Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Error Code 0x02 #319

Open
krypto-kraken opened this issue May 21, 2020 · 3 comments
Open

Error Code 0x02 #319

krypto-kraken opened this issue May 21, 2020 · 3 comments

Comments

@krypto-kraken
Copy link

krypto-kraken commented May 21, 2020
edited
Loading

Hey guys,

Not sure what this error code means...but I continually get it when trying different APs that I have enabled WPS on. The one from the output below is running WPS 1.0. I've tried letting Reaver associate, and I have tried using aireplay to do the association. Any insight into what the potential problem could be would be great. I am using an Alfa AWUS036H. I also have the Wireshark dumps available if needed but I couldn't glean any real issues from that either. Just the AP eventually sending an EAPOL Failure. Thanks!!

Copyright (c) 2011, Tactical Network Solutions, Craig Heffner <cheffner@tacnetsol.com>

[+] Switching wlan0 to channel 6
[+] Waiting for beacon from C0:3F:0E:06:C8:78
[+] Received beacon from C0:3F:0E:06:C8:78
[+] Vendor: Broadcom
WPS: A new PIN configured (timeout=0)
WPS: UUID - hexdump(len=16): [NULL]
WPS: PIN - hexdump_ascii(len=8):
     31 32 33 34 35 36 37 30                           12345670        
WPS: Selected registrar information changed
WPS: Internal Registrar selected (pbc=0)
WPS: sel_reg_union
WPS: set_ie
WPS: cb_set_sel_reg
WPS: Enter wps_cg_set_sel_reg
WPS: Leave wps_cg_set_sel_reg early
WPS: return from wps_selected_registrar_changed
[+] Trying pin "12345670"
[+] Associated with C0:3F:0E:06:C8:78 (ESSID: NETGEAR01)
[+] Sending EAPOL START request
send_packet called from send_eapol_start() send.c:48
[+] Received deauth request
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
WPS: Processing received message (len=392 op_code=4)
WPS: Received WSC_MSG
WPS: Parsed WSC_MSG
WPS: Received M1
WPS: UUID-E - hexdump(len=16): 7d b3 e5 24 ab 2e 80 43 7f e0 e1 bb 65 e4 97 30
WPS: Enrollee MAC Address c0:3f:0e:06:c8:78
WPS: Enrollee Nonce - hexdump(len=16): 59 d1 39 23 be be c0 af db 59 f3 aa a5 2c 3a 50
WPS: Enrollee Authentication Type flags 0x27
WPS: No match in supported authentication types (own 0x0 Enrollee 0x27)
WPS: Workaround - assume Enrollee does not advertise supported authentication types correctly
WPS: Enrollee Encryption Type flags 0xf
WPS: No match in supported encryption types (own 0x0 Enrollee 0xf)
WPS: Workaround - assume Enrollee does not advertise supported encryption types correctly
WPS: Enrollee Connection Type flags 0x1
WPS: Enrollee Config Methods 0x84 [Label] [PBC]
WPS: Prefer PSK format key due to Enrollee not supporting display
WPS: Enrollee Wi-Fi Protected Setup State 2
WPS: Manufacturer - hexdump_ascii(len=13):
     4e 45 54 47 45 41 52 2c 20 49 6e 63 2e            NETGEAR, Inc.   
WPS: Model Name - hexdump_ascii(len=9):
     57 47 52 36 31 34 76 31 30                        WGR614v10       
WPS: Model Number - hexdump_ascii(len=9):
     57 47 52 36 31 34 76 31 30                        WGR614v10       
WPS: Serial Number - hexdump_ascii(len=5):
     38 33 32 35 38                                    83258           
WPS: Primary Device Type: 6-0050F204-1
