search

aparcar / openwrt

Staging tree of Paul Spooren
Other
9 stars 1 forks source link

FS#1461 - [hostapd] wpa_supplicant and mesh fail to connect after change to sae_password #1270

Open aparcar opened 6 years ago

aparcar commented 6 years ago

jeffsf:

Even after changing ''/etc/config/wireless'' to use ''option sae_password'', mesh node fails to connect with other nodes with builds on or after the indicated commit.

This //may// be an upstream issue, even though ''hostap/wpa_supplicant/wpa_supplicant.conf'' does call out ''sae_password''

Reverting to the older version of ''/lib/netifd/hostapd.sh'' allows the mesh to properly connect. (The config file contains both ''key'' and ''sae_password'' entries.) Commenting out the ''option key'' line in the config file for the failing build does not change the behavior.

//Reverting ''/lib/netifd/hostapd.sh'' is a work-around at this time.//

Interface is up as per both ''iw dev'' and ''ip link''

''/var/run/wpa_supplicant-mesh0.conf'' has been confirmed to pick up ''sae_password'' in the impacted builds and be otherwise "the same" as functioning builds. network={

ssid="<mesh ID>"
key_mgmt=SAE
mode=5
fixed_freq=1
frequency=5745
ht40=1
vht=1
max_oper_chwidth=1
sae_password="<same for both>"
beacon_int=100

}

The command line executing wpa_supplicant on the interface is the same in both cases ''/usr/sbin/wpa_supplicant -B -b br-mesh -P /var/run/wpa_supplicant-mesh0.pid -D nl80211 -i mesh0 -c /var/run/wpa_supplicant-mesh0.conf -C/var/run/wpa_supplicant''

config wifi-device 'radio5' option type 'mac80211' option channel '149' option hwmode '11a' option path 'pci0000:01/0000:01:00.0' option htmode 'VHT80' option require_mode 'ac'

config wifi-iface 'mesh0' option device 'radio5' option ifname 'mesh0' option mode 'mesh' option mesh_id '' option mesh_fwding '1' option encryption 'psk2+ccmp' option key '' option sae_password '' option network 'mesh'

Four Archer C7 v2 units 5 GHz radio for all on the mesh; other units running older builds with identical config for 5 GHz radio, other than the addition of ''option sae_password''

Clean builds for the DUT with identical ''.config'' for both builds.

OpenWRT tree:

Good: 9b92afa3aa3bf19986983f4dceb54b4952d4b970 uci: update to latest git Fails: eba3b028e46dbfe54f1208e9edf47bb0c6f73ac8 hostapd: update to git snapshot of 2018-03-26

Makefile changes around ''hostap'':

-PKG_SOURCE_DATE:=2018-03-26 -PKG_SOURCE_VERSION:=64624f31cf81dc6164462fa153ee7a5909e21183

+PKG_SOURCE_DATE:=2017-08-24 +PKG_SOURCE_VERSION:=c2d4f2eb5dba0b5c5a8c5805823084da958a9b52

aparcar commented 6 years ago

jeffsf:

Tried flashing one of the other units with the impacted build, using sae_password on both units (so same version to same version).

Did not connect.