Overview: I was having trouble connecting our new VIM3 to our WPA2/WPA3 encrypted WiFi network. But after setting our WiFi to WPA2 only the device successfully connected. Once connected, I could switch the WiFi back to WPA2/WPA3 again, then restart the WiFi on the VIM3 and it successfully connected again.
Question: Does the VIM3 not support WPA3? We are evaluating the VIM3 for a digital signage application and some our customers sure want to use WPA3, so it’s critical for us to support it.
Details:
I’m using the image https://dl.khadas.com/Firmware/Krescue/images/VIM3_Ubuntu-server-focal_Linux-5.16-rc2_arm64_SD-USB_V1.0.10-220108.img.xz . I also tried older images with Kernel 4.9 , but it made no difference.
For completeness, I also did
apt update
apt full-upgrade
do-fenix-full-upgrade
I was following the instructions for server images on this page: Wi-Fi | Khadas Documentation . I also supplied the passphrase instead of a key, but it made no difference. Again, only after downgrading my WiFi to WPA2, I succeeded to connect to the WiFi.
I figured the root cause from the logs using journalctl -xu NetworkManager
. Before downgrading to WPA2, the logs reported:
Mar 15 08:38:34 Khadas NetworkManager[1167]: <info> [1647333514.9477] Config: added 'ssid' value 'test'
Mar 15 08:38:34 Khadas NetworkManager[1167]: <info> [1647333514.9477] Config: added 'scan_ssid' value '1'
Mar 15 08:38:34 Khadas NetworkManager[1167]: <info> [1647333514.9478] Config: added 'bgscan' value 'simple:30:-70:86400'
Mar 15 08:38:34 Khadas NetworkManager[1167]: <info> [1647333514.9478] Config: added 'key_mgmt' value 'SAE FT-SAE'
Mar 15 08:38:34 Khadas NetworkManager[1167]: <info> [1647333514.9479] Config: added 'auth_alg' value 'OPEN'
Mar 15 08:38:34 Khadas NetworkManager[1167]: <info> [1647333514.9479] Config: added 'psk' value '<hidden>'
Mar 15 08:38:34 Khadas NetworkManager[1167]: <info> [1647333514.9998] device (wlan0): supplicant interface state: disconnected -> scanning
Mar 15 08:38:34 Khadas NetworkManager[1167]: <info> [1647333514.9999] device (p2p-dev-wlan0): supplicant management interface state: disconnected -> scanning
Mar 15 08:39:00 Khadas NetworkManager[1167]: <warn> [1647333540.0290] device (wlan0): Activation: (wifi) association took too long, failing activation
Mar 15 08:39:00 Khadas NetworkManager[1167]: <info> [1647333540.0290] device (wlan0): state change: config -> failed (reason 'ssid-not-found', sys-iface-state: 'managed')
Mar 15 08:39:00 Khadas NetworkManager[1167]: <warn> [1647333540.0308] device (wlan0): Activation: failed for connection 'test'
Mar 15 08:39:00 Khadas NetworkManager[1167]: <info> [1647333540.0313] device (wlan0): state change: failed -> disconnected (reason 'none', sys-iface-state: 'managed')
Mar 15 08:39:00 Khadas NetworkManager[1167]: <info> [1647333540.0523] device (wlan0): supplicant interface state: scanning -> disconnected
Notice the line saying that key_mgmt
is set to SAE FT-SAE
.
After downgrading our WiFi to WPA2 only and retrying the commands from the documentation, the logs changed to:
Mar 15 08:39:19 Khadas NetworkManager[1167]: <info> [1647333559.9246] Config: added 'ssid' value 'test'
Mar 15 08:39:19 Khadas NetworkManager[1167]: <info> [1647333559.9246] Config: added 'scan_ssid' value '1'
Mar 15 08:39:19 Khadas NetworkManager[1167]: <info> [1647333559.9246] Config: added 'bgscan' value 'simple:30:-70:86400
'
Mar 15 08:39:19 Khadas NetworkManager[1167]: <info> [1647333559.9247] Config: added 'key_mgmt' value 'WPA-PSK WPA-PSK-SHA256 FT-PSK'
Mar 15 08:39:19 Khadas NetworkManager[1167]: <info> [1647333559.9247] Config: added 'auth_alg' value 'OPEN'
Mar 15 08:39:19 Khadas NetworkManager[1167]: <info> [1647333559.9247] Config: added 'psk' value '<hidden>'
Mar 15 08:39:20 Khadas NetworkManager[1167]: <info> [1647333560.0440] device (wlan0): supplicant interface state: ready -> associating
Mar 15 08:39:20 Khadas NetworkManager[1167]: <info> [1647333560.0440] device (p2p-dev-wlan0): supplicant management interface state: ready -> associating
Mar 15 08:39:22 Khadas NetworkManager[1167]: <info> [1647333562.1121] device (wlan0): supplicant interface state: associating -> completed
Mar 15 08:39:22 Khadas NetworkManager[1167]: <info> [1647333562.1122] device (wlan0): Activation: (wifi) Stage 2 of 5 (Device Configure) successful. Connected to wireless network "test"
Mar 15 08:39:22 Khadas NetworkManager[1167]: <info> [1647333562.1122] device (p2p-dev-wlan0): supplicant management interface state: associating -> completed
Mar 15 08:39:22 Khadas NetworkManager[1167]: <info> [1647333562.1125] device (wlan0): state change: config -> ip-config (reason 'none', sys-iface-state: 'managed')
Notice that key_mgmt
is now set to WPA-PSK WPA-PSK-SHA256 FT-PSK
. This seemed to do the trick.
For Reference:
# wpa_supplicant -v
wpa_supplicant v2.9
Copyright (c) 2003-2019, Jouni Malinen <j@w1.fi> and contributors
# nmcli --version
nmcli tool, version 1.22.10