WPS: Device Name - hexdump_ascii(len=9):
     57 47 52 36 31 34 76 31 30                        WGR614v10       
WPS: Enrollee RF Bands 0x1
WPS: Enrollee Association State 0
WPS: Device Password ID 0
WPS: Enrollee Configuration Error 0
WPS: OS Version 80000000
WPS: M1 Processed
WPS: dev_pw_id checked
WPS: PBC Checked
WPS: Entering State SEND_M2
WPS: WPS_CONTINUE, Freeing Last Message
WPS: WPS_CONTINUE, Saving Last Message
WPS: returning
[+] Received M1 message
WPS: Found a wildcard PIN. Assigned it for this UUID-E
WPS: Registrar Nonce - hexdump(len=16): 4b e9 c4 53 95 b3 6c f8 71 0a 33 50 b2 f7 d4 7d
WPS: UUID-R - hexdump(len=16): b7 e2 62 76 c8 f8 cc 74 fc 6f 46 4a 90 2f b1 69
WPS: Building Message M2
WPS:  * Version
WPS:  * Message Type (5)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * UUID-R
WPS:  * Public Key
WPS: Generate new DH keys
DH: private value - hexdump(len=192): 04 69 5c 82 5a 9b c6 55 ac 42 1a 65 88 10 04 d8 b9 e3 58 48 8d c2 ee 54 9b 35 27 60 37 40 ae ed 22 00 73 cc 4e cf 5d 07 e8 b0 c8 6f 6c eb 7c af a5 e2 0c 4d 31 c2 ab 9d bb 2c 12 97 5d 70 1b b3 a2 06 32 29 c4 27 fd b4 d0 1c 54 c3 59 ee fd 34 ab 51 2d f3 6c 57 62 0f c7 e5 dc e7 dd 21 20 4f 88 f5 ef a4 aa c7 3a 82 3d 90 bc 4b 9f c0 66 bd 2d 8e 88 75 d1 9c df 44 cf a8 96 c3 de db 67 0a ed 85 37 4c 82 1d 46 4e 4e 4d 41 16 ea d8 3e c6 15 dd 86 e1 8e fc 2c 89 cf 0a ef 44 41 e5 4c 60 26 da 2b f9 12 7d 08 a7 56 67 58 45 3f ea 95 62 db f7 02 c3 86 e6 f8 ac 30 9b 3f 1e 47 fa 8b 03
DH: public value - hexdump(len=192): c2 67 5a 92 80 23 cc 77 90 00 62 cb 05 c8 92 8e 2c 80 e6 65 ea 70 67 8b 24 31 7d d1 8b 73 a5 29 d3 05 0a 5b db e5 dc c7 11 37 cb 02 d8 be 6a da a4 61 bc c8 37 95 44 17 95 6b 03 94 d0 41 06 12 01 8a 7c 07 fd ab e8 23 58 b0 ab 9d ec bd 4c fa fa 8e 9b 09 3a 8f a4 b0 a6 b0 d2 78 64 dd 8c 03 9e 57 60 ab cf 26 ef da 77 eb 46 a3 ea cc cc 6d b3 f7 fa f1 2d b0 f3 59 85 c9 44 5d d0 54 a8 a2 52 e6 93 cb 75 eb a3 99 d7 ed 8e 77 45 e0 cd 24 54 bc 7a 80 af ec fc 69 05 f6 c8 99 ae 93 ba f5 8d 64 9e a1 2b 71 e8 94 b9 1f 55 7f b7 70 a0 26 f0 53 69 b4 33 43 4c 73 77 18 4f d4 9c 51 49 88
WPS: DH Private Key - hexdump(len=192): 04 69 5c 82 5a 9b c6 55 ac 42 1a 65 88 10 04 d8 b9 e3 58 48 8d c2 ee 54 9b 35 27 60 37 40 ae ed 22 00 73 cc 4e cf 5d 07 e8 b0 c8 6f 6c eb 7c af a5 e2 0c 4d 31 c2 ab 9d bb 2c 12 97 5d 70 1b b3 a2 06 32 29 c4 27 fd b4 d0 1c 54 c3 59 ee fd 34 ab 51 2d f3 6c 57 62 0f c7 e5 dc e7 dd 21 20 4f 88 f5 ef a4 aa c7 3a 82 3d 90 bc 4b 9f c0 66 bd 2d 8e 88 75 d1 9c df 44 cf a8 96 c3 de db 67 0a ed 85 37 4c 82 1d 46 4e 4e 4d 41 16 ea d8 3e c6 15 dd 86 e1 8e fc 2c 89 cf 0a ef 44 41 e5 4c 60 26 da 2b f9 12 7d 08 a7 56 67 58 45 3f ea 95 62 db f7 02 c3 86 e6 f8 ac 30 9b 3f 1e 47 fa 8b 03
WPS: DH own Public Key - hexdump(len=192): c2 67 5a 92 80 23 cc 77 90 00 62 cb 05 c8 92 8e 2c 80 e6 65 ea 70 67 8b 24 31 7d d1 8b 73 a5 29 d3 05 0a 5b db e5 dc c7 11 37 cb 02 d8 be 6a da a4 61 bc c8 37 95 44 17 95 6b 03 94 d0 41 06 12 01 8a 7c 07 fd ab e8 23 58 b0 ab 9d ec bd 4c fa fa 8e 9b 09 3a 8f a4 b0 a6 b0 d2 78 64 dd 8c 03 9e 57 60 ab cf 26 ef da 77 eb 46 a3 ea cc cc 6d b3 f7 fa f1 2d b0 f3 59 85 c9 44 5d d0 54 a8 a2 52 e6 93 cb 75 eb a3 99 d7 ed 8e 77 45 e0 cd 24 54 bc 7a 80 af ec fc 69 05 f6 c8 99 ae 93 ba f5 8d 64 9e a1 2b 71 e8 94 b9 1f 55 7f b7 70 a0 26 f0 53 69 b4 33 43 4c 73 77 18 4f d4 9c 51 49 88
