Closed HeFeng1947 closed 3 years ago
@HeFeng1947 Is it possible for you to provide sniffer capture and certificates (if they are not confidential) Please also share hostapd configuration.
@HeFeng1947 Is it possible for you to provide sniffer capture and certificates (if they are not confidential) Please also share hostapd configuration.
Our authentication server is FreeRadius3, which is built into OpenWrt. I can just package the entire FreeRadius3 configuration and send it to you. If you have requirements, I can directly send my test router to you for testing.
My wireless config:
config wifi-device 'radio0'
option type 'mac80211'
option channel '11'
option hwmode '11g'
option path 'platform/ar933x_wmac'
option htmode 'HT20'
option disabled '0'
config wifi-iface 'default_radio0'
option device 'radio0'
option network 'lan'
option mode 'ap'
option ssid '0-radius'
option encryption 'wpa2'
option key 'goodlife'
option auth_port '1812'
option auth_server '192.168.1.1'
If you need more information, please let me know. This problem has caused our customers to be unable to access their network and has had a significant impact on our business. @sagb2015
Hi @HeFeng1947,
Thanks for the reporting. That would be really helpful if you could send the test router to us. Can you please contact our Shanghai office? We would ask our colleague to support with priority.
The email address: sales@espressif.com Please briefly describe the issue, including the GitHub ticket number, and tell us you already have communication with our WiFi team.
Thanks. Tiana
@HeFeng1947 Additionally for faster debugging (until we have to device), can you help with the following 1) Enable supplicant debugging => CONFIG_WPA_DEBUG_PRINT=y and provide the logs with v3.3 release (The flag is available on latest release/v3.3) 2) Test with master with CONFIG_WPA_MBEDTLS_CRYPTO=n. By default this flag is enabled on master. Please also keep CONFIG_WPA_DEBUG_PRINT=y.
@HeFeng1947 Additionally for faster debugging (until we have to device), can you help with the following
- Enable supplicant debugging => CONFIG_WPA_DEBUG_PRINT=y and provide the logs with v3.3 release (The flag is available on latest release/v3.3)
- Test with master with CONFIG_WPA_MBEDTLS_CRYPTO=n. By default this flag is enabled on master. Please also keep CONFIG_WPA_DEBUG_PRINT=y.
Toolchain path: /home/zsw/.espressif/tools/xtensa-esp32-elf/1.22.0-97-gc752ad5-5.2.0/xtensa-esp32-elf/bin/xtensa-esp32-elf-gcc
Toolchain version: crosstool-ng-1.22.0-97-gc752ad5
Compiler version: 5.2.0
Python requirements from /home/zsw/esp/esp-idf/requirements.txt are satisfied.
MONITOR
ets Jun 8 2016 00:22:57
