[Wifi] Flame can't connect to network when configuring "TTLS" and "MSCHAPV2" in device and "copy_request_to_tunnel = yes" & "use_tunneled_reply = yes" in radius server

VERIFIED FIXED in Firefox 32

Status

VERIFIED FIXED
5 years ago
5 years ago

People

(Reporter: gchang, Assigned: chucklee)

Tracking

unspecified
2.0 S5 (4july)
ARM
Gonk (Firefox OS)

Firefox Tracking Flags

(blocking-b2g:2.0+, firefox31 wontfix, firefox32 fixed, firefox33 fixed, b2g-v2.0 fixed, b2g-v2.1 fixed)

Details

Attachments

(2 attachments)

(Reporter)

Description

5 years ago
Created attachment 8443306 [details]
The logs of flame

### Steps:
In Radius server:
1. open /etc/freeradius/eap.conf
2. modify copy_request_to_tunnel = yes & use_tunneled_reply = yes in ttls {}
3. restart radius server (/usr/sbin/freeradius -X)

In flame:
1. Navigate to Settings > Wi-Fi page
2. Choose the network supporting WPA-EAP TTLS
3. Select "TTLS" in EAP method
4. Select "MSCHAP V2" in phase 2 authentication
5. Type username and password
6. Tap "OK" button

### Expected:
1. The wireless network should be connected.
2. Flame can get IP address.

### Actual:
1. Device doesn't get IP address and can't connect to network 

### Reproduce rate
always

### Version:
Device    flame
Gaia      23e06c3624309db22ad9cb736d89700768b42b36
Gecko     https://hg.mozilla.org/releases/mozilla-aurora/rev/164b61458ca5
BuildID   20140619000200
Version   32.0a2
(Reporter)

Updated

5 years ago
blocking-b2g: --- → 2.0?
status-b2g-v2.0: --- → affected
sounds like a functional bug in a new feature, considering blocking.
blocking-b2g: 2.0? → 2.0+

Comment 2

5 years ago
Hi Chuck, assign this bug to you, thanks.
Assignee: nobody → chulee
Target Milestone: --- → 2.0 S5 (4july)
Use phase2="auth=MSCHAPV2" instead of phase2="autheap=MSCHAPV2" solves the problem.
Created attachment 8445065 [details] [diff] [review]
Use auth instead of autheap in phase2 settings.

After comparing setting of same wifi mode with android phone and connection test, we found that we need to use "auth" in phase2 settings for TLS and TTLS methods.
But there's a exception[1] while using TLS as phase2 authentication, so keep using autheap while phase2 is TLS(although we don't support it yet).

[1] http://hostap.epitest.fi/cgit/hostap/plain/wpa_supplicant/wpa_supplicant.conf
Attachment #8445065 - Flags: review?(vchang)
Attachment #8445065 - Flags: review?(vchang) → review+
https://hg.mozilla.org/mozilla-central/rev/454aff4d62f3
Status: NEW → RESOLVED
Last Resolved: 5 years ago
Resolution: --- → FIXED
https://hg.mozilla.org/releases/mozilla-aurora/rev/b33e040d2d24
status-b2g-v2.0: affected → fixed
status-b2g-v2.1: --- → fixed
status-firefox31: --- → wontfix
status-firefox32: --- → fixed
status-firefox33: --- → fixed
(Reporter)

Comment 9

5 years ago
Verified @
Gaia      43226cf5c3ad19728a88b3786595670b6d60e5c6
Gecko     https://hg.mozilla.org/releases/mozilla-aurora/rev/d0275ba5f438
BuildID   20140701160202
Version   32.0a2
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.