801262 – admin live cd wpa_supplicant missing wps use flag

Bug 801262 - admin live cd wpa_supplicant missing wps use flag

Summary: admin live cd wpa_supplicant missing wps use flag

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Release Media
Classification:	Unclassified
Component:	LiveCD/DVD/USB (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Release Team

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2021-07-09 01:45 UTC by Nick Leippe
Modified:	2023-08-19 18:41 UTC (History)
CC List:	1 user (show)

See Also:	https://github.com/gentoo/releng/pull/11
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Nick Leippe 2021-07-09 01:45:34 UTC

In the admin live cd boot environment wpa_supplicant has no WPS functionality available because it's built without the wps use flag.

Reproducible: Always

Steps to Reproduce:
1. wpa_cli scan
2. wpa_cli scan_results
3. network that should show [WPS] does not
# cat /var/db/pkg/net-wireless/wpa_supplicant*/USE
abi_x86_64 amd64 bindist elibc_glibc fils hs2-0 kernel_linux mbo mesh readline userland_GNU

Actual Results:  
live cd wpa_cli scan_result:
[WPA2-EAP+PSK+EAP-SHA256+PSK-SHA256-CCMP][ESS]  test

wpa_cli wps_pbc:
Selected interface 'wlp2s0'
UNKNOWN COMMAND


Expected Results:  
wpa_cli scan_result from client with WPS support enabled:
[WPA2-EAP+PSK+EAP-SHA256+PSK-SHA256-CCMP][WPS][ESS]     test

wpa_cli wps_pbc
Selected interface 'wlp2s0'
OK



While WPS use isn't the greatest, some devices require it and the admin live cd should at least support the functionality for completeness.

I would set the severity of this as "minor" except that there is no workaround. Without this the admin live cd is useless to me for network diagnostic cases requiring WPS.

Comment 1 Joe Kappus 2023-08-04 09:25:24 UTC

Agree that using WPS is bad taste given previous security vulnerabilities. But a Gentoo user may not have a say in the administration of networks they use and common environments should be supported.

I am aware of at least a few printer models that can only connect via WPS and new WiFi 6 routers and mesh extenders are still shipping with the WPS button in 2023.

Following the lead on TKIP being re-added, I've submitted a PR to add it.

Comment 2 Larry the Git Cow gentoo-dev

2023-08-19 18:41:21 UTC

The bug has been closed via the following commit(s):

https://gitweb.gentoo.org/proj/releng.git/commit/?id=eb3ab2b15a742a2de0d5f293307eb3c19317f42d

commit eb3ab2b15a742a2de0d5f293307eb3c19317f42d
Author:     Joe Kappus <joe@wt.gd>
AuthorDate: 2023-08-04 09:04:13 +0000
Commit:     Andreas K. Hüttel <dilfridge@gentoo.org>
CommitDate: 2023-08-19 18:41:01 +0000

    portage/isos: enable wps on wpa_supplicant
    
    As with TKIP, WPS is still in common usage. However, unlike TKIP,
    this is still a manufacturer pushed 'feature'. As users may not
    have a say in their network administrator's decisions, enable it.
    
    Closes: https://bugs.gentoo.org/801262
    Signed-off-by: Joe Kappus <joe@wt.gd>
    Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org>

 releases/portage/isos-qemu/package.use/wpa_supplicant | 1 +
 releases/portage/isos/package.use/wpa_supplicant      | 2 +-
 releases/portage/livegui/package.use/wpa_supplicant   | 2 +-
 3 files changed, 3 insertions(+), 2 deletions(-)