rst:0x1 (POWERON_RESET),boot:0x13 (SPI_FAST_FLASH_BOOT) configsip: 0, SPIWP:0xee clk_drv:0x00,q_drv:0x00,d_drv:0x00,cs0_drv:0x00,hd_drv:0x00,wp_drv:0x00 mode:DIO, clock div:2 load:0x3fff0018,len:4 load:0x3fff001c,len:6760 load:0x40078000,len:12152 load:0x40080400,len:6664 entry 0x40080774 [0;32mI (71) boot: Chip Revision: 1[0m [0;32mI (71) boot_comm: chip revision: 1, min. bootloader chip revision: 0[0m [0;32mI (39) boot: ESP-IDF v3.3.5-14-g7c8602753-dirty 2nd stage bootloader[0m [0;32mI (39) boot: compile time 11:14:25[0m [0;32mI (39) boot: Enabling RNG early entropy source...[0m [0;32mI (45) boot: SPI Speed : 40MHz[0m [0;32mI (49) boot: SPI Mode : DIO[0m [0;32mI (53) boot: SPI Flash Size : 4MB[0m [0;32mI (57) boot: Partition Table:[0m [0;32mI (61) boot: ## Label Usage Type ST Offset Length[0m [0;32mI (68) boot: 0 nvs WiFi data 01 02 00009000 00006000[0m [0;32mI (76) boot: 1 phy_init RF data 01 01 0000f000 00001000[0m [0;32mI (83) boot: 2 factory factory app 00 00 00010000 00100000[0m [0;32mI (90) boot: End of partition table[0m [0;32mI (95) boot_comm: chip revision: 1, min. application chip revision: 0[0m [0;32mI (102) esp_image: segment 0: paddr=0x00010020 vaddr=0x3f400020 size=0x1b3e0 (111584) map[0m [0;32mI (150) esp_image: segment 1: paddr=0x0002b408 vaddr=0x3ffb0000 size=0x02fd4 ( 12244) load[0m [0;32mI (155) esp_image: segment 2: paddr=0x0002e3e4 vaddr=0x40080000 size=0x00400 ( 1024) load[0m [0;32mI (157) esp_image: segment 3: paddr=0x0002e7ec vaddr=0x40080400 size=0x01824 ( 6180) load[0m [0;32mI (168) esp_image: segment 4: paddr=0x00030018 vaddr=0x400d0018 size=0x6cb98 (445336) map[0m [0;32mI (331) esp_image: segment 5: paddr=0x0009cbb8 vaddr=0x40081c24 size=0x11f54 ( 73556) load[0m [0;32mI (373) boot: Loaded app from partition at offset 0x10000[0m [0;32mI (373) boot: Disabling RNG early entropy source...[0m [0;32mI (374) cpu_start: cpu freq: 160[0m [0;32mI (377) cpu_start: Pro cpu up.[0m [0;32mI (381) cpu_start: Application information:[0m [0;32mI (386) cpu_start: Project name: wpa2-enterprise[0m [0;32mI (392) cpu_start: App version: v3.3.5-14-g7c8602753-dirty[0m [0;32mI (398) cpu_start: Compile time: Apr 19 2021 11:14:21[0m [0;32mI (404) cpu_start: ELF file SHA256: 6ea7a67254d457da...[0m [0;32mI (410) cpu_start: ESP-IDF: v3.3.5-14-g7c8602753-dirty[0m [0;32mI (417) cpu_start: Starting app cpu, entry point is 0x40081170[0m [0;32mI (0) cpu_start: App cpu up.[0m [0;32mI (427) heap_init: Initializing. RAM available for dynamic allocation:[0m [0;32mI (434) heap_init: At 3FFAE6E0 len 00001920 (6 KiB): DRAM[0m [0;32mI (440) heap_init: At 3FFB8720 len 000278E0 (158 KiB): DRAM[0m [0;32mI (447) heap_init: At 3FFE0440 len 00003AE0 (14 KiB): D/IRAM[0m [0;32mI (453) heap_init: At 3FFE4350 len 0001BCB0 (111 KiB): D/IRAM[0m [0;32mI (459) heap_init: At 40093B78 len 0000C488 (49 KiB): IRAM[0m [0;32mI (466) cpu_start: Pro cpu start user code[0m [0;32mI (148) cpu_start: Starting scheduler on PRO CPU.