From owner-freebsd-stable@FreeBSD.ORG  Sun Nov  8 14:09:11 2009
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id C0362106568B
	for <freebsd-stable@freebsd.org>; Sun,  8 Nov 2009 14:09:11 +0000 (UTC)
	(envelope-from geoff@apro.com.au)
Received: from mail.ricksure.com.au (mail.ricksure.com.au [203.98.89.150])
	by mx1.freebsd.org (Postfix) with ESMTP id 1F9338FC0C
	for <freebsd-stable@freebsd.org>; Sun,  8 Nov 2009 14:09:07 +0000 (UTC)
Received: from dsl-202-173-129-2.nsw.westnet.com.au [202.173.129.2] by
	mail.ricksure.com.au with SMTP; Mon, 9 Nov 2009 00:53:47 +1100
From: Geoff Roberts <geoff@apro.com.au>
Organization: Australian Projects
To: freebsd-stable@freebsd.org
Date: Mon, 9 Nov 2009 00:53:47 +1100
User-Agent: KMail/1.9.10
MIME-Version: 1.0
Content-Type: text/plain;
  charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200911090053.47239.geoff@apro.com.au>
X-Declude-Sender: geoff@apro.com.au [202.173.129.2]
X-Declude-Spoolname: 39106955.eml
X-Declude-RefID: 
X-Declude-Note: Scanned by Declude 4.6.35 "http://www.declude.com/x-note.htm"
X-Declude-Scan: Outgoing Score [0] at 00:53:51 on 09 Nov 2009
X-Declude-Tests: Whitelisted
X-Country-Chain: 
X-Declude-Code: 0
X-Declude-Recipcount: 1
Organization: Declude, Inc.
X-Helo: bsd7desktop.home.wollongong
X-RevDNS: 
Subject: Problems moving hostapd AP config from 6.4 to 8.0RC2
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: geoff@apro.com.au
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 08 Nov 2009 14:09:11 -0000

Hi,

I had a working hostapd wireless access point configuration in FreeBSD 6.4. 
The access point is being used by Windows XP workstations.

I was using WPA-EAP with freeradius authentication very successfully on the 
6.4 backend.

After making the changes for a new 8.0 RC2 (see below) system the XP clients 
cannot seem to authenticate. The radius server does not even get contacted by 
hostapd.

I can get WEP and WPA-PSK to work OK - just WPA-EAP fails to work in 8.0RC2.

I also have a dhcp server running to hand out dynamic addresses.

Please let me know if you have any suggestions as to how to debug the issue 
further or where I may be going wrong.

====

hostapd.log is showing the following:

-> Startup
Nov  8 23:06:26 freebsd hostapd: wlan0: IEEE 802.11 Fetching hardware 
channel/rate support not supported.
Nov  8 23:06:26 freebsd hostapd: wlan0: RADIUS Authentication server 
xxx.xxx.xxx.xxx:1812
-> When XP client tries to connect to AP
Nov  8 23:08:43 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx IEEE 802.11: 
associated
Nov  8 23:08:43 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx WPA: event 1 
notification
Nov  8 23:08:43 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx IEEE 802.1X: 
start authentication
Nov  8 23:08:43 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx WPA: start 
authentication
Nov  8 23:08:43 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx IEEE 802.1X: 
unauthorizing port
Nov  8 23:08:46 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx IEEE 802.1X: 
received EAPOL-Start from STA
Nov  8 23:08:46 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx WPA: event 5 
notification
----> Hangs here for a while
Nov  9 00:32:23 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx IEEE 802.11: 
deassociated
Nov  9 00:32:23 freebsd hostapd: wlan0: STA xx:xx:xx:xx:xx:xx WPA: event 2 
notification

=====

tcpdump -i wlan0:

00:33:45.570161 xx:xx:xx:xx:xx:xx (oui Unknown) > Broadcast Null Supervisory, 
Receiver not Ready, rcv seq 64, Flags [Poll], length 6
00:33:45.570174 xx:xx:xx:xx:xx:xx (oui Unknown) > Broadcast Null Supervisory, 
Receiver not Ready, rcv seq 64, Flags [Poll], length 6
00:33:48.523053 EAPOL start (1) v1, len 0



