2226569 – wpa_supplicant does not support for WPA3 for Broadcom Wi-Fi chipsets

Bug 2226569 - wpa_supplicant does not support for WPA3 for Broadcom Wi-Fi chipsets

Summary: wpa_supplicant does not support for WPA3 for Broadcom Wi-Fi chipsets

Keywords:
Status:	NEW
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	wpa_supplicant
Sub Component:
Version:	39
Hardware:	Unspecified
OS:	Linux
Priority:	unspecified
Severity:	high
Target Milestone:	---
Assignee:	Lubomir Rintel
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2023-07-26 01:33 UTC by Neal Gompa
Modified:	2023-08-16 08:08 UTC (History)
CC List:	11 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Neal Gompa 2023-07-26 01:33:50 UTC

Description of the problem:
Currently, wpa_supplicant can't support WPA3 with Wi-Fi modules that use the brcmfmac driver.

This is because the driver only supports offload mode, which wpa_supplicant currently does not support.

Reproducible: Always

Steps to Reproduce:
1. Attempt to connect to a Wi-Fi network that requires WPA3 auth

Actual Results:  
Fail to connect

Expected Results:  
Authenticate and connect properly

Additional info:
There is a patch set that resolves the problem: http://lists.infradead.org/pipermail/hostap/2023-July/041653.html

It would be ideal if this patch set was backported to Fedora 38 as well for the Fedora Asahi Remix to benefit from it.

Comment 1 Hector Martin 2023-08-10 02:52:05 UTC

Note that this is a blocker for shipping Fedora Asahi Remix (we'd like to do that by the end of the month). We need to offer WPA3 support; the other option is to switch from wpa_supplicant to iwd (which does support this), but iwd comes with its own set of bugs and issues.

Comment 2 Davide Caratti 2023-08-11 15:24:13 UTC

(In reply to Hector Martin from comment #1)
> Note that this is a blocker for shipping Fedora Asahi Remix (we'd like to do
> that by the end of the month). We need to offer WPA3 support; the other
> option is to switch from wpa_supplicant to iwd (which does support this),
> but iwd comes with its own set of bugs and issues.

hello, these 2 patches are not yet applied to the upstream project. Can we wait until they are reviewed and applied?
thanks,
-- 
davide

Comment 3 Neal Gompa 2023-08-12 02:39:55 UTC

(In reply to Davide Caratti from comment #2)
> (In reply to Hector Martin from comment #1)
> > Note that this is a blocker for shipping Fedora Asahi Remix (we'd like to do
> > that by the end of the month). We need to offer WPA3 support; the other
> > option is to switch from wpa_supplicant to iwd (which does support this),
> > but iwd comes with its own set of bugs and issues.
> 
> hello, these 2 patches are not yet applied to the upstream project. Can we
> wait until they are reviewed and applied?
> thanks,
> -- 
> davide

I'm not sure we can. Having WPA3 not working is a pretty significant impairment for networking Macs.

Are any of the maintainers of wpa_supplicant able to review the patches upstream to help get them applied?

Comment 4 Fedora Release Engineering 2023-08-16 08:08:03 UTC

This bug appears to have been reported against 'rawhide' during the Fedora Linux 39 development cycle.
Changing version to 39.

Note You need to log in before you can comment on or make changes to this bug.