[0m [0;32mI (0) cpu_start: Starting scheduler on APP CPU.v2.0 wifi:wifi driver task: 3ffc031c, prio:23, stack:3584, core=0 [0;32mI (221) system_api: Base MAC address is not set, read default base MAC address from BLK0 of EFUSE[0m [0;32mI (221) system_api: Base MAC address is not set, read default base MAC address from BLK0 of EFUSEv2.0 wifi:wifi firmware version: dc30037 I (261) wifi:config NVS flash: enabled I (261) wifi:config nano formating: disabled I (261) wifi:Init data frame dynamic rx buffer num: 32 I (261) wifi:Init management frame dynamic rx buffer num: 32 I (271) wifi:Init management short buffer num: 32 I (271) wifi:Init dynamic tx buffer num: 32 I (281) wifi:Init static rx buffer size: 1600 I (281) wifi:Init static rx buffer num: 10 I (281) wifi:Init dynamic rx buffer num: 32 [0;32mI (291) wifi_init: rx ba win: 6[0m [0;32mI (291) wifi_init: tcpip mbox: 32[0m [0;32mI (301) wifi_init: udp mbox: 6[0m [0;32mI (301) wifi_init: tcp mbox: 6[0m [0;32mI (301) wifi_init: tcp tx win: 5744[0m [0;32mI (311) wifi_init: tcp rx win: 5744[0m [0;32mI (311) wifi_init: tcp mss: 1440[0m [0;32mI (321) wifi_init: WiFi IRAM OP enabled[0m [0;32mI (321) wifi_init: WiFi RX IRAM OP enabled[0m [0;32mI (321) example: Setting WiFi configuration SSID 0-radius...v2.0 wpa: WPA2 ENTERPRISE VERSION: [v2.0] enable
[0;32mI (341) phy_init: phy_version 4660,0162888,Dec 23 2020[0m I (441) wifi:mode : sta (8c:aa:b5:b2:58:3c) I (1661) wifi:new:<11,0>, old:<1,0>, ap:<255,255>, sta:<11,0>, prof:1 I (2641) wifi:state: init -> auth (b0) I (2671) wifi:state: auth -> assoc (0) I (2671) wifi:state: assoc -> run (10) I (2671) wpa: wpa2_task prio:2, stack:6656
I (3711) wpa: >>>>>wpa2 FAILED
I (3721) wifi:state: run -> init (17c0)
I (3721) wifi:new:<11,0>, old:<11,0>, ap:<255,255>, sta:<11,0>, prof:1
[0;32mI (4441) example: ~~~[0m
[0;32mI (4441) example: IP:0.0.0.0[0m
[0;32mI (4441) example: MASK:0.0.0.0[0m
[0;32mI (4441) example: GW:0.0.0.0[0m
[0;32mI (4441) example: ~~~[0m
I (5781) wifi:new:<11,0>, old:<11,0>, ap:<255,255>, sta:<11,0>, prof:1
I (5781) wifi:state: init -> auth (b0)
I (5791) wifi:state: auth -> assoc (0)
I (5791) wifi:state: assoc -> run (10)
I (5791) wpa: wpa2_task prio:2, stack:6656
[0;32mI (6441) example: ~~~[0m
[0;32mI (6441) example: IP:0.0.0.0[0m
[0;32mI (6441) example: MASK:0.0.0.0[0m
[0;32mI (6441) example: GW:0.0.0.0[0m
[0;32mI (6441) example: ~~~[0m
I (6841) wpa: >>>>>wpa2 FAILED
I (6861) wifi:state: run -> init (17c0)
I (6861) wifi:new:<11,0>, old:<11,0>, ap:<255,255>, sta:<11,0>, prof:1
[0;32mI (8441) example: ~~~[0m
[0;32mI (8441) example: IP:0.0.0.0[0m
[0;32mI (8441) example: MASK:0.0.0.0[0m
[0;32mI (8441) example: GW:0.0.0.0[0m
[0;32mI (8441) example: ~~~[0m
I (8921) wifi:new:<11,0>, old:<11,0>, ap:<255,255>, sta:<11,0>, prof:1
I (8921) wifi:state: init -> auth (b0)
I (8931) wifi:state: auth -> assoc (0)
I (8931) wifi:state: assoc -> run (10)
I (8931) wpa: wpa2_task prio:2, stack:6656
I (9971) wpa: >>>>>wpa2 FAILED
2. master(v4.4) CONFIG_WPA_MBEDTLS_CRYPTO=n