WPS: DH Private Key - hexdump(len=192): 04 69 5c 82 5a 9b c6 55 ac 42 1a 65 88 10 04 d8 b9 e3 58 48 8d c2 ee 54 9b 35 27 60 37 40 ae ed 22 00 73 cc 4e cf 5d 07 e8 b0 c8 6f 6c eb 7c af a5 e2 0c 4d 31 c2 ab 9d bb 2c 12 97 5d 70 1b b3 a2 06 32 29 c4 27 fd b4 d0 1c 54 c3 59 ee fd 34 ab 51 2d f3 6c 57 62 0f c7 e5 dc e7 dd 21 20 4f 88 f5 ef a4 aa c7 3a 82 3d 90 bc 4b 9f c0 66 bd 2d 8e 88 75 d1 9c df 44 cf a8 96 c3 de db 67 0a ed 85 37 4c 82 1d 46 4e 4e 4d 41 16 ea d8 3e c6 15 dd 86 e1 8e fc 2c 89 cf 0a ef 44 41 e5 4c 60 26 da 2b f9 12 7d 08 a7 56 67 58 45 3f ea 95 62 db f7 02 c3 86 e6 f8 ac 30 9b 3f 1e 47 fa 8b 03
WPS: DH peer Public Key - hexdump(len=192): 1b 73 f6 27 ac de 80 86 06 e6 2b 90 ba d9 bc 72 b0 94 33 af ee 07 23 4b 44 ef 54 1c 31 ef 40 9c 6f c7 64 a1 cf d7 eb d8 0d 48 6f 64 25 c4 6f a6 ba 1a 45 44 c0 1c eb 96 46 8a 61 78 a4 3b ce 47 db eb 1e 74 8f 6e ec ef 95 62 79 bb c9 7d 7e 10 2d a4 8d 93 1d dd 4d b7 2c 2c d1 e8 bb 55 1b b7 9f 76 11 b3 9e 94 c1 a3 96 f6 1f af 80 98 4a f7 d1 89 c3 4a d2 05 db 2c 38 1d aa 33 76 45 28 a3 8c f6 a9 d4 09 e4 20 3e 84 d5 a7 ab 43 80 a0 67 9f 4d 24 d3 38 df d8 45 c7 33 ef 70 f6 84 18 45 61 bb 5c b0 3e 01 0b 6c 7a 3c 3b df 8b 06 6a 84 d0 b1 27 1b 2c 46 5e 53 32 a4 b5 51 2d dc 69 7e
DH: shared key - hexdump(len=192): c3 af 2c 46 9d 4e 26 b3 c2 fd 07 4a 33 73 d7 ec 21 bc b1 61 87 5a 61 a2 58 77 45 66 73 70 93 f1 84 6d f0 1e 79 c3 0f b6 03 39 f3 c7 c4 20 b1 55 ce 14 9e d0 e4 e3 77 64 03 7a 44 17 81 c3 77 2e 33 52 74 fe 2a 2a a5 c3 9b 1e 53 b9 c8 c1 73 79 a3 44 6b a3 bd 9e a6 2e 84 3d 0b d5 f5 56 a5 3d 7b 81 77 ad c7 93 79 e7 60 c0 29 f8 ef 0f f8 7a 95 b7 73 b8 ff 49 e0 57 2f 19 4e 65 54 44 a3 62 73 78 89 a3 a7 d7 ae 0e e6 4a 2f bb 8f 56 2f d9 8e b7 d0 ea 91 c6 c7 92 4d 52 43 3c c9 59 26 eb a1 6e 24 16 8d 7c 4c 53 64 d3 33 7e a8 96 7f 4f c7 28 77 fc eb 1b a3 fb 35 b0 5c ed 5a e6 44 18
WPS: DH shared key - hexdump(len=192): c3 af 2c 46 9d 4e 26 b3 c2 fd 07 4a 33 73 d7 ec 21 bc b1 61 87 5a 61 a2 58 77 45 66 73 70 93 f1 84 6d f0 1e 79 c3 0f b6 03 39 f3 c7 c4 20 b1 55 ce 14 9e d0 e4 e3 77 64 03 7a 44 17 81 c3 77 2e 33 52 74 fe 2a 2a a5 c3 9b 1e 53 b9 c8 c1 73 79 a3 44 6b a3 bd 9e a6 2e 84 3d 0b d5 f5 56 a5 3d 7b 81 77 ad c7 93 79 e7 60 c0 29 f8 ef 0f f8 7a 95 b7 73 b8 ff 49 e0 57 2f 19 4e 65 54 44 a3 62 73 78 89 a3 a7 d7 ae 0e e6 4a 2f bb 8f 56 2f d9 8e b7 d0 ea 91 c6 c7 92 4d 52 43 3c c9 59 26 eb a1 6e 24 16 8d 7c 4c 53 64 d3 33 7e a8 96 7f 4f c7 28 77 fc eb 1b a3 fb 35 b0 5c ed 5a e6 44 18
WPS: DHKey - hexdump(len=32): 2c f2 d0 cb 88 75 ea 51 3a 55 c9 87 dd 8a fd 86 bc cf e4 82 93 c4 41 89 b6 c8 85 b6 b6 39 34 ce
WPS: KDK - hexdump(len=32): 8f 6d 63 3b 83 b1 0e b9 23 e7 a0 5d 1b b7 29 65 40 46 dc 48 03 46 08 0c 10 1c 48 29 4d 91 8c b3
WPS: AuthKey - hexdump(len=32): a5 3c b2 15 58 ed 2a 4c ab 82 09 2e e7 3d 7d 76 a6 79 f7 3f 41 62 76 7a 2f 12 d4 9d d5 8a 95 26
WPS: KeyWrapKey - hexdump(len=16): 41 87 51 0c da f7 d3 5c 47 5d 53 17 b0 99 44 98
WPS: EMSK - hexdump(len=32): f2 82 cf 30 7f 5a a2 76 ba 76 93 46 3a ad 94 e2 ef 44 9f 06 cc eb b2 0b 2b aa ae b1 52 c7 34 71
