From owner-freebsd-stable@FreeBSD.ORG Thu Dec 15 19:31:00 2005 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8580616A423 for ; Thu, 15 Dec 2005 19:31:00 +0000 (GMT) (envelope-from sam@errno.com) Received: from ebb.errno.com (ebb.errno.com [69.12.149.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2640643D80 for ; Thu, 15 Dec 2005 19:29:56 +0000 (GMT) (envelope-from sam@errno.com) Received: from [10.0.0.192] ([10.0.0.192]) (authenticated bits=0) by ebb.errno.com (8.12.9/8.12.6) with ESMTP id jBFJTlA8008379 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 15 Dec 2005 11:29:48 -0800 (PST) (envelope-from sam@errno.com) Message-ID: <43A1C3ED.5050604@errno.com> Date: Thu, 15 Dec 2005 11:28:45 -0800 From: Sam Leffler Organization: Errno Consulting User-Agent: Mozilla Thunderbird 1.0.7 (Macintosh/20050923) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Kevin Oberman References: <20051215174533.DCDD65D09@ptavv.es.net> In-Reply-To: <20051215174533.DCDD65D09@ptavv.es.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-stable@freebsd.org Subject: Re: WPA Access Point X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 Dec 2005 19:31:00 -0000 Kevin Oberman wrote: >>From: Neal Nelson >>Date: Thu, 15 Dec 2005 18:36:12 +0100 >>Sender: owner-freebsd-stable@freebsd.org >> >>On 14 Dec 2005, at 20:00, Sam Leffler wrote: >> >> >>>Neal Nelson wrote: >>> >>>>Has anyone got FreeBSD 6.0 to work as a wireless access point using >>>>WPA? >>>>I'm running a Prism 2.5 based wireless card and have been using it as >>>>an access point for years. It stills works OK but I installed the >>>>hostapd port in order to add WPA authentication. Unfortunately this >>>>doesn't seem to work as it complains when I run it as follows: >>>>bsd_configure_wpa: group key cipher=AES-CCM (3) >>>>ioctl[SIOCS80211]: Invalid argument >>>>I'm not sure whether hostapd is configured right as there seems to be >>>>no documentation for it. >>>>Can anyone shed some light on this or am I barking up the wrong tree >>>>as far as WPA is concerned? >>> >>>The above error is likely because you don't have wlan_ccmp >>>loaded/configured. However >>> >>>ifconfig wi0 list caps >>> >>>should indicate the driver lacks support for WPA1/WPA2. Guess it >>>would be good for hostpad to check that. >>> >>> Sam >> >>You are quite right on both counts. I built a new kernel with some >>extra wlan_ options and hostapd runs without complaint now. Of course >>it still doesn't work as my wi interface doesn't have the WPA >>capability. >> >>On the plus side I've finally managed to configure my system to talk to >>my Mac with WEP. OK it's not ideal but it's a start and I was unable to >>get them to talk when I tried it first some time ago. >> >>Do you have any idea whether WPA will be added to the wi driver or >>should I look for another interface card if I want to use this? > > > To the best of my knowledge there is no firmware for the Prism2.5 that > supports WPA and, without that, I don't think that the driver is going > to help. Sure there is. I believe any rev 1.6.3 or later will do what's needed. Mostly thhis is enable sending host-specific information elements in the management frames and support sending host-encrypted data frames. > > I would love to see if_wi updated to better work with the FreeBSD wlan > architecture, but I know that I don't have the time to do it and I would not > hold my breath as this chip is getting very long of tooth and probably > has not shipped in new hardware for at least two years. I still use it > because my laptop has one built-in. I'm due for a new laptop in about a > year and I imagine that I will never deal with anything using if_wi > after that. Given the cost of cards these days it's easier to just buy a new one. But maybe someone with a vested interest will do the work. I'd like to see it happen and would help but don't have the time to do the work myself. Sam