The recommended way to enable WPA1/TKIP support is: ifconfig iwm0 wpaprotos wpa1,wpa2
pirofti@ noticed that 'ifconfig iwm0 wpaprotos wpa1,wpa2' is not enough to connect to a WPA1-only AP. A list of pairwise ciphers must also be provided: "ifconfig iwm0 wpaciphers tkip,ccmp" Because I forgot to enable pairwise TKIP if WPA1 is enabled and no specific ciphers are provided. Fix below. ok? Index: ieee80211_ioctl.c =================================================================== RCS file: /cvs/src/sys/net80211/ieee80211_ioctl.c,v retrieving revision 1.47 diff -u -p -r1.47 ieee80211_ioctl.c --- ieee80211_ioctl.c 31 Dec 2016 17:51:44 -0000 1.47 +++ ieee80211_ioctl.c 17 Jan 2017 19:56:15 -0000 @@ -305,8 +305,11 @@ ieee80211_ioctl_setwpaparms(struct ieee8 ic->ic_rsnciphers |= IEEE80211_CIPHER_CCMP; if (wpa->i_ciphers & IEEE80211_WPA_CIPHER_USEGROUP) ic->ic_rsnciphers = IEEE80211_CIPHER_USEGROUP; - if (ic->ic_rsnciphers == 0) /* set to default (CCMP) */ + if (ic->ic_rsnciphers == 0) { /* set to default (CCMP, TKIP if WPA1) */ ic->ic_rsnciphers = IEEE80211_CIPHER_CCMP; + if (ic->ic_rsnprotos & IEEE80211_PROTO_WPA) + ic->ic_rsnciphers |= IEEE80211_CIPHER_TKIP; + } ic->ic_flags |= IEEE80211_F_RSNON;