WPS:  * Authentication Type Flags
WPS:  * Encryption Type Flags
WPS:  * Connection Type Flags
WPS:  * Config Methods (8c)
WPS:  * Manufacturer
WPS:  * Model Name
WPS:  * Model Number
WPS:  * Serial Number
WPS:  * Primary Device Type
WPS:  * Device Name
WPS:  * RF Bands (0)
WPS:  * Association State
WPS:  * Configuration Error (0)
WPS:  * Device Password ID (0)
WPS:  * OS Version
WPS:  * Authenticator
[+] Sending M2 message
send_packet called from send_msg() send.c:116
WPS: Processing received message (len=392 op_code=4)
WPS: Received WSC_MSG
WPS: Parsed WSC_MSG
WPS: Received M1
WPS: Unexpected state (15) for receiving M1
WPS: returning
[+] Received M1 message
WPS: Building Message WSC_NACK
WPS:  * Version
WPS:  * Message Type (14)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * Configuration Error (0)
[+] Sending WSC NACK
send_packet called from send_msg() send.c:116
WPS: Building Message WSC_NACK
WPS:  * Version
WPS:  * Message Type (14)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * Configuration Error (0)
[+] Sending WSC NACK
send_packet called from send_msg() send.c:116
send_packet called from send_termination() send.c:142
[!] WPS transaction failed (code: 0x03), re-trying last pin
WPS: Invalidating used wildcard PIN
WPS: Invalidated PIN for UUID - hexdump(len=16): 7d b3 e5 24 ab 2e 80 43 7f e0 e1 bb 65 e4 97 30
WPS: A new PIN configured (timeout=0)
WPS: UUID - hexdump(len=16): [NULL]
WPS: PIN - hexdump_ascii(len=8):
     31 32 33 34 35 36 37 30                           12345670        
WPS: Selected registrar information changed
WPS: Internal Registrar selected (pbc=0)
WPS: sel_reg_union
WPS: set_ie
WPS: cb_set_sel_reg
WPS: Enter wps_cg_set_sel_reg
WPS: Leave wps_cg_set_sel_reg early
WPS: return from wps_selected_registrar_changed
[+] Trying pin "12345670"
[+] Associated with C0:3F:0E:06:C8:78 (ESSID: NETGEAR01)
[+] Sending EAPOL START request
send_packet called from send_eapol_start() send.c:48
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
[!] WARNING: Receive timeout occurred
WPS: Building Message WSC_NACK
WPS:  * Version
WPS:  * Message Type (14)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * Configuration Error (0)
[+] Sending WSC NACK
send_packet called from send_msg() send.c:116
[!] WPS transaction failed (code: 0x02), re-trying last pin
WPS: A new PIN configured (timeout=0)
WPS: UUID - hexdump(len=16): [NULL]
WPS: PIN - hexdump_ascii(len=8):
     31 32 33 34 35 36 37 30                           12345670        
WPS: Selected registrar information changed
WPS: Internal Registrar selected (pbc=0)
WPS: sel_reg_union
WPS: set_ie
WPS: cb_set_sel_reg
WPS: Enter wps_cg_set_sel_reg
WPS: Leave wps_cg_set_sel_reg early
WPS: return from wps_selected_registrar_changed
[+] Trying pin "12345670"
[+] Associated with C0:3F:0E:06:C8:78 (ESSID: NETGEAR01)
[+] Sending EAPOL START request
send_packet called from send_eapol_start() send.c:48
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
[!] WARNING: Receive timeout occurred
WPS: Building Message WSC_NACK
WPS:  * Version
WPS:  * Message Type (14)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * Configuration Error (0)
[+] Sending WSC NACK
