Modify

Opened 8 years ago

Closed 8 years ago

Last modified 4 years ago

#6506 closed defect (fixed)

hostapd in is 19077 has broken EAP (maybe something else), segfaults on connect

Reported by: m.storchak@… Owned by: developers
Priority: normal Milestone: Barrier Breaker 14.07
Component: base system Version:
Keywords: hostapd eap Cc:

Description

Hostapd in 19077 segfaults when a station tries to connect to it.
Downgrading hostapd to its previous revision (18606) helps.
I tested only with EAP-TTLS-MSCHAPV2 and EAP-PEAP-MSCHAPV2.
I use ath5k if it matters.

root@vortex-box:~# /usr/sbin/hostapd -P /var/run/hostapd.pid /etc/hostapd.conf -d
Configuration file: /etc/hostapd.conf
ctrl_interface_group=0
nl80211: Add own interface ifindbr-lan: port 2(wlan0) entering disabled state
ex 6
nl80211: Add own interface ifindex 7
nl80211: New interface mon.wlan0 created: ifindex=23
nl80211: Add own interface ifindex 23
br-lan: port 2(wlan0) entering forwarding state
BSS count 1, BSSID mask 00:00:00:00:00:00 (0 bits)
nl80211: Added 802.11b mode based on 802.11g information
RATE[0] rate=10 flags=0x1
RATE[1] rate=20 flags=0x1
RATE[2] rate=55 flags=0x1
RATE[3] rate=110 flags=0x1
RATE[4] rate=60 flags=0x0
RATE[5] rate=90 flags=0x0
RATE[6] rate=120 flags=0x0
RATE[7] rate=180 flags=0x0
RATE[8] rate=240 flags=0x0
RATE[9] rate=360 flags=0x0
RATE[10] rate=480 flags=0x0
RATE[11] rate=540 flags=0x0
Completing interface initialization
Mode: IEEE 802.11g  Channel: 11  Frequency: 2462 MHz
Flushing old station entries
Deauthenticate all stations
wpa_driver_nl80211_set_key: ifindex=7 alg=0 addr=(nil) key_idx=0 set_tx=1 seq_len=0 key_len=0
wpa_driver_nl80211_set_key: ifindex=7 alg=0 addr=(nil) key_idx=1 set_tx=0 seq_len=0 key_len=0
wpa_driver_nl80211_set_key: ifindex=7 alg=0 addr=(nil) key_idx=2 set_tx=0 seq_len=0 key_len=0
wpa_driver_nl80211_set_key: ifindex=7 alg=0 addr=(nil) key_idx=3 set_tx=0 seq_len=0 key_len=0
Using interface wlan0 with hwaddr 00:16:cf:46:8a:6f and ssid 'vortex'
WPA: group state machine entering state GTK_INIT (VLAN-ID 0)
GMK - hexdump(len=32): [REMOVED]
GTK - hexdump(len=16): [REMOVED]
WPA: group state machine entering state SETKEYSDONE (VLAN-ID 0)
wpa_driver_nl80211_set_key: ifindex=7 alg=3 addr=(nil) key_idx=1 set_tx=1 seq_len=0 key_len=16
nl80211: Set beacon (beacon_set=0)
TLSv1: Converting PEM format certificate into DER format
TLSv1: Added certificate: C=UA, O=Vortex, CN=vortex/emailAddress=root@vortex-box
TLSv1: Converting PEM format certificate into DER format
TLSv1: Added certificate: C=UA, O=Vortex, CN=vortex/emailAddress=root@vortex-box
PKCS #8: Does not start with PKCS #8 header (SEQUENCE); assume PKCS #8 not used
Trying to parse PKCS #1 encoded RSA private key
RSA: Expected SEQUENCE (public key) - found class 0 tag 0xd
PKCS #8: Expected SEQUENCE (AlgorithmIdentifier) - found class 0 tag 0x2; assume PKCS #8 not used
Trying to parse PKCS #1 encoded RSA private key
TLSv1: Converting PEM format dhparams into DER format
wlan0: Setup of interface done.
RTM_NEWLINK: operstate=0 ifi_flags=0x1002 ()
RTM_NEWLINK, IFLA_IFNAME: Interface 'wlan0' added
Unknown event 5
RTM_NEWLINK: operstate=0 ifi_flags=0x1002 ()
RTM_NEWLINK, IFLA_IFNAME: Interface 'wlan0' added
Unknown event 5
Ignore event for foreign ifindex 23
Ignore event for foreign ifindex 23
RTM_NEWLINK: operstate=0 ifi_flags=0x11043 ([UP][RUNNING][LOWER_UP])
RTM_NEWLINK, IFLA_IFNAME: Interface 'wlan0' added
Unknown event 5
RTM_NEWLINK: operstate=0 ifi_flags=0x11043 ([UP][RUNNING][LOWER_UP])
RTM_NEWLINK, IFLA_IFNAME: Interface 'wlan0' added
Unknown event 5
mgmt::proberesp cb
mgmt::proberesp cb
mgmt::proberesp cb
mgmt::auth
authentication: STA=00:1b:77:20:c2:e2 auth_alg=0 auth_transaction=1 status_code=0 wep=0
  New STA
authentication reply: STA=00:1b:77:20:c2:e2 auth_alg=0 auth_transaction=2 resp=0 (IE len=0)
mgmt::auth cb
mgmt::reassoc_req
reassociation request: STA=00:1b:77:20:c2:e2 capab_info=0x431 listen_interval=1 current_ap=00:16:cf:46:8a:6f
RSN IE: STA PMKID - hexdump(len=16): c4 6e 44 6d cd e4 58 bf c5 02 9b 03 9c e1 3f 3b
  new AID 1
mgmt::reassoc_resp cb
wpa_driver_nl80211_set_key: ifindex=7 alg=0 addr=0x47bb68 key_idx=0 set_tx=1 seq_len=0 key_len=0
   addr=00:1b:77:20:c2:e2
wpa_driver_nl80211_set_key: ifindex=7 alg=0 addr=0x47bb68 key_idx=0 set_tx=1 seq_len=0 key_len=0
   addr=00:1b:77:20:c2:e2
EAP: Server state machine created
IEEE 802.1X: 00:1b:77:20:c2:e2 BE_AUTH entering state IDLE
IEEE 802.1X: 00:1b:77:20:c2:e2 CTRL_DIR entering state FORCE_BOTH
WPA: 00:1b:77:20:c2:e2 WPA_PTK entering state INITIALIZE
wpa_driver_nl80211_set_key: ifindex=7 alg=0 addr=0x47bb68 key_idx=0 set_tx=1 seq_len=0 key_len=0
   addr=00:1b:77:20:c2:e2
WPA: 00:1b:77:20:c2:e2 WPA_PTK_GROUP entering state IDLE
WPA: 00:1b:77:20:c2:e2 WPA_PTK entering state AUTHENTICATION
WPA: 00:1b:77:20:c2:e2 WPA_PTK entering state AUTHENTICATION2
IEEE 802.1X: 00:1b:77:20:c2:e2 AUTH_PAE entering state DISCONNECTED
IEEE 802.1X: 00:1b:77:20:c2:e2 AUTH_PAE entering state RESTART
EAP: EAP entering state INITIALIZE
EAP: EAP entering state SELECT_ACTION
EAP: getDecision: no identity known yet -> CONTINUE
EAP: EAP entering state PROPOSE_METHOD
EAP: getNextMethod: vendor 0 type 1
EAP: EAP entering state METHOD_REQUEST
EAP: building EAP-Request: Identifier 103
EAP: EAP entering state SEND_REQUEST
EAP: EAP entering state IDLE
EAP: retransmit timeout 3 seconds (from dynamic back off; retransCount=0)
IEEE 802.1X: 00:1b:77:20:c2:e2 AUTH_PAE entering state CONNECTING
IEEE 802.1X: 00:1b:77:20:c2:e2 AUTH_PAE entering state AUTHENTICATING
IEEE 802.1X: 00:1b:77:20:c2:e2 BE_AUTH entering state REQUEST
nl80211: Event message available
nl80211: Ignored unknown event (cmd=19)
IEEE 802.1X: 00:1b:77:20:c2:e2 TX status - version=2 type=0 length=5 - ack=1
IEEE 802.1X: 14 bytes from 00:1b:77:20:c2:e2
   IEEE 802.1X: version=1 type=0 length=10
EAP: code=2 identifier=103 length=10
 (response)
IEEE 802.1X: 00:1b:77:20:c2:e2 BE_AUTH entering state RESPONSE
EAP: EAP entering state RECEIVED
EAP: parseEapResp: rxResp=1 respId=103 respMethod=1 respVendor=0 respVendorMethod=0
EAP: EAP entering state INTEGRITY_CHECK
EAP: EAP entering state METHOD_RESPONSE
EAP-Identity: Peer identity - hexdump_ascii(len=5):
     61 61 61 61 61                                    aaaaa           
EAP: EAP entering state SELECT_ACTION
EAP: getDecision: another method available -> CONTINUE
EAP: EAP entering state PROPOSE_METHOD
EAP: getNextMethod: vendor 0 type 25
Segmentation fault