rst:0x1 (POWERON_RESET),boot:0x13 (SPI_FAST_FLASH_BOOT) configsip: 0, SPIWP:0xee clk_drv:0x00,q_drv:0x00,d_drv:0x00,cs0_drv:0x00,hd_drv:0x00,wp_drv:0x00 mode:DIO, clock div:2 load:0x3fff0030,len:6720 load:0x40078000,len:14224 load:0x40080400,len:3688 entry 0x40080678 [0;32mI (27) boot: ESP-IDF v4.4-dev-744-g1cb31e509-dirty 2nd stage bootloader[0m [0;32mI (27) boot: compile time 11:04:24[0m [0;32mI (28) boot: chip revision: 1[0m [0;32mI (31) boot_comm: chip revision: 1, min. bootloader chip revision: 0[0m [0;32mI (39) boot.esp32: SPI Speed : 40MHz[0m [0;32mI (43) boot.esp32: SPI Mode : DIO[0m [0;32mI (48) boot.esp32: SPI Flash Size : 2MB[0m [0;32mI (52) boot: Enabling RNG early entropy source...[0m [0;32mI (58) boot: Partition Table:[0m [0;32mI (61) boot: ## Label Usage Type ST Offset Length[0m [0;32mI (68) boot: 0 nvs WiFi data 01 02 00009000 00006000[0m [0;32mI (76) boot: 1 phy_init RF data 01 01 0000f000 00001000[0m [0;32mI (83) boot: 2 factory factory app 00 00 00010000 00100000[0m [0;32mI (91) boot: End of partition table[0m [0;32mI (95) boot_comm: chip revision: 1, min. application chip revision: 0[0m [0;32mI (102) esp_image: segment 0: paddr=00010020 vaddr=3f400020 size=186a0h (100000) map[0m [0;32mI (149) esp_image: segment 1: paddr=000286c8 vaddr=3ffb0000 size=0413ch ( 16700) load[0m [0;32mI (156) esp_image: segment 2: paddr=0002c80c vaddr=40080000 size=0380ch ( 14348) load[0m [0;32mI (162) esp_image: segment 3: paddr=00030020 vaddr=400d0020 size=839ech (539116) map[0m [0;32mI (366) esp_image: segment 4: paddr=000b3a14 vaddr=4008380c size=1218ch ( 74124) load[0m [0;32mI (398) esp_image: segment 5: paddr=000c5ba8 vaddr=50000000 size=00010h ( 16) load[0m [0;32mI (410) boot: Loaded app from partition at offset 0x10000[0m [0;32mI (410) boot: Disabling RNG early entropy source...[0m [0;32mI (422) cpu_start: Pro cpu up.[0m [0;32mI (422) cpu_start: Starting app cpu, entry point is 0x40081304[0m [0;32mI (0) cpu_start: App cpu up.[0m [0;32mI (436) cpu_start: Pro cpu start user code[0m [0;32mI (436) cpu_start: cpu freq: 160000000[0m [0;32mI (436) cpu_start: Application information:[0m [0;32mI (441) cpu_start: Project name: wpa2-enterprise[0m [0;32mI (446) cpu_start: App version: v4.4-dev-744-g1cb31e509-dirty[0m [0;32mI (453) cpu_start: Compile time: Apr 19 2021 11:26:30[0m [0;32mI (459) cpu_start: ELF file SHA256: 3631f6562d30679c...[0m [0;32mI (465) cpu_start: ESP-IDF: v4.4-dev-744-g1cb31e509-dirty[0m [0;32mI (472) heap_init: Initializing. RAM available for dynamic allocation:[0m [0;32mI (479) heap_init: At 3FFAE6E0 len 00001920 (6 KiB): DRAM[0m [0;32mI (485) heap_init: At 3FFB7E20 len 000281E0 (160 KiB): DRAM[0m [0;32mI (492) heap_init: At 3FFE0440 len 00003AE0 (14 KiB): D/IRAM[0m [0;32mI (498) heap_init: At 3FFE4350 len 0001BCB0 (111 KiB): D/IRAM[0m [0;32mI (504) heap_init: At 40095998 len 0000A668 (41 KiB): IRAM[0m [0;32mI (512) spi_flash: detected chip: generic[0m [0;32mI (515) spi_flash: flash io: dio[0m [0;33mW (519) spi_flash: Detected size(4096k) larger than the size in the binary image header(2048k). Using the size in the binary image header.[0m [0;32mI (533) cpu_start: Starting scheduler on PRO CPU.