Hi,
I've discovered some bug in brcmfmac & its BSS management. It was
exposed by OpenWrt user space change ("fix") I introduced in:
http://git.openwrt.org/?p=openwrt.git;a=commit;h=1cbb5e8de50457c1d9724ca75cc6815df5721289
and it's related to the "interface add" command.
I've router with BCM43602 and I'm using a very recent brcmfmac.
brcmfmac 0000:01:00.0: enabling device (0140 -> 0142)
brcmfmac: brcmf_c_preinit_dcmds: Firmware version = wl0: Mar 3 2015
04:46:51 version 7.35.177.33 (r538052) FWID 01-c8317c80
brcmfmac: brcmf_cfg80211_reg_notifier: not a ISO3166 code
wlan0 Link encap:Ethernet HWaddr 00:23:6A:A3:7D:95
BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:8 errors:0 dropped:4 overruns:0 frame:0
TX packets:19 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:505 (505.0 B) TX bytes:1730 (1.6 KiB)
I'll just describe two scenarios that should make things clear. Both
after a cold boot.
1) Standard (working) scenario
# hostapd /etc/hostapd.conf
Configuration file: /etc/hostapd.conf
Failed to create interface mon.wlan0: -95 (Operation not supported)
[ 105.483797] brcmfmac: brcmf_add_if: ERROR: netdev:wlan0 already exists
[ 105.490308] brcmfmac: brcmf_add_if: ignore IF event
[ 105.499067] device wlan0 entered promiscuous mode
[ 105.503939] br-lan: port 2(wlan0) entered forwarding state
[ 105.509437] br-lan: port 2(wlan0) entered forwarding state
wlan0: Could not connect to kernel driver
Using interface wlan0 with hwaddr 00:23:6a:a3:7d:95 and ssid "OpenWrtA"
[ 105.640966] brcmfmac: brcmf_add_if: ERROR: netdev:wlan0 already exists
[ 105.647478] brcmfmac: brcmf_add_if: ignore IF event
wlan0: interface state UNINITIALIZED->ENABLED
wlan0: AP-ENABLED
[ 107.510613] br-lan: port 2(wlan0) entered forwarding state
This results in a working AP, my devices are able to connect
2) Scenario with iw command "mistake":
# iw phy phy0 interface add wlan0 type __ap
[ 65.036358] brcmfmac: brcmf_net_attach: couldn't register the net device
[ 65.043080] brcmfmac: brcmf_ap_add_vif: Registering netdevice failed
command failed: Invalid exchange (-52)
# hostapd /etc/hostapd.conf
Configuration file: /etc/hostapd.conf
Failed to create interface mon.wlan0: -95 (Operation not supported)
[ 83.393594] brcmfmac: brcmf_add_if: ERROR: netdev:wlan0 already exists
[ 83.400122] brcmfmac: brcmf_add_if: ignore IF event
[ 83.409448] device wlan0 entered promiscuous mode
[ 83.414259] br-lan: port 2(wlan0) entered forwarding state
[ 83.419802] br-lan: port 2(wlan0) entered forwarding state
wlan0: Could not connect to kernel driver
Using interface wlan0 with hwaddr 00:23:6a:a3:7d:95 and ssid "OpenWrtA"
[ 83.550307] brcmfmac: brcmf_add_if: ERROR: netdev:wlan0 already exists
[ 83.556814] brcmfmac: brcmf_add_if: ignore IF event
wlan0: interface state UNINITIALIZED->ENABLED
wlan0: AP-ENABLED
[ 85.418417] br-lan: port 2(wlan0) entered forwarding state
In this case in-firmware BSS state seems to be broken and BSS seems to
be using *different* address. Following wpa_supplicant log should make
it clear.
wlp2s0b1: State: SCANNING -> AUTHENTICATING
EAPOL: External notification - EAP success=0
EAPOL: Supplicant port status: Unauthorized
EAPOL: External notification - EAP fail=0
EAPOL: Supplicant port status: Unauthorized
EAPOL: External notification - portControl=Auto
EAPOL: Supplicant port status: Unauthorized
nl80211: Authenticate (ifindex=3)
* bssid=00:23:6a:a3:7d:95
* freq=2462
* SSID - hexdump_ascii(len=8):
4f 70 65 6e 57 72 74 41 OpenWrtA
* IEs - hexdump(len=0): [NULL]
* Auth Type 0
nl80211: Authentication request send successfully
RSN: Ignored PMKID candidate without preauth flag
nl80211: Event message available
nl80211: New station 00:23:6a:a3:7d:95
nl80211: Event message available
nl80211: MLME event 37
nl80211: Authenticate event
wlp2s0b1: Event AUTH (11) received
wlp2s0b1: SME: Ignore authentication with unexpected peer 02:23:6a:a3:7d:96
wlp2s0b1: SME: Authentication timeout
wpa_driver_nl80211_deauthenticate(addr=00:23:6a:a3:7d:95 reason_code=3)
--
Rafał
hostapd.conf
Description: Binary data
