iwinfo scan does not parse all 802.1x encyptions correctly #33
Description
I'm trying to add compatibility for 8021.x networks and iwinfo wlan0 scan reporting some of them as WEP Open/Shared (WEP-40, WEP-104) When they are really different ciphers on a WPA3 enterprise network. I don't think this plays into it since this happens on the RADIUS side rather than the initial wifi scan, but they are all using EAP-TLS.
Notably, I experienced this on a openwrt-23.05 build. I then tried pulling from here directly and building and had the same results.
My wifi firmware and drivers are sufficient to understand this information as it is seen correctly in the wpa_cli scan results and in the iw dev wlan0 scan
Here is what iwinfo wlan0 scan shows:
root@OpenWrt:~# iwinfo wlan0 scan | grep Open1x -A3
ESSID: "Open1x"
Mode: Master Frequency: 2.462 GHz Band: 2.4 GHz Channel: 11
Signal: -50 dBm Quality: 60/70
Encryption: WPA2 802.1X (CCMP)
--
ESSID: "Open1x_shared"
Mode: Master Frequency: 2.462 GHz Band: 2.4 GHz Channel: 11
Signal: -50 dBm Quality: 60/70
Encryption: WPA3 SAE (CCMP)
--
ESSID: "Open1x_w3_cnsa"
Mode: Master Frequency: 2.462 GHz Band: 2.4 GHz Channel: 11
Signal: -50 dBm Quality: 60/70
Encryption: WPA3 802.1X (GCMP-256)
--
ESSID: "Open1x_w3_256"
Mode: Master Frequency: 2.462 GHz Band: 2.4 GHz Channel: 11
Signal: -51 dBm Quality: 59/70
Encryption: WEP Open/Shared (WEP-40, WEP-104)
--
ESSID: "Open1x_w3"
Mode: Master Frequency: 2.462 GHz Band: 2.4 GHz Channel: 11
Signal: -53 dBm Quality: 57/70
Encryption: WEP Open/Shared (WEP-40, WEP-104)
--
ESSID: "Open1x_w3per"
Mode: Master Frequency: 2.462 GHz Band: 2.4 GHz Channel: 11
Signal: -53 dBm Quality: 57/70
Encryption: WPA3 SAE (CCMP)
from wpa_cli scan_results
de:ad:be:ef:12:34 5805 -60 [WPA2-EAP-SUITE-B-192-GCMP-256][ESS] Open1x_w3_cnsa
de:ad:be:ef:12:35 5805 -60 [WPA2-EAP-SHA256-GCMP-256][ESS] Open1x_w3_256
de:ad:be:ef:12:36 5805 -60 [WPA2-SAE-CCMP][SAE-H2E][ESS] Open1x_w3per
de:ad:be:ef:12:37 5805 -60 [WPA2-EAP-SHA256-CCMP][ESS] Open1x_w3
I notice that this also shows WPA2, but i think that by following the spec of WPA. These are all WPA3 networks since that have MFP-required
from iw dev wlan0 scan:
SSID: Open1x_w3
Supported rates: 6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0
DS Parameter set: channel 161
RSN: * Version: 1
* Group cipher: CCMP
* Pairwise ciphers: CCMP
* Authentication suites: IEEE 802.1X/SHA-256
* Capabilities: 4-PTKSA-RC 4-GTKSA-RC MFP-required MFP-capable (0x00e8)
* 0 PMKIDs
* Group mgmt cipher suite: AES-128-CMAC