send_packet called from send_msg() send.c:116
[!] WPS transaction failed (code: 0x02), re-trying last pin
WPS: A new PIN configured (timeout=0)
WPS: UUID - hexdump(len=16): [NULL]
WPS: PIN - hexdump_ascii(len=8):
     31 32 33 34 35 36 37 30                           12345670        
WPS: Selected registrar information changed
WPS: Internal Registrar selected (pbc=0)
WPS: sel_reg_union
WPS: set_ie
WPS: cb_set_sel_reg
WPS: Enter wps_cg_set_sel_reg
WPS: Leave wps_cg_set_sel_reg early
WPS: return from wps_selected_registrar_changed
[+] Trying pin "12345670"
[+] Associated with C0:3F:0E:06:C8:78 (ESSID: NETGEAR01)
[+] Sending EAPOL START request
send_packet called from send_eapol_start() send.c:48
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
[!] WARNING: Receive timeout occurred
WPS: Building Message WSC_NACK
WPS:  * Version
WPS:  * Message Type (14)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * Configuration Error (0)
[+] Sending WSC NACK
send_packet called from send_msg() send.c:116
[!] WPS transaction failed (code: 0x02), re-trying last pin
WPS: A new PIN configured (timeout=0)
WPS: UUID - hexdump(len=16): [NULL]
WPS: PIN - hexdump_ascii(len=8):
     31 32 33 34 35 36 37 30                           12345670        
WPS: Selected registrar information changed
WPS: Internal Registrar selected (pbc=0)
WPS: sel_reg_union
WPS: set_ie
WPS: cb_set_sel_reg
WPS: Enter wps_cg_set_sel_reg
WPS: Leave wps_cg_set_sel_reg early
WPS: return from wps_selected_registrar_changed
[+] Trying pin "12345670"
[+] Associated with C0:3F:0E:06:C8:78 (ESSID: NETGEAR01)
[+] Sending EAPOL START request
send_packet called from send_eapol_start() send.c:48
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
[!] WARNING: Receive timeout occurred
WPS: Building Message WSC_NACK
WPS:  * Version
WPS:  * Message Type (14)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * Configuration Error (0)
[+] Sending WSC NACK
send_packet called from send_msg() send.c:116
[!] WPS transaction failed (code: 0x02), re-trying last pin
WPS: A new PIN configured (timeout=0)
WPS: UUID - hexdump(len=16): [NULL]
WPS: PIN - hexdump_ascii(len=8):
     31 32 33 34 35 36 37 30                           12345670        
WPS: Selected registrar information changed
WPS: Internal Registrar selected (pbc=0)
WPS: sel_reg_union
WPS: set_ie
WPS: cb_set_sel_reg
WPS: Enter wps_cg_set_sel_reg
WPS: Leave wps_cg_set_sel_reg early
WPS: return from wps_selected_registrar_changed
[+] Trying pin "12345670"
[+] Associated with C0:3F:0E:06:C8:78 (ESSID: NETGEAR01)
[+] Sending EAPOL START request
send_packet called from send_eapol_start() send.c:48
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
[!] WARNING: Receive timeout occurred
WPS: Building Message WSC_NACK
WPS:  * Version
WPS:  * Message Type (14)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * Configuration Error (0)
[+] Sending WSC NACK
send_packet called from send_msg() send.c:116
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] Nothing done, nothing to save.
[+] 0.00% complete @ 2020-05-21 13:20:56 (0 seconds/pin)
WPS: A new PIN configured (timeout=0)
WPS: UUID - hexdump(len=16): [NULL]
WPS: PIN - hexdump_ascii(len=8):
