Ieee80211r configuration with OpenWrt LUCI setup

uby · April 11, 2018, 12:30pm

ieee80211r configuration with openwrt LUCI setup.
i wanted to setup ieee80211r functionality with openwrt[version of (chaos calmer,r48067)]
using LUCI or uci commands.

validated the hostapd binaries with 11r configuration files manualy(using hostapd cmnds)it was working fine!

Tried setting up 11R configuration in /etc/config/wireless as below

config wifi-device  wifi0
        option type     qcawifi
        option channel  auto
        option macaddr  8c:fd:f0:0a:f3:81
        option hwmode   11a
        # REMOVE THIS LINE TO ENABLE WIFI:
        option disabled 0
 
config wifi-iface
        option device   wifi0
        option network  lan
        option mode     ap
        option ssid     11R_AP
        option encryption psk2+ccmp
        option key 123456
        option ieee80211r '1'
        option nasid '14DD20BE88C8'
        option mobility_domain '4f58'
        option r0_key_lifetime '10000'
        option r1_key_holder '14DD20BE88C8'
 
        option reassociation_deadline '1000'
        option pmk_r1_push '1'
        list r0kh '14:DD:20:47:14:E4,14DD204714E4,00112233445566778899aabbccddeeff'
        list r0kh '14:DD:20:47:14:E5,14DD204714E5,00112233445566778899aabbccddeeff'
        list r1kh '14:DD:20:47:14:E4,14:DD:20:47:14:E4,00112233445566778899aabbccddeeff'
        list r1kh '14:DD:20:47:14:E5,14:DD:20:47:14:E5,00112233445566778899aabbccddeeff'
 
$wifi down
$wifi up

Observed that hostapd.conf is created with 11r params in /var/run/hostapd-ath0.conf

driver=atheros
interface=ath0
#
logger_syslog=127
logger_syslog_level=2
logger_stdout=127
logger_stdout_level=2
ctrl_interface=/var/run/hostapd-wifi0
wpa_passphrase=123456
auth_algs=1
wpa=2
wpa_pairwise=CCMP
nas_identifier=14DD20BE88C8
ssid=11R_AP
bridge=br-lan
ieee80211w=0
wpa_key_mgmt=WPA-PSK  FT-PSK
mobility_domain=4f58
r0_key_lifetime=10000
r1_key_holder=14DD20BE88C8
reassociation_deadline=1000
pmk_r1_push=1
r0kh= 14DD20BE88C8 000102030405060708090a0b0c0d0e0f
r0kh=  000102030405060708090a0b0c0d0e0f
r1kh=  000102030405060708090a0b0c0d0e0f

But Interface is not coming up in required mode(11r),it is beaconing open mode.

ath0      IEEE 802.11ac  ESSID:"11R_AP"  
          Mode:Master  Frequency:5.6 GHz  Access Point: 8C:FD:F0:0A:F3:81  
          Bit Rate:1.7333 Gb/s   Tx-Power:24 dBm  
          RTS thr:off   Fragment thr:off
          **Encryption key:off**
          Power Management:off
          Link Quality=94/94  Signal level=-97 dBm  Noise level=-95 dBm
          Rx invalid nwid:5  Rx invalid crypt:0  Rx invalid frag:0
          Tx excessive retries:0  Invalid misc:0   Missed beacon:0

I would like to know does LUCI supports GUI configuration for 11R ?
I suspect issue in parsing hostapd config file,how to debug that?
installed wpad package and observed the 11r patches applied .
https://dev.openwrt.org/changeset/45051/
https://github.com/openwrt/luci/commit/f02794f28c343070487bbc794b425f91b675fdb9

Any clue to achieve 11R support with openwrt LUCI will be appreciated
Thanks in advance.

jeff · April 11, 2018, 1:41pm

If you're willing to patch a file and install it (meaning copy a new hostapd.sh into place) on your boxes,
https://github.com/lede-project/source/pull/1382
is the way I manage it myself. It is regrettably closed because it wasn't accepted in some time period. Can't completely vouch for its technical correctness, but "works for me" and I see "[WPA-PSK-FT/PSK-CCMP][ESS]" from my channel scanner as well as iOS devices doing the FT authenticate.

is another good link and somewhere I came across https://pastebin.com/RxKg3php as what looks like an 802.11r config.

Running wpad-mesh here.

Parsing /etc/config/wireless is generally done by shell scripts in /lib/netifd

hostapd has to be recompiled to get debug-level output, otherwise the macro gets compiled out, CONFIG_WPA_MSG_MIN_PRIORITY=2 gets debug, without going totally crazy.

HarvsG · July 6, 2021, 7:55am

Hi @jeff, this is a really helpful thread it's taken me days to find!

I'm in exactly the same position as OP - my config results in the AP broadcasting in open mode. What would the best place to get a new hostapd.sh? And would I have to compile it myself?

HarvsG · July 8, 2021, 11:34am

I got it working (on the face of it) yet to test it:

gist.github.com

https://gist.github.com/HarvsG/0575eb399d1920cd5ec5aae5db67929a

aHowTo80211ronQSKD.md

## How to get 802.11r (Fast Transition) working on Qualcomms fork of OpenWRT 15.05. In this case on a Gl-inet router

Unfortunately just setting the 4 lines as detailed in this [reddit post](https://www.reddit.com/r/openwrt/comments/515oea/finally_got_80211r_roaming_working/) _almost_ works, however hostapd fails to start due to the auto generated r0kh strings having incorrect formatting. The sypmtom was that the network would appear as open and devices would fail to connect. 

![image](https://user-images.githubusercontent.com/11440490/124912617-143dd200-dfe6-11eb-87fb-d1872cb29857.png)


As far as I can tell at the time of writing, this r0khs are unecessary with WPA2-PSK forms of authentication if `ft_psk_generate_local=1` is enabled in hostapd. So I commented out [lines 688 - 690](https://gist.github.com/HarvsG/0575eb399d1920cd5ec5aae5db67929a#file-hostapd-sh-L688-L690).

This file has been truncated. show original

hostapd.sh

#
# Copyright (c) 2017 Qualcomm Technologies, Inc.
#
# All Rights Reserved.
# Confidential and Proprietary - Qualcomm Technologies, Inc.
#

#
# Copyright (c) 2015, The Linux Foundation. All rights reserved.
#

This file has been truncated. show original

wireless

config wifi-device 'wifi0'
        option log_level '1'
        option type 'qcawifi'
        option macaddr '5f:83:c4:11:fd:66'
        option hwmode '11ng'
        option band '2G'
        option txpower_max '23'
        option noscan '0'
        option channel '7'
        option htmode 'HT20'

This file has been truncated. show original