmcia cisco/atheros karta):
0000:02:00.0 Ethernet controller: Atheros Communications, Inc. AR5212
802.11abg NIC (rev 01)
Subsystem: AIRONET Wireless Communications: Unknown device cb21
Flags: bus master, medium devsel, latency 168, IRQ 11
Memory at 22000000 (32-bit, non-prefetchable) [size=64K]
Capabilities: [44] Power Management version 2
po aplikovani dole uvedeneho postupu nevidim, ziaden rx/tx traffic na
wifi iface (okrem rx errors). logicky nevidim ani ziaden traffic od
klianta na AP. AP je cisco aironet 1100.
postup:
1. instalacia pcmcia tools
2. madwifi - skompilovany .deb balik z debian sourcov
3. zavedene moduly pre madwifi. v systeme vidim ath0 iface (wifi karta)
!- doteraz ziaden problem
4. nastavenie iwconfig:
iwconfig ath0 mode managed
iwconfig ath0 essid "SSID"
# iwconfig ath0
ath0 IEEE 802.11 ESSID:"SSID"
Mode:Managed Frequency:5.26 GHz Access Point: Invalid
Bit Rate:6 Mb/s Tx-Power=32718 dBm Sensitivity=0/3
Retry:off RTS thr:off Fragment thr:off
Encryption key:off
Power Management:off
Link Quality=29/94 Signal level=-66 dBm Noise level=-95 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:0 Missed beacon:
5.
# ifconfig ath0
ath0 Link encap:Ethernet HWaddr 00:40:96:A2:E8:98
inet addr:10.5.26.4 Bcast:10.255.255.255 Mask:255.255.0.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:133 dropped:0 overruns:0 frame:133
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:199
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
Interrupt:11 Memory:dfc20000-dfc30000
!- snad doteraz rovnako vsetko ok
6. nie som si uplne isty nastavenim wpa_supplicant.conf. myslim, ze
druha cast by mala byt ok. prva cast je vystup z nejakeho example
suboru. neviete mi dat nejaky hint preco wifi karta neodosiela
(ifconfig)? je problem v sw module? kedze AP nezverejnuje svoje ssid,
pokusal som sa zmenit konfiguraciu s definovanym ssid="", bezuspesne.
config:
ctrl_interface=/var/run/wpa_supplicant
# podla example suboru:
network={
ssid="ssid"
key_mgmt=IEEE8021X
eap=PEAP
phase2="auth=MSCHAPV2"
identity="user name"
password="password"
# ca_cert="/etc/cert/ca.pem"
}
# po uprave:
network={
ssid="ssid"
# key_mgmt=IEEE8021X
key_mgmt=WPA-EAP
eap=PEAP
pairwise=TKIP
group=TKIP
phase1="include_tls_length=1 peapver=1 peaplabel=1"
phase2="auth=MSCHAPV2"
identity="user name"
password="password"
# ca_cert="/etc/cert/ca.pem"
}
7. dole je debug vystup
(mac adresa AP je 000f.f72e.1600)
# wpa_supplicant -i ath0 -c /etc/wpa_supplicant.conf -Dmadwifi -d
"/etc/wpa_supplicant.conf" 38L, 830C written
tatran:~/wifi# wpa_supplicant -i ath0 -c /etc/wpa_supplicant.conf
-Dmadwifi -d
Initializing interface 'ath0' conf '/etc/wpa_supplicant.conf' driver
'madwifi' ctrl_interface 'N/A'
Configuration file '/etc/wpa_supplicant.conf' -> '/etc/wpa_supplicant.conf'
Reading configuration file '/etc/wpa_supplicant.conf'
ctrl_interface='/var/run/wpa_supplicant'
Priority group 0
id=0 ssid='tntlan'
Initializing interface (2) 'ath0'
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: KEY_RX entering state NO_KEY_RECEIVE
EAPOL: SUPP_BE entering state INITIALIZE
EAP: EAP entering state DISABLED
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
SIOCGIWRANGE: WE(compiled)=19 WE(source)=13 enc_capa=0x0
capabilities: key_mgmt 0x0 enc 0x3
Own MAC address: 00:40:96:a2:e8:98
wpa_driver_madwifi_del_key: keyidx=0
wpa_driver_madwifi_del_key: keyidx=1
wpa_driver_madwifi_del_key: keyidx=2
wpa_driver_madwifi_del_key: keyidx=3
wpa_driver_madwifi_set_countermeasures: enabled=0
wpa_driver_madwifi_set_drop_unencrypted: enabled=1
Setting scan request: 0 sec 100000 usec
Added interface ath0
Wireless event: cmd=0x8b06 len=8
RTM_NEWLINK, IFLA_IFNAME: Interface 'ath0' added
RTM_NEWLINK, IFLA_IFNAME: Interface 'ath0' added
State: DISCONNECTED -> SCANNING
Starting AP scan (broadcast SSID)
Wireless event: cmd=0x8b1a len=8
Wireless event: cmd=0x8b19 len=8
Received 252 bytes of scan results (1 BSSes)
Scan results: 1
Selecting BSS from priority group 0
0: 00:0f:f7:2e:16:00 ssid='' wpa_ie_len=24 rsn_ie_len=0 caps=0x11
skip - SSID mismatch
!- rovnaka hlaska aj v pripade nastaveneho ssid=""
No suitable AP found.
Setting scan request: 5 sec 0 usec
!- dalej sa to opakuje
!- ctrl+c
CTRL-EVENT-TERMINATING - signal 2 received
Removing interface ath0
State: SCANNING -> DISCONNECTED
No keys have been configured - skip key clearing
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
wpa_driver_madwifi_set_drop_unencrypted: enabled=0
wpa_driver_madwifi_set_countermeasures: enabled=0
No keys have been configured - skip key clearing
Cancelling scan request
dik za nejake nakopnutie spravnym smerom
--
horol
Další informace o konferenci linux