Re: Access Point & WPA2

From: Thomas Haller <thaller redhat com>
To: Berend De Schouwer <berend de schouwer gmail com>, "networkmanager-list gnome org" <networkmanager-list gnome org>
Subject: Re: Access Point & WPA2
Date: Tue, 11 Dec 2018 20:12:04 +0100

On Tue, 2018-12-11 at 12:38 +0200, Berend De Schouwer via
networkmanager-list wrote:

On Tue, 2018-12-11 at 10:58 +0100, Thomas Haller wrote:

On Tue, 2018-12-11 at 10:41 +0200, Berend De Schouwer wrote:

On Mon, 2018-12-10 at 17:22 +0100, Thomas Haller wrote:

On Mon, 2018-12-10 at 12:15 +0200, Berend De Schouwer via


Hi Berend,


  : ifindex=3 (wlan0) alg=4
addr=0xaaaae5906648 key_idx=4 set_tx=1 seq_len=0 key_len=16
  nl80211: set_key failed; err=-22 Invalid argument)
  WPA: group state machine entering state FATAL_FAILURE

Beniamino said, "alg=4 is the IGTK, that should be required by
PMF."
Maybe try:

  nmcli connection modify "$PROFILE" wifi.pmf disable

and reactivate the profile.


That fixed it!  Thanks Beniamino and Thomas.

wifi.pmf disable resulted in alg=2:

Dec 11 12:35:16 morgue.deschouwer.co.za NetworkManager[839]:
<info>  [1544524516.5910] device (wlan0): Activation: (wifi) Stage 2
of 5 (Device Configure) successful.  Started Wi-Fi Hotspot
'HotelGUI'.
Dec 11 12:35:16 morgue.deschouwer.co.za wpa_supplicant[2426]:
wpa_driver_nl80211_set_key: ifindex=3 (wlan0) alg=2
addr=0xaaaace5e1648 key_idx=1 set_tx=1 seq_len=0 key_len=32
Dec 11 12:35:16 morgue.deschouwer.co.za wpa_supplicant[2426]:
nl80211: KEY_DATA - hexdump(len=32): [REMOVED]
Dec 11 12:35:16 morgue.deschouwer.co.za
wpa_supplicant[2426]:    broadcast key
Dec 11 12:35:16 morgue.deschouwer.co.za wpa_supplicant[2426]:
nl80211: Set wlan0 operstate 0->1 (UP)
Dec 11 12:35:16 morgue.deschouwer.co.za wpa_supplicant[2426]:
netlink: Operstate: ifindex=3 linkmode=-1 (no change), operstate=6
(IF_OPER_UP)
Dec 11 12:35:16 morgue.deschouwer.co.za wpa_supplicant[2426]: wlan0:
interface state UNINITIALIZED->ENABLED
Dec 11 12:35:16 morgue.deschouwer.co.za wpa_supplicant[2426]: wlan0:
AP-ENABLED
Dec 11 12:35:16 morgue.deschouwer.co.za wpa_supplicant[2426]: wlan0:
State: SCANNING -> COMPLETED


Hi,

good to know. I wonder whether this is a bug in NetworkManager. If you
leave pmf at "0 (default)", it seems it should just work.


best,
Thomas

PS: it would be better to reply to the mailing list, and not me
personally. Because so nobody else can help, and it's also not
helpful
for others. And if you paste text (the logfile) into the email, it
would be nice to make sure that the lines are not wrapped.
Preferably,
attach the file to the email instead. Thanks!!


It was my intention to mail the list, but I didn't check the To:
field
after hitting 'reply'.  My mistake.  Sorry.


no problem!! :)

Attachment: signature.asc
Description: This is a digitally signed message part

Follow-Ups:
- Re: Access Point & WPA2
  - From: Berend De Schouwer

References:
- Access Point & WPA2
  - From: Berend De Schouwer
- Re: Access Point & WPA2
  - From: Thomas Haller
- Re: Access Point & WPA2
  - From: Berend De Schouwer

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]