feat: WPA3 personal support #5586
Conversation
pierantoniomerlino
force-pushed
the
wpa3_personal_support
branch
from
f621aa8 to
0a1fb30
Compare
pierantoniomerlino
changed the title
|
@pierantoniomerlino Is this ready for review or still a draft? |
| case "NONE": | ||
| return KuraWifiSecurityType.SECURITY_NONE; | ||
| case "SECURITY_WEP": | ||
| return KuraWifiSecurityType.SECURITY_WEP; | ||
| case "SECURITY_WPA": | ||
| return KuraWifiSecurityType.SECURITY_WPA; | ||
| case "SECURITY_WPA2": | ||
| return KuraWifiSecurityType.SECURITY_WPA2; | ||
| case "SECURITY_WPA3": | ||
| return KuraWifiSecurityType.SECURITY_WPA3; | ||
| case "SECURITY_WPA2_WPA3_ENTERPRISE": | ||
| return KuraWifiSecurityType.SECURITY_WPA2_WPA3_ENTERPRISE; | ||
| case "SECURITY_WPA_WPA2": | ||
| return KuraWifiSecurityType.SECURITY_WPA_WPA2; | ||
| case "SECURITY_WPA2_WPA3": | ||
| return KuraWifiSecurityType.SECURITY_WPA2_WPA3; | ||
| default: | ||
| throw new IllegalArgumentException("Invalid security type: " + securityType); |
kura/org.eclipse.kura.web2/src/main/java/org/eclipse/kura/web/shared/model/GwtWifiSecurity.java
Show resolved
Hide resolved
...clipse.kura.web2/src/main/resources/org/eclipse/kura/web/client/messages/Messages.properties
Outdated
Show resolved
Hide resolved
Signed-off-by: pierantoniomerlino <[email protected]>
Signed-off-by: pierantoniomerlino <[email protected]>
Signed-off-by: pierantoniomerlino <[email protected]>
Signed-off-by: pierantoniomerlino <[email protected]>
Signed-off-by: pierantoniomerlino <[email protected]>
Signed-off-by: pierantoniomerlino <[email protected]>
Signed-off-by: pierantoniomerlino <[email protected]>
Signed-off-by: pierantoniomerlino <[email protected]>
Signed-off-by: pierantoniomerlino <[email protected]>
…/web/client/messages/Messages.properties Co-authored-by: Mattia Dal Ben <[email protected]>
pierantoniomerlino
force-pushed
the
wpa3_personal_support
branch
from
417640b to
006c00c
Compare
|
Tested on RPi4. I created an ad-hoc WPA3 Personal endpoint for testing. The RPi4 was not able to connect even when issuing the command via root@raspberrypi:/home/pi# nmcli dev wifi connect WPA3Testing password passwordForTesting ifname wlan0
Error: Connection activation failed: Secrets were required, but not provided.after power cycling the RPi4 it was finally able to connect via command line. root@raspberrypi:/home/pi# nmcli dev wifi connect WPA3Testing password passwordForTesting ifname wlan0
Device 'wlan0' successfully activated with '98aeec5c-4d04-4d37-88e0-38052140ee99'.Unfortunately Kura doesn't seem to be happy about what's going on under the hood
Even after a reinstall, when trying to connect to a WPA3 endpoint Kura gets stuck in this "Roll-back changes" loop |
|
@MMaiero @pierantoniomerlino to me the code is ok... everything else outside our control isn't... are we sure we want to merge this? |
|
@mattdibi Thanks for the feedback. With @MMaiero we decided to contribute the feature, but to hide the WPA3 entry in the webUI. It will be available only setting a property in the |
Oh ok... this is a good compromise 👍 |
* Removed filter for WPA3 security Signed-off-by: pierantoniomerlino <[email protected]> * First implementation of WPA3 personal station mode Signed-off-by: pierantoniomerlino <[email protected]> * Removed OWE filtering Signed-off-by: pierantoniomerlino <[email protected]> * Added support for wpa2/wpa3 Signed-off-by: pierantoniomerlino <[email protected]> * Added tests for WPA3 configuration Signed-off-by: pierantoniomerlino <[email protected]> * Added experimetal tag to WPA3 feature Signed-off-by: pierantoniomerlino <[email protected]> * Fixed wpa2/wpa3 selection Signed-off-by: pierantoniomerlino <[email protected]> * Added experimetal tag to GwtWifiSecurity Signed-off-by: pierantoniomerlino <[email protected]> * Fixed indentation Signed-off-by: pierantoniomerlino <[email protected]> * Update kura/org.eclipse.kura.web2/src/main/resources/org/eclipse/kura/web/client/messages/Messages.properties Co-authored-by: Mattia Dal Ben <[email protected]> --------- Signed-off-by: pierantoniomerlino <[email protected]> Co-authored-by: Mattia Dal Ben <[email protected]>
This PR adds the experimental support for the WPA Personal security in WiFi connections, both for Station and AP mode.
Related Issue: This PR fixes/closes N/A
Description of the solution adopted: The PR removes the filtering of WPA3 hotspots, so the user can perform a scan from the webUI and select such types of networks. The supported securities are WPA3 and WPA2/WPA3 Personal.
As usual, after the network selection, the Wireless tab is filled accordingly.
The AP mode is supported as well. So, the user can configure Kura to implement an Access Point with WPA3 Personal security.
The code configured the proper properties to NetworkManager using the DBus APIs.
The feature is marked as experimental (and the tooltip on the webUI warns the user about it) because on several devices (like the RPI) it is not fully supported [1].
WPA3 allows passwords of any length, instead of WPA2 that limits to 8-63 chars. Since this is dependant on the underlying implementation, I preferred to leave this as is. For example, it seems that the Linux driver limit the password length to 128bytes.
[1] On the RPI5, with the latest wifi module firmware, the station mode will probably work. The Access Point mode is not currently supported.