if_bridge and hostapd

From: spoggle <dcornejo_at_gmail.com> Date: Tue, 27 Jun 2006 16:08:43 -1000 · This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:57 UTC

Hi,

I've run into a problem with hostapd and if_bridge:

the kernel is 7.0 CURRENT dated Thu Jun 22 10:24:56 HST 2006

I have a WRAP board with 2 ath and 1 sis, and I'm bridging them all
together.  The ath are configured as hostap, 1 running 11g and the
other 11a.

I tried running this with WEP, and things work well, I can reboot and
things come back up and I can ping a wireless station from the LAN.

Now, I'm trying to add in WPA and I've run into this problem.  If I
start hostapd from the command line, the connections work ok, the
stations authenticate and everybody is happy.  If I configure hostapd
to start at boot time, it looks like the stations authenticate -
ifconfig ath0 list sta shows the right thing but no packets are
passed,

ifconfig in  this state:

zazu# ifconfig
ath0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 2290
        inet6 fe80::20b:6bff:fe35:a9b%ath0 prefixlen 64 scopeid 0x1
        ether 00:0b:6b:35:0a:9b
        media: IEEE 802.11 Wireless Ethernet autoselect mode 11g <hostap>
        status: associated
        ssid dogwood-gx channel 11 bssid 00:0b:6b:35:0a:9b
        authmode WPA privacy MIXED deftxkey 2 TKIP 2:128-bit txpowmax 40
        protmode CTS burst dtimperiod 1 bintval 100
sis0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
        options=8<VLAN_MTU>
        inet6 fe80::20d:b9ff:fe00:945c%sis0 prefixlen 64 scopeid 0x2
        inet 192.168.231.214 netmask 0xffffff00 broadcast 192.168.231.255
        ether 00:0d:b9:00:94:5c
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
ath1: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
        inet6 fe80::20b:6bff:fe34:8ad8%ath1 prefixlen 64 scopeid 0x3
        ether 00:0b:6b:34:8a:d8
        media: IEEE 802.11 Wireless Ethernet autoselect mode 11a <hostap>
        status: associated
        ssid dogwood-a channel 56 bssid 00:0b:6b:34:8a:d8
        authmode OPEN privacy ON deftxkey 1 wepkey 1:104-bit txpowmax 38
        burst dtimperiod 1 bintval 100
pflog0: flags=0<> mtu 33208
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
        inet6 ::1 prefixlen 128
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
        inet 127.0.0.1 netmask 0xff000000
pfsync0: flags=0<> mtu 2020
        syncpeer: 224.0.0.240 maxupd: 128
bridge0: flags=8043<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
        ether 4a:1d:b0:a6:7a:58
        priority 32768 hellotime 2 fwddelay 15 maxage 20
        member: ath1 flags=7<LEARNING,DISCOVER,STP>
                port 3 priority 128 path cost 55 forwarding
        member: ath0 flags=7<LEARNING,DISCOVER,STP>
                port 1 priority 128 path cost 55 blocking
        member: sis0 flags=7<LEARNING,DISCOVER,STP>
                port 2 priority 128 path cost 55 blocking
zazu# ifconfig ath0 list sta
ADDR               AID CHAN RATE RSSI IDLE  TXSEQ  RXSEQ CAPS ERP
00:0b:6b:33:68:60    1   11  54M   32   15      5  50768 EPS    0 WPA
zazu#

so it looks like ath0 & ath1 are in blocking state, and the station is
authenticated, which is obviously bad.  leaving things alone for
several minutes does not help.

i can solve the problem by ifconfig bridge0 down and then up after
which ifconfig for the bridge shows all interfaces in the bridge go
through listening, learning, and then finally forwarding state and
then packets pass as expected.

so am i doing something wrong, is this a bug, and short of firing off
a up/down of the bridge after boot up does anyone have any
suggestions?

thanks,
dave c