     31 32 33 34 35 36 37 30                           12345670        
WPS: Selected registrar information changed
WPS: Internal Registrar selected (pbc=0)
WPS: sel_reg_union
WPS: set_ie
WPS: cb_set_sel_reg
WPS: Enter wps_cg_set_sel_reg
WPS: Leave wps_cg_set_sel_reg early
WPS: return from wps_selected_registrar_changed
[+] Trying pin "12345670"
[+] Associated with C0:3F:0E:06:C8:78 (ESSID: NETGEAR01)
[+] Sending EAPOL START request
send_packet called from send_eapol_start() send.c:48
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
[!] WARNING: Receive timeout occurred
WPS: Building Message WSC_NACK
WPS:  * Version
WPS:  * Message Type (14)
WPS:  * Enrollee Nonce
WPS:  * Registrar Nonce
WPS:  * Configuration Error (0)
[+] Sending WSC NACK
send_packet called from send_msg() send.c:116
[!] WPS transaction failed (code: 0x02), re-trying last pin
 WPS: A new PIN configured (timeout=0)
WPS: UUID - hexdump(len=16): [NULL]
WPS: PIN - hexdump_ascii(len=8):
     31 32 33 34 35 36 37 30                           12345670        
WPS: Selected registrar information changed
WPS: Internal Registrar selected (pbc=0)
WPS: sel_reg_union
WPS: set_ie
WPS: cb_set_sel_reg
WPS: Enter wps_cg_set_sel_reg
WPS: Leave wps_cg_set_sel_reg early
WPS: return from wps_selected_registrar_changed
[+] Trying pin "12345670"
[+] Associated with C0:3F:0E:06:C8:78 (ESSID: NETGEAR01)
[+] Sending EAPOL START request
send_packet called from send_eapol_start() send.c:48
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
[+] Received identity request
[+] Sending identity response
send_packet called from send_identity_response() send.c:81
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
send_packet called from resend_last_packet() send.c:161
^Csend_packet called from send_termination() send.c:142
@rofl0r
Copy link
Collaborator

rofl0r commented Jul 7, 2020

did you read the troubleshooting guide in the wiki ?

@rofl0r rofl0r closed this as completed Jul 7, 2020
@rofl0r rofl0r reopened this Jul 7, 2020
@krypto-kraken
Copy link
Author

Yeah I did. Did I miss something I should have figured out myself (sorry if I did)?

The AP requests the identity of the client, and the client responds, then does an extended response when it does not see an answer from the AP. Then all of a sudden the AP sends a failure. I know from Stefan Viehböck's paper that we tell the AP that we are attempting to become the registrar (which I believe to be different than how a normal client would authenticate with WPS - they'd become the enrollee correct?). Does the fact that the AP responds with a failure right after we state we are the registrar mean that the AP does not support this method (and thus the attack)? I ensure a few times that the WPS PIN method was enabled on the AP.

Thanks for your help! Just trying to figure out when I can discount WPS as a valid attack method, and when I should pursue it.

image

@rofl0r
Copy link
Collaborator

rofl0r commented Jul 24, 2020

reaver sends a NACK because it runs into the configured timeout. i guess you should try to set a higher timeout with the appropriate command line option

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rofl0r @krypto-kraken