===
dmesg:
ath0: <Atheros 5212> mem 0xf9000000-0xf900ffff irq 16 at device 8.0 on pci1
ath0: [ITHREAD]
ath0: AR5212 mac 5.6 RF5111 phy 4.1
===

rc.conf

I have converted the 6.4 files from:

ifconfig_ath0="inet xxx.xxx.xxx.1 netmask xxx.xxx.xxx.192 mode 11g mediaopt 
hostap"

to the newer 8.0 format:

wlans_ath0="wlan0"
create_args_wlan0="wlanmode hostap mode 11g country Australia"
ifconfig_wlan0="inet xxx.xxx.xxx.1 netmask xxx.xxx.xxx.192"
ifconfig_wlan0_alias0="inet xxx.xxx.xxx.65 netmask xxx.xxx.xxx.192"
ifconfig_wlan0_alias1="inet xxx.xxx.xxx.129 netmask xxx.xxx.xxx.192"
ifconfig_wlan0_alias2="inet xxx.xxx.xxx.193 netmask xxx.xxx.xxx.192"

NOTE, I found the order of items in create_args_wlan0 important.

====

I also adjusted the 6.4 hostapd.conf. Changes in 8.0RC2 are shown with ->
=====
interface=ath0 -> wlan0
driver=bsd
 -> country_code=Australia
logger_syslog=-1
logger_syslog_level=0
logger_stdout=-1
logger_stdout_level=0
debug=4
dump_file=/tmp/hostapd.dump
ctrl_interface=/var/run/hostapd
ctrl_interface_group=wheel
ssid=netname
macaddr_acl=0
ieee8021x=1
own_ip_addr=127.0.0.1
auth_server_addr=xxx.xxx.xxx.xxx
auth_server_port=1812
auth_server_shared_secret=secretpw
wpa=1
wpa_key_mgmt=WPA-EAP
wpa_pairwise=CCMP TKIP
===

Extra debugging output from wlandebug: <debug,input,xrate,assoc,auth,output>

Nov  9 00:44:07 freebsd kernel: wlan0: [xx:xx:xx:xx:xx:xx] recv probe req
Nov  9 00:44:07 freebsd kernel: wlan0: send probe resp on channel 1 to 
xx:xx:xx:xx:xx:xx
Nov  9 00:44:07 freebsd kernel: wlan0: [xx:xx:xx:xx:xx:xx] recv probe req
Nov  9 00:44:07 freebsd kernel: wlan0: send probe resp on channel 1 to 
xx:xx:xx:xx:xx:xx
Nov  9 00:44:07 freebsd kernel: wlan0: received auth from xx:xx:xx:xx:xx:xx 
rssi 24
Nov  9 00:44:07 freebsd kernel: wlan0: [xx:xx:xx:xx:xx:xx] recv auth frame 
with algorithm 0 seq 1
Nov  9 00:44:07 freebsd kernel: [xx:xx:xx:xx:xx:xx] send auth on channel 1
Nov  9 00:44:07 freebsd kernel: wlan0: [xx:xx:xx:xx:xx:xx] station 
authenticated (open)
Nov  9 00:44:07 freebsd kernel: wlan0: received assoc_req from 
xx:xx:xx:xx:xx:xx rssi 24
Nov  9 00:44:07 freebsd kernel: wlan0: [xx:xx:xx:xx:xx:xx] WPA ie: mc 1/0 uc 
3/0 key 1 caps 0x0
Nov  9 00:44:07 freebsd kernel: wlan0: [xx:xx:xx:xx:xx:xx] station associated 
at aid 1: short preamble, short slot time, QoS
Nov  9 00:44:07 freebsd kernel: [xx:xx:xx:xx:xx:xx] send assoc_resp on channel 
1
Nov  9 00:44:07 freebsd kernel: wlan0: [xx:xx:xx:xx:xx:xx] station unauthorize 
via MLME
===

Kind regards,

Geoff