Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 1888051

Summary: NetworkManager needs to pass bridge master to wpa_supplicant when Wlan is part of bridge
Product: Red Hat Enterprise Linux 8 Reporter: Philip Prindeville <philipp>
Component: NetworkManagerAssignee: Beniamino Galvani <bgalvani>
Status: CLOSED ERRATA QA Contact: Filip Pokryvka <fpokryvk>
Severity: medium Docs Contact:
Priority: unspecified    
Version: CentOS StreamCC: acardace, atragler, bgalvani, bstinson, carl, fpokryvk, jwboyer, lrintel, philipp, rkhan, sukulkar, thaller, till, vbenes
Target Milestone: rcKeywords: Triaged
Target Release: 8.0Flags: pm-rhel: mirror+
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: NetworkManager-1.30.0-0.1.el8 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 1888610 (view as bug list) Environment:
Last Closed: 2021-05-18 13:29:43 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1888050, 1888610, 1915236    
Bug Blocks:    
Attachments:
Description Flags
Backport of upstream fix to 1.27.3 none

Description Philip Prindeville 2020-10-13 21:57:04 UTC 
Created attachment 1721326 [details]
Backport of upstream fix to 1.27.3

Description of problem:

When creating a bridge, and putting an Ethernet slave and a Wlan slave (which has been configured as an AP), authentication will always fail when connecting to that AP.

Version-Release number of selected component (if applicable):

1.27.3

How reproducible:

nmcli conn add con-name "Bridge 0" \
    type bridge ifname br0 \
    connection.autoconnect true \
    ipv4.method "manual" \
    ipv4.address "$LOCALIP/$LOCALPREFIX" \
    +ipv4.routes "224.0.0.0/4"

nmcli conn delete "Bridge slave 0"

nmcli conn add con-name "Bridge slave 0" \
    master "Bridge 0" \
    type ethernet ifname eth1

nmcli conn delete "Bridge slave 1"

nmcli conn add con-name "Bridge slave 1" \
    master "Bridge 0" \
    type wifi ifname wlan0 \
    mode ap ssid "$ssid" \
    802-11-wireless.band "bg" \
    802-11-wireless-security.key-mgmt "wpa-psk" \
    802-11-wireless-security.psk "$passphrase"

nmcli conn up "Bridge 0"

and now try to authenticate to that AP.

Steps to Reproduce:
1. Create bridge.
2. Add Ethernet and WLAN slaves (WLAN must be configured as AP).
3. Bring up bridge and try to connect to it.

Actual results:

Authentication fails.

Expected results:

Authentication should succeed.

Additional info:

Upstream commit is ae31b4b.
Comment 1 Thomas Haller 2020-10-15 10:30:42 UTC 
Hi,


A bug report against rhel-8 will always be (at earliest) fixed in the next minor rhel-8 release (at this point, that is rhel-8.4 because it's too late for rhel-8.3).

-- Z-stream updates are handled entirely different, but a feature request like this wouldn't qualify for that.

Since we plan to rebase NetworkManager with rhel-8.4, and since this is fixed upstream, it will be fixed automatically.
Moving this bug to POST.


(I think this bug is against CentOS Stream, but CentOS Stream is just a build of rhel-8.4 development snapshots, so overall this is still a RHEL-8 bug)


However, this issue also requires changes to wpa_supplicant. We will anyway add the support to NetworkManager (with the rebase), but it won't be useful, unless also wpa_supplicant has the feature. I will clone this bug for wpa_suppliant.
Comment 2 Thomas Haller 2020-10-15 10:38:12 UTC 
(In reply to Thomas Haller from comment #1)
> I will clone this bug for wpa_suppliant.

Ah, that already exists as bug 1888050.
Comment 7 Filip Pokryvka 2020-11-26 20:59:50 UTC 
The test is passing with wpa_supplicant-2.9-3.el8, moving to verified.
Comment 9 errata-xmlrpc 2021-05-18 13:29:43 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: NetworkManager and libnma security, bug fix, and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2021:1574