Here is my hostapd.conf:

# cat  /etc/hostapd.conf 
interface=wlan0
bridge=br-lan
driver=nl80211
logger_stdout=0
logger_stdout_level=4
logger_syslog=-1
logger_syslog_level=3
ctrl_interface=/var/run/hostapd
ctrl_interface_group=0

ssid=vortex
hw_mode=g
channel=11
preamble=1
country_code=UA
ieee80211d=1

#bridge_packets=1

auth_algs=1
ieee8021x=1

eap_server=1
eap_user_file=/etc/hostapd.eap_user
ca_cert=/etc/ssl/certs/vortex.pem
server_cert=/etc/ssl/certs/vortex.pem
private_key=/etc/ssl/private/vortex.key
dh_file=/etc/hostapd.dh.pem
wpa=2
wpa_key_mgmt=WPA-EAP
wpa_pairwise=CCMP
peerkey=1
okc=1

hostapd.eap_user

# cat /etc/hostapd.eap_user 
*               PEAP,TTLS
"user"        TTLS-MSCHAPV2,MSCHAPV2  "pass_word"      [2]

Attachments (1)

Makefile.patch (469 bytes) - added by m.storchak@… 8 years ago.

Download all attachments as: .zip

Change History (5)

Changed 8 years ago by m.storchak@…

comment:1 Changed 8 years ago by m.storchak@…

Upgrade to the latest hostapd fixes the issue for me.

comment:2 Changed 8 years ago by anonymous

Fixed in r19234

comment:3 Changed 8 years ago by nbd

  • Resolution set to fixed
  • Status changed from new to closed

comment:4 Changed 4 years ago by jow

  • Milestone changed from Attitude Adjustment 12.09 to Barrier Breaker 14.07

Milestone Attitude Adjustment 12.09 deleted

Add Comment

Modify Ticket

Action
as closed .
The resolution will be deleted. Next status will be 'reopened'.
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.