[0m [0;32mI (0) cpu_start: Starting scheduler on APP CPU.[0m I (629) wifi:wifi driver task: 3ffc1a2c, prio:23, stack:6656, core=0 [0;32mI (629) system_api: Base MAC address is not set[0m [0;32mI (629) system_api: read default base MAC address from EFUSE[0m I (649) wifi:wifi firmware version: 4809a2e I (649) wifi:wifi certification version: v7.0 I (649) wifi:config NVS flash: enabled I (649) wifi:config nano formating: disabled I (659) wifi:Init data frame dynamic rx buffer num: 32 I (659) wifi:Init management frame dynamic rx buffer num: 32 I (669) wifi:Init management short buffer num: 32 I (669) wifi:Init dynamic tx buffer num: 32 I (679) wifi:Init static rx buffer size: 1600 I (679) wifi:Init static rx buffer num: 10 I (679) wifi:Init dynamic rx buffer num: 32 [0;32mI (689) wifi_init: rx ba win: 6[0m [0;32mI (689) wifi_init: tcpip mbox: 32[0m [0;32mI (689) wifi_init: udp mbox: 6[0m [0;32mI (699) wifi_init: tcp mbox: 6[0m [0;32mI (699) wifi_init: tcp tx win: 5744[0m [0;32mI (709) wifi_init: tcp rx win: 5744[0m [0;32mI (709) wifi_init: tcp mss: 1440[0m [0;32mI (709) wifi_init: WiFi IRAM OP enabled[0m [0;32mI (719) wifi_init: WiFi RX IRAM OP enabled[0m [0;32mI (719) example: Setting WiFi configuration SSID 0-radius...[0m [0;32mI (729) phy_init: phy_version 4670,719f9f6,Feb 18 2021,17:07:07[0m I (839) wifi:mode : sta (8c:aa:b5:b2:58:3c) I (839) wifi:enable tsf I (2059) wifi:new:<11,0>, old:<1,0>, ap:<255,255>, sta:<11,0>, prof:1 I (3029) wifi:state: init -> auth (b0) I (3039) wifi:state: auth -> assoc (0) I (3049) wifi:state: assoc -> run (10) I (3829) wifi:connected with 0-radius, aid = 1, channel 11, BW20, bssid = e4:95:6e:41:b3:dc I (3829) wifi:security: WPA2-ENT, phy: bgn, rssi: -47 I (3829) wifi:pm start, type: 1
I (3889) wifi:AP's beacon interval = 102400 us, DTIM period = 2
[0;32mI (4619) esp_netif_handlers: sta ip: 192.168.1.211, mask: 255.255.255.0, gw: 192.168.1.1[0m
[0;32mI (4839) example: ~~~[0m
[0;32mI (4839) example: IP:192.168.1.211[0m
[0;32mI (4839) example: MASK:255.255.255.0[0m
[0;32mI (4839) example: GW:192.168.1.1[0m
[0;32mI (4839) example: ~~~[0m
[0;32mI (6839) example: ~~~[0m
[0;32mI (6839) example: IP:192.168.1.211[0m
[0;32mI (6839) example: MASK:255.255.255.0[0m
[0;32mI (6839) example: GW:192.168.1.1[0m
[0;32mI (6839) example: ~~~[0m
3. master(v4.4)CONFIG_WPA_MBEDTLS_CRYPTO=y
rst:0x1 (POWERON_RESET),boot:0x13 (SPI_FAST_FLASH_BOOT) configsip: 0, SPIWP:0xee clk_drv:0x00,q_drv:0x00,d_drv:0x00,cs0_drv:0x00,hd_drv:0x00,wp_drv:0x00 mode:DIO, clock div:2 load:0x3fff0030,len:6720 load:0x40078000,len:14224 load:0x40080400,len:3688 entry 0x40080678 [0;32mI (26) boot: ESP-IDF v4.4-dev-744-g1cb31e509-dirty 2nd stage bootloader[0m [0;32mI (27) boot: compile time 11:04:24[0m [0;32mI (28) boot: chip revision: 1[0m [0;32mI (31) boot_comm: chip revision: 1, min. bootloader chip revision: 0[0m [0;32mI (39) boot.esp32: SPI Speed : 40MHz[0m [0;32mI (43) boot.esp32: SPI Mode : DIO[0m [0;32mI (48) boot.esp32: SPI Flash Size : 2MB[0m [0;32mI (52) boot: Enabling RNG early entropy source...