You are not logged in.

#1 2009-01-05 04:09:43

vogt
Member
From: Toronto, Canada
Registered: 2006-11-25
Posts: 389

netcfg can't run wpa enterprise but wpa_supplicant can [solved]

I can get the network to go up with my wpa_supplicant.conf (straight out of the manpage):

wpa_supplicant.conf

network={
     ssid="uw-secure"
     scan_ssid=1
     key_mgmt=WPA-EAP
     eap=PEAP
     identity="me"
     password="passwd"
     ca_cert="/usr/share/ca-certificates/mozilla/Thawte_Premium_Server_CA.crt"
     phase1="peaplabel=0"
     phase2="auth=MSCHAPV2"
}

/etc/network.d/uw-wireless

CONNECTION="wireless"
DESCRIPTION="secure uw"

INTERFACE=wlan0

IP=dhcp

ESSID="uw-secure"
TIMEOUT=30

SECURITY=wpa-config

SCAN="YES"

WPA_CONF="/etc/network.d/uw-secure-wpa"
QUIRKS=(prescan postsleep)

I'm not so sure about the quirks

Output:

netcfg uw-wireless
Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory
Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory
Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory
Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory
Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory
Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory
Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory
...
- Wireless association failed.        [FAIL]

In fact, netcfg can bring the network up, if the network-up check is removed:

/usr/lib/network/wireless.subr

wpa-config)
        # If user hasnt defined one, use stock config.
        [[ -z "$WPA_CONF" ]] && WPA_CONF="/etc/wpa_supplicant.conf"
        start_wpa $INTERFACE $WPA_CONF $WPA_OPTS || return 1
        #wpa_check $INTERFACE $TIMEOUT || return 1
        ;;

I thought that it might have something to do with the network not actually being up, but while that error is printed out (many times), I can go ahead and run dhcpcd wlan0, and get a working connection (even with the failing check enabled).

WPA2-personal networks work fine.

Thanks

Last edited by vogt (2009-01-06 05:28:52)

Offline

#2 2009-01-05 22:07:11

area
Member
Registered: 2008-09-18
Posts: 43

Re: netcfg can't run wpa enterprise but wpa_supplicant can [solved]

I have a similar  problem and after hours of research I've decided to blame it on a relatively young (~6 months) driver for the Atheros 9xx series. 

By chance are you using this at a university or other large mesh network? I'm not familiar with most of the technicalities of networking but my setup seems to work in areas that have <=1 acces points.... either somehting about mesh confuses the driver or my university has upgraded some hardware to draft n and left other buildings  with b/g.

What driver/chipset is your card using?

Offline

#3 2009-01-06 00:51:40

vogt
Member
From: Toronto, Canada
Registered: 2006-11-25
Posts: 389

Re: netcfg can't run wpa enterprise but wpa_supplicant can [solved]

I have an ipw 3945; I suspect that it's an issue with authentication: I can connect without supplying what I think are the username / password I suspect I should be using.

Possibly of use to see what is going on is the output from wpa_supplicant:

ioctl[SIOCSIWENCODEEXT]: No such file or directory
Trying to associate with 00:0b:86:67:e1:e2 (SSID='uw-secure' freq=2462 MHz)
Associated with 00:0b:86:67:e1:e2
CTRL-EVENT-EAP-STARTED EAP authentication started
CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected
SSL: SSL3 alert: write (local SSL3 detected an error):fatal:bad record mac
OpenSSL: tls_connection_handshake - SSL_connect error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac
SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unexpected_message
OpenSSL: tls_connection_handshake - SSL_connect error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message
SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unexpected_message
OpenSSL: tls_connection_handshake - SSL_connect error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message
SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unexpected_message
OpenSSL: tls_connection_handshake - SSL_connect error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message
SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unexpected_message
OpenSSL: tls_connection_handshake - SSL_connect error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message
CTRL-EVENT-EAP-FAILURE EAP authentication failed
WPA: Failed to get master session key from EAPOL state machines
WPA: Key handshake aborted
WPA: Could not verify EAPOL-Key MIC - dropping packet

Offline

#4 2009-01-06 01:56:51

area
Member
Registered: 2008-09-18
Posts: 43

Re: netcfg can't run wpa enterprise but wpa_supplicant can [solved]

who runs the network?

Offline

#5 2009-01-06 05:28:08

vogt
Member
From: Toronto, Canada
Registered: 2006-11-25
Posts: 389

Re: netcfg can't run wpa enterprise but wpa_supplicant can [solved]

the university of waterloo runs it.

Turns out, wpa_cli was looking for a /var/run/wpa_supplicant

I was just missing ctrl_interface=/var/run/wpa_supplicant at the top of the wpa_supplicant.conf that netcfg took for the interface!

Offline

Board footer

Powered by FluxBB