Modify

Opened 8 years ago

Closed 8 years ago

#6041 closed defect (no_response)

WPA2 Enterprise unusable on kernel 2.4: NAS crash after login failure

Reported by: Alberto Bellettato <albetmp-nonews@…> Owned by: developers
Priority: response-needed Milestone: Bugs Paradise
Component: packages Version: Trunk
Keywords: nas wpa2 enterprise radius Cc:

Description

Hardware

Linksys WRT54GL v 1.1

Using

Kamikaze 8.09 rev 18127 Kernel 2.4.

Defect

After a login failure (Auth Failed Response from Radius server) Broadcom proprietary binary NAS crashes and does not send Radius Auth Requests any more.

Latest Linksys firmware does not present this problem (GPL Code: http://downloads.linksysbycisco.com/downloads/WRT54GL_US_v4.30.12.tgz).

I tried to import the nas binary and all the required libraries from the Linksys 4.30.12 firmware into Kamikaze 8.09, modifying the nas binary through an hexeditor (for example I changed libc.so.0 to libc.so.1 in the nas binary and then I created a link /lib/libc.so.1 to /lib/uClibc-0.19.so) in order to make coexist current uClibc-0.29 and uClibc-0.19, required by Linksys nas.
The modified NAS runs but it does not perform Radius authentication; I think the problem is that I should change the wireless driver to the latest Linksys one that is included in the 4.30.12 release.
Can it be the right approach to the problem?

Configuration

WPA2 PEAP MSCHAPV2

/etc/config/wireless

config 'wifi-device' 'wl0'
        option 'type' 'broadcom'
        option 'disabled' '0'
        option 'channel' '3'

config 'wifi-iface'
        option 'device' 'wl0'
        option 'network' 'wlsec'
        option 'mode' 'ap'
        option 'encryption' 'wpa2'
        option 'isolate' '1'
        option 'ssid' 'test'
        option 'server' '192.168.1.50'
        option 'port' '1812'
        option 'key' 'testkey'
        option 'eap_type' 'peap'
        option 'auth' 'MSCHAPV2'

/etc/config/network

config 'switch' 'eth0'
        option 'vlan0' '0 1 2 3 5*'
        option 'vlan1' '5'
        option 'vlan4' '4 5'

config 'interface' 'loopback'
        option 'ifname' 'lo'
        option 'proto' 'static'
        option 'ipaddr' '127.0.0.1'
        option 'netmask' '255.0.0.0'

config 'interface' 'wired'
        option 'type' 'bridge'
        option 'ifname' 'eth0.0'
        option 'proto' 'static'
        option 'netmask' '255.255.255.0'
        option 'ipaddr' '192.168.10.1'

config 'interface' 'wlsec'
        option 'type' 'bridge'
        option 'proto' 'static'
        option 'ifname' 'eth0.1'
        option 'ipaddr' '192.168.11.1'
        option 'netmask' '255.255.255.0'

config 'interface' 'wan'           
        option 'type' 'bridge'      
        option 'ifname' 'eth0.4'
        option 'proto' 'static'
        option 'ipaddr' '192.168.1.51'
        option 'netmask' '255.255.255.0'
        option 'gateway' '192.168.1.1'
        option 'dns' '192.168.1.50 192.168.1.1'

/etc/config/dhcp

config 'dnsmasq'
        option 'domainneeded' '1'
        option 'boguspriv' '1'
        option 'localise_queries' '1'
        option 'local' '/lan/'
        option 'expandhosts' '1'
        option 'authoritative' '1'
        option 'readethers' '1'
        option 'leasefile' '/tmp/dhcp.leases'
        option 'resolvfile' '/tmp/resolv.conf.auto'
        option 'domain' 'mydomain.org'
        option 'nonegcache' '1'

config 'dhcp' 'wired'
        option 'interface' 'wired'
        option 'start' '100'
        option 'limit' '150'
        option 'ignore' '0'
        option 'leasetime' '1h'

config 'dhcp' 'wlsec'
        option 'interface' 'wlsec'
        option 'start' '100'
        option 'limit' '150'
        option 'ignore' '0'
        option 'leasetime' '1h'

Attachments (0)

Change History (2)

comment:1 Changed 8 years ago by spudz76

  • Keywords radius added
  • Milestone changed from Kamikaze 8.09 to Kamikaze Bugs Paradise
  • Priority changed from highest to response-needed
  • Version changed from Kamikaze 8.09 to Trunk

[patchteam] Reclassifying to trunk as 8.09.2 is final. Please test same in trunk.

comment:2 Changed 8 years ago by thepeople

  • Resolution set to no_response
  • Status changed from new to closed

No response in 5 weeks, closing.

Add Comment

Modify Ticket

Action
as closed .
The resolution will be deleted. Next status will be 'reopened'.
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.