[0m [0;32mI (58) boot: Partition Table:[0m [0;32mI (61) boot: ## Label Usage Type ST Offset Length[0m [0;32mI (68) boot: 0 nvs WiFi data 01 02 00009000 00006000[0m [0;32mI (76) boot: 1 phy_init RF data 01 01 0000f000 00001000[0m [0;32mI (83) boot: 2 factory factory app 00 00 00010000 00100000[0m [0;32mI (91) boot: End of partition table[0m [0;32mI (95) boot_comm: chip revision: 1, min. application chip revision: 0[0m [0;32mI (102) esp_image: segment 0: paddr=00010020 vaddr=3f400020 size=1b358h (111448) map[0m [0;32mI (153) esp_image: segment 1: paddr=0002b380 vaddr=3ffb0000 size=04190h ( 16784) load[0m [0;32mI (160) esp_image: segment 2: paddr=0002f518 vaddr=40080000 size=00b00h ( 2816) load[0m [0;32mI (161) esp_image: segment 3: paddr=00030020 vaddr=400d0020 size=8ca44h (576068) map[0m [0;32mI (384) esp_image: segment 4: paddr=000bca6c vaddr=40080b00 size=14e98h ( 85656) load[0m [0;32mI (421) esp_image: segment 5: paddr=000d190c vaddr=50000000 size=00010h ( 16) load[0m [0;32mI (433) boot: Loaded app from partition at offset 0x10000[0m [0;32mI (433) boot: Disabling RNG early entropy source...[0m [0;32mI (445) cpu_start: Pro cpu up.[0m [0;32mI (445) cpu_start: Starting app cpu, entry point is 0x40081304[0m [0;32mI (0) cpu_start: App cpu up.[0m [0;32mI (459) cpu_start: Pro cpu start user code[0m [0;32mI (459) cpu_start: cpu freq: 160000000[0m [0;32mI (459) cpu_start: Application information:[0m [0;32mI (464) cpu_start: Project name: wpa2-enterprise[0m [0;32mI (469) cpu_start: App version: v4.4-dev-744-g1cb31e509-dirty[0m [0;32mI (476) cpu_start: Compile time: Apr 19 2021 11:11:14[0m [0;32mI (482) cpu_start: ELF file SHA256: dde9b63e7c7f0ad8...[0m [0;32mI (488) cpu_start: ESP-IDF: v4.4-dev-744-g1cb31e509-dirty[0m [0;32mI (495) heap_init: Initializing. RAM available for dynamic allocation:[0m [0;32mI (502) heap_init: At 3FFAE6E0 len 00001920 (6 KiB): DRAM[0m [0;32mI (509) heap_init: At 3FFB7F68 len 00028098 (160 KiB): DRAM[0m [0;32mI (515) heap_init: At 3FFE0440 len 00003AE0 (14 KiB): D/IRAM[0m [0;32mI (521) heap_init: At 3FFE4350 len 0001BCB0 (111 KiB): D/IRAM[0m [0;32mI (528) heap_init: At 40095998 len 0000A668 (41 KiB): IRAM[0m [0;32mI (535) spi_flash: detected chip: generic[0m [0;32mI (538) spi_flash: flash io: dio[0m [0;33mW (542) spi_flash: Detected size(4096k) larger than the size in the binary image header(2048k). Using the size in the binary image header.[0m [0;32mI (557) cpu_start: Starting scheduler on PRO CPU.[0m [0;32mI (0) cpu_start: Starting scheduler on APP CPU.