From owner-freebsd-mobile@FreeBSD.ORG Tue Mar 23 21:39:40 2004 Return-Path: Delivered-To: freebsd-mobile@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DC3BC16A4CE; Tue, 23 Mar 2004 21:39:39 -0800 (PST) Received: from panzer.kdm.org (panzer.kdm.org [216.160.178.169]) by mx1.FreeBSD.org (Postfix) with ESMTP id 28AA943D48; Tue, 23 Mar 2004 21:39:39 -0800 (PST) (envelope-from ken@panzer.kdm.org) Received: from panzer.kdm.org (localhost [127.0.0.1]) by panzer.kdm.org (8.12.9/8.12.5) with ESMTP id i2O5dYLX057833; Tue, 23 Mar 2004 22:39:34 -0700 (MST) (envelope-from ken@panzer.kdm.org) Received: (from ken@localhost) by panzer.kdm.org (8.12.9/8.12.5/Submit) id i2O5dYZL057832; Tue, 23 Mar 2004 22:39:34 -0700 (MST) (envelope-from ken) Date: Tue, 23 Mar 2004 22:39:34 -0700 From: "Kenneth D. Merry" To: Sam Leffler Message-ID: <20040324053934.GA57761@panzer.kdm.org> References: <20040321013533.GA37342@panzer.kdm.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.1i cc: freebsd-net@freebsd.org cc: freebsd-mobile@freebsd.org Subject: Re: WEP problems with ndis and ath drivers X-BeenThere: freebsd-mobile@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Mobile computing with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 Mar 2004 05:39:40 -0000 On Tue, Mar 23, 2004 at 21:55:05 +0800, Sam Leffler wrote: > On Mar 21, 2004, at 9:35 AM, Kenneth D. Merry wrote: > > > > >I have a Dell Inspiron 8500 laptop with an onboard TrueMobile 1300 > >(Broadcom, b/g chipset) and a Netgear WAG511 cardbus card (Atheros, > >a/b/g > >chipset). > > > >I have a Netgear FWAG114 firewall/access point. (Atheros based, does > >a, b > >and g.) > > > >I'm running FreeBSD-current from Friday, March 19th. Both cards talk > >to > >the access point under FreeBSD when I'm not running WEP, and neither > >card > >works with WEP enabled. (i.e., neither card will associate with the > >base > >station with WEP enabled.) > > > >I have tried putting the key in as both hex digits and as the > >passphrase I > >used on the router to generate the hex key. (The router claims it's a > >128 > >bit key, but it only generates 26 hex digits, so it's really a 104 bit > >key > >I suppose.) > > > >Both cards work under Windows with WEP, with either the hex key or the > >passphrase entered. > > > >I have attached ifconfig and wicontrol output from both cards, and > >dmesg > >output from the laptop. > > > >To enable the adapter, I've been doing things like this: > > > >ifconfig {ath0|ndis0} ssid [my ssid] wepmode on wepkey `cat wepkey` > > > >(where wepkey is a file with the 26 digit hex key, starting with 0x) > > > >For what it's worth, I've tried setting the authmode to shared > >(instead of > >"open"), but all I get is the following: > > > >ifconfig ath0 authmode shared > >ifconfig: SIOCS80211: Invalid argument > > > >The ath driver spits out the following diagnostics when I try to > >associate > >with either the a or g part of the base station with WEP on: > > > > > >ath0: authentication failed (reason 13) for 00:09:5b:66:0d:f9 > >ath0: authentication failed (reason 13) for 00:09:5b:66:0d:f9 > >ath0: authentication failed (reason 13) for 00:09:5b:66:0d:f9 > >ath0: authentication failed (reason 13) for 00:09:5b:66:0d:f9 > >ath0: authentication failed (reason 13) for 00:09:5b:66:2c:5c > >ath0: authentication failed (reason 13) for 00:09:5b:66:2c:5c > >ath0: authentication failed (reason 13) for 00:09:5b:66:2c:5c > >ath0: authentication failed (reason 13) for 00:09:5b:66:2c:5c > > > >(The first mac address is the a base station, the second is the g base > >station.) > > > >The ndis driver (I'm using the Dell/Broadcom Windows drivers for the > >onboard chip) doesn't give any error messages, but doesn't associate > >either. > > > >If anyone has any clues on how to get this to work, I'd love to hear > >them. > >(Or if you have a similar setup and have managed to get it to work with > >WEP, that would be > >use >sg.ath_ndis.out>__ > > It appears your AP requires shared-key authentication to associate when > WEP is enabled. The current code in the tree does not support > shared-key authentication (it's actually a bad idea security-wise). I > have tested shared-key support in a p4 branch but haven't committed it > yet. If you want it you can find it in my sam_sockets branch. I'll check out the branch, thanks! I'm a bit confused about shared key authentication as well, though. My router basically has a couple of radio buttons on the WEP configuration page: Authentication Type: ( ) Open System ( ) Shared Key WEP: ( ) Disable ( ) Enable They say the following about it: "Select your Authentication Type: * Open System (no authentication or encryption) * Shared Key "For easy installation, Open System is the default. However, NETGEAR strongly recommends that you change to Shared Key. If Shared Key is selected, you need to enable the WEP and enter at least one shared key." So I've got Shared Key and Enable, respectively, set. Is there another scheme that's more secure that my router doesn't support? (Perhaps they've got a firmware upgrade for it.) Ken -- Kenneth Merry ken@kdm.org