Motivation:
The wireless-regdb package is essential for setting up the WiFi infrastructure (access points). The regulation database packaged within there is signed by sforshee with his keys.
Bug:
The VyOS Kernel would not load / use the regdb provided with the image, because the kernel is not able to verify the signature of provided regdb.
vyos@vyos:~$ dmesg | grep 80211 dmesg: read kernel buffer failed: Operation not permitted vyos@vyos:~$ sudo dmesg | grep 80211 [ 675.892551] cfg80211: Loading compiled-in X.509 certificates for regulatory database [ 675.902101] cfg80211: Loaded X.509 cert 'sforshee: 00b28ddf47aef9cea7' [ 675.924470] cfg80211: loaded regulatory.db is malformed or signature is missing/invalid [ 676.009271] mac80211_hwsim: initializing netlink [ 676.009378] ieee80211 phy0: Selected rate control algorithm 'minstrel_ht' [ 676.011902] ieee80211 phy1: Selected rate control algorithm 'minstrel_ht' [ 693.277905] mac80211_hwsim: initializing netlink [ 693.278013] ieee80211 phy2: Selected rate control algorithm 'minstrel_ht' [ 693.278810] ieee80211 phy3: Selected rate control algorithm 'minstrel_ht' vyos@vyos:~$
Hence, no regulation domain can be set.
vyos@vyos:~$ iw reg get
global
country 00: DFS-UNSET
(2402 - 2472 @ 40), (6, 20), (N/A)
(2457 - 2482 @ 20), (6, 20), (N/A), AUTO-BW, PASSIVE-SCAN
(2474 - 2494 @ 20), (6, 20), (N/A), NO-OFDM, PASSIVE-SCAN
(5170 - 5250 @ 80), (6, 20), (N/A), AUTO-BW, PASSIVE-SCAN
(5250 - 5330 @ 80), (6, 20), (0 ms), DFS, AUTO-BW, PASSIVE-SCAN
(5490 - 5730 @ 160), (6, 20), (0 ms), DFS, PASSIVE-SCAN
(5735 - 5835 @ 80), (6, 20), (N/A), PASSIVE-SCAN
(57240 - 63720 @ 2160), (N/A, 0), (N/A)
vyos@vyos:~$ sudo iw reg set DE
vyos@vyos:~$ iw reg get
global
country 00: DFS-UNSET
(2402 - 2472 @ 40), (6, 20), (N/A)
(2457 - 2482 @ 20), (6, 20), (N/A), AUTO-BW, PASSIVE-SCAN
(2474 - 2494 @ 20), (6, 20), (N/A), NO-OFDM, PASSIVE-SCAN
(5170 - 5250 @ 80), (6, 20), (N/A), AUTO-BW, PASSIVE-SCAN
(5250 - 5330 @ 80), (6, 20), (0 ms), DFS, AUTO-BW, PASSIVE-SCAN
(5490 - 5730 @ 160), (6, 20), (0 ms), DFS, PASSIVE-SCAN
(5735 - 5835 @ 80), (6, 20), (N/A), PASSIVE-SCAN
(57240 - 63720 @ 2160), (N/A, 0), (N/A)
vyos@vyos:~$Workaround:
Install wireless-regdb from Ubuntu 22.04 LTS.
vyos@vyos:~$ sudo dpkg -i packages/wireless-regdb_2022.06.06-0ubuntu1~22.04.1_all.deb
dpkg: warning: downgrading wireless-regdb from 2022.06.06-1 to 2022.06.06-0ubuntu1~22.04.1
(Reading database ... 74992 files and directories currently installed.)
Preparing to unpack .../wireless-regdb_2022.06.06-0ubuntu1~22.04.1_all.deb ...
Unpacking wireless-regdb (2022.06.06-0ubuntu1~22.04.1) over (2022.06.06-1) ...
Setting up wireless-regdb (2022.06.06-0ubuntu1~22.04.1) ...
vyos@vyos:~$ sudo iw reg reload
vyos@vyos:~$ iw reg get
global
country 00: DFS-UNSET
(755 - 928 @ 2), (N/A, 20), (N/A), PASSIVE-SCAN
(2402 - 2472 @ 40), (N/A, 20), (N/A)
(2457 - 2482 @ 20), (N/A, 20), (N/A), AUTO-BW, PASSIVE-SCAN
(2474 - 2494 @ 20), (N/A, 20), (N/A), NO-OFDM, PASSIVE-SCAN
(5170 - 5250 @ 80), (N/A, 20), (N/A), AUTO-BW, PASSIVE-SCAN
(5250 - 5330 @ 80), (N/A, 20), (0 ms), DFS, AUTO-BW, PASSIVE-SCAN
(5490 - 5730 @ 160), (N/A, 20), (0 ms), DFS, PASSIVE-SCAN
(5735 - 5835 @ 80), (N/A, 20), (N/A), PASSIVE-SCAN
(57240 - 63720 @ 2160), (N/A, 0), (N/A)
vyos@vyos:~$ sudo iw reg set DE
vyos@vyos:~$ iw reg get
global
country DE: DFS-ETSI
(2400 - 2483 @ 40), (N/A, 20), (N/A)
(5150 - 5250 @ 80), (N/A, 23), (N/A), NO-OUTDOOR, AUTO-BW
(5250 - 5350 @ 80), (N/A, 20), (0 ms), NO-OUTDOOR, DFS, AUTO-BW
(5470 - 5725 @ 160), (N/A, 26), (0 ms), DFS
(5725 - 5875 @ 80), (N/A, 13), (N/A)
(5945 - 6425 @ 160), (N/A, 23), (N/A), NO-OUTDOOR
(57000 - 66000 @ 2160), (N/A, 40), (N/A)
vyos@vyos:~$