[0m I (653) wifi:wifi driver task: 3ffc1af0, prio:23, stack:6656, core=0 [0;32mI (653) system_api: Base MAC address is not set[0m [0;32mI (653) system_api: read default base MAC address from EFUSE[0m I (673) wifi:wifi firmware version: 4809a2e I (673) wifi:wifi certification version: v7.0 I (673) wifi:config NVS flash: enabled I (673) wifi:config nano formating: disabled I (683) wifi:Init data frame dynamic rx buffer num: 32 I (683) wifi:Init management frame dynamic rx buffer num: 32 I (693) wifi:Init management short buffer num: 32 I (693) wifi:Init dynamic tx buffer num: 32 I (703) wifi:Init static rx buffer size: 1600 I (703) wifi:Init static rx buffer num: 10 I (703) wifi:Init dynamic rx buffer num: 32 [0;32mI (713) wifi_init: rx ba win: 6[0m [0;32mI (713) wifi_init: tcpip mbox: 32[0m [0;32mI (713) wifi_init: udp mbox: 6[0m [0;32mI (723) wifi_init: tcp mbox: 6[0m [0;32mI (723) wifi_init: tcp tx win: 5744[0m [0;32mI (733) wifi_init: tcp rx win: 5744[0m [0;32mI (733) wifi_init: tcp mss: 1440[0m [0;32mI (733) wifi_init: WiFi IRAM OP enabled[0m [0;32mI (743) wifi_init: WiFi RX IRAM OP enabled[0m [0;32mI (743) example: Setting WiFi configuration SSID 0-radius...[0m [0;32mI (753) phy_init: phy_version 4670,719f9f6,Feb 18 2021,17:07:07[0m [0;33mW (763) phy_init: failed to load RF calibration data (0xffffffff), falling back to full calibration[0m I (1073) wifi:mode : sta (8c:aa:b5:b2:58:3c) I (1073) wifi:enable tsf I (2293) wifi:new:<11,0>, old:<1,0>, ap:<255,255>, sta:<11,0>, prof:1 I (3203) wifi:state: init -> auth (b0) I (3213) wifi:state: auth -> assoc (0) I (3223) wifi:state: assoc -> run (10) I (4563) wifi:connected with 0-radius, aid = 1, channel 11, BW20, bssid = e4:95:6e:41:b3:dc I (4563) wifi:security: WPA2-ENT, phy: bgn, rssi: -46 I (4563) wifi:pm start, type: 1
I (4623) wifi:AP's beacon interval = 102400 us, DTIM period = 2
[0;32mI (5073) example: ~~~[0m
[0;32mI (5073) example: IP:0.0.0.0[0m
[0;32mI (5073) example: MASK:0.0.0.0[0m
[0;32mI (5073) example: GW:0.0.0.0[0m
[0;32mI (5073) example: ~~~[0m
[0;32mI (5143) esp_netif_handlers: sta ip: 192.168.1.211, mask: 255.255.255.0, gw: 192.168.1.1[0m
[0;32mI (7073) example: ~~~[0m
[0;32mI (7073) example: IP:192.168.1.211[0m
[0;32mI (7073) example: MASK:255.255.255.0[0m
[0;32mI (7073) example: GW:192.168.1.1[0m
[0;32mI (7073) example: ~~~[0m
[0;32mI (9073) example: ~~~[0m
[0;32mI (9073) example: IP:192.168.1.211[0m
[0;32mI (9073) example: MASK:255.255.255.0[0m
[0;32mI (9073) example: GW:192.168.1.1[0m
[0;32mI (9073) example: ~~~[0m
W (9753) wifi:~~~[0m
[0;32mI (11073) example: IP:192.168.1.211[0m
[0;32mI (11073) example: MASK:255.255.255.0[0m
[0;32mI (11073) example: GW:192.168.1.1[0m
[0;32mI (11073) example: ~~~[0m
[0;32mI (13073) example: ~~~[0m
[0;32mI (13073) example: IP:192.168.1.211[0m
[0;32mI (13073) example: MASK:255.255.255.0[0m
Hi @sagb2015
From the log point of view, it is possible to connect to an AP whether it is turned on CONFIG_WPA_MBEDTLS_CRYPTO or not, but with CONFIG_WPA_MBEDTLS_CRYPTO= N, the connection is faster
Hi @HeFeng1947,
Thanks for the reporting. That would be really helpful if you could send the test router to us. Can you please contact our Shanghai office? We would ask our colleague to support with priority.
The email address: sales@espressif.com Please briefly describe the issue, including the GitHub ticket number, and tell us you already have communication with our WiFi team.
Thanks. Tiana
hi @TianaESP , I have sent the email and I am waiting for your reply!
Hi @HeFeng1947 , please try with the following in the radius config that your shared (mods-available/eap). We do not have support for TLS v1.2 on IDF v3.3.
disable_tlsv1_2 = no
disable_tlsv1_1 = no
disable_tlsv1 = no
tls_min_version = "1.0"
Hi @HeFeng1947 , please try with the following in the radius config that your shared (mods-available/eap). We do not have support for TLS v1.2 on IDF v3.3.
disable_tlsv1_2 = no disable_tlsv1_1 = no disable_tlsv1 = no tls_min_version = "1.0"
Why not support TLS1.2? Do you have any plans to add this feature? If we need to add this support, what files need to be modified?
Hi @HeFeng1947 , Can you please tryout the attached path that adds support for TLS1.2 and let us know if this works. The patch was build upon the latest commit of release/v3.3 7c86027 and is also tested to be directly applicable on the commit (https://github.com/espressif/esp-idf/commit/bf022060964128556b3d3205b65c5d35df9beef6) that you have mentioned.
@HeFeng1947 We do have support for TLS1.2, but from v4.0 onwards. We do not intend to backport it onto 3.3 since the release is in maintenance only phase (Reference here).
Hi @HeFeng1947 , Can you please tryout the attached path that adds support for TLS1.2 and let us know if this works. The patch was build upon the latest commit of release/v3.3 7c86027 and is also tested to be directly applicable on the commit (bf02206) that you have mentioned.
Thank you very much! We will test it and give you feedback as soon as possible.
I have completed the test in Demo and it works perfect! Thank you very much!! @sagb2015 @hpdhabe @TianaESP
Good to know! Feel free to reopen if you need any other help.
环境
问题描述
如题,在v3.3版本下无法跑通example下的wap2 enterprise例程,使用PEAP的认证方式。我尝试切换到目前release/v3.3分支的最新提交(7c86027531ebffe937c9d9d1080cd433eb993f35),也还是出现一样的错误。但在mster分支下(即v4.4),例程运行正常。
测试使用的认证服务器是freeRadius3,已在PC等设备上测试确认无问题。
在v3.3版本例程里注释以下代码
esp32错误log输出(v3.3)
esp32正常log输出(v4.4)
服务器端输出log(重复连接失败)
服务器端输出log(正常连接)
正常连接和失败的服务器端log主要区分是,连接失败没有这一条log输出:
Mon Apr 5 08:50:00 2021 daemon.info hostapd: wlan0: STA 98:f4:ab:0b:24:84 WPA: pairwise key handshake completed (RSN)
问题补充
我翻阅了近几年idf的issue,wpa2的问题出现频率很高,我尝试了其中几个解决方法,例如 https://github.com/espressif/esp-idf/issues/4347#issuecomment-559504115 ,但都没有效果。相同的设备环境,我已经在v4.4上成功运行例程,但是两个版本间IDF的区别太大,无法简单的移植组件。如果你们已经在v4.4上成功修复了这个bug,请尽快更新到v3.3版本,或提供一个可用的补丁以满足我们客户的迫切需求。