Ath10k: Regulatory domain changed but wlan0 not effected

dennisN86 · January 15, 2020, 9:00am

I’m looking into setting up a WIFI access point on my pcengines APU2C4 router. Following the WiFi: Enable support for 5GHz AccesPoints with DFS thread on Phabricator and @alain fabulous work on getting a Compex WLE600VX card with the ath10 chipset up and running, I’m having issues changing the regulatory domain for the wifi card.
While the T452 thread covers the implementation of the ath10k on vyos 1.2 Crux by using the outdated method of compiling your own kernel, I’m trying to get the same wifi card up and running on vyos-1.3-rolling-latest.iso. Thanks to the vyos developers move towards buster as the underlying version of debian and the use of the upstream kernel, the card is properly detected without further adjustments:

dmesg | grep ath10*

[ 26.904062] ath10k_pci 0000:04:00.0: pci irq msi oper_irq_mode 2 irq_mode 0 reset_mode 0
[ 27.348793] ath10k_pci 0000:04:00.0: qca988x hw2.0 target 0x4100016c chip_id 0x043222ff sub 0000:0000
[ 27.348802] ath10k_pci 0000:04:00.0: kconfig debug 0 debugfs 0 tracing 0 dfs 0 testmode 0
[ 27.349453] ath10k_pci 0000:04:00.0: firmware ver 10.2.4-1.0-00045 api 5 features no-p2p,raw-mode,mfp,allows-mesh-bcast crc32 ccbd5104
[ 27.410228] ath10k_pci 0000:04:00.0: board_file api 1 bmi_id N/A crc32 bebc7c08
[ 28.596927] ath10k_pci 0000:04:00.0: htt-ver 2.1 wmi-op 5 htt-op 2 cal otp max-sta 128 raw 0 hwcrypto 1
[ 90.523437] ath10k_pci 0000:04:00.0: pdev param 0 not supported by firmware
[ 92.355298] ath10k_pci 0000:04:00.0: pdev param 0 not supported by firmware

lspci -v

04:00.0 Network controller: Qualcomm Atheros QCA986x/988x 802.11ac Wireless Network Adapter
Flags: bus master, fast devsel, latency 0, IRQ 56
Memory at f7600000 (64-bit, non-prefetchable) [size=2M]
Expansion ROM at f7800000 [disabled] [size=64K]
Capabilities: [40] Power Management version 2
Capabilities: [50] MSI: Enable+ Count=1/8 Maskable+ 64bit-
Capabilities: [70] Express Endpoint, MSI 00
Capabilities: [100] Advanced Error Reporting
Capabilities: [140] Virtual Channel
Capabilities: [160] Device Serial Number 00-00-00-00-00-00-00-00
Kernel driver in use: ath10k_pci
Kernel modules: ath10k_pci

The wifi card still needs the additional steps of rebuilding wireless-regdb as documented in T452:

On a Jessie build machine, do:
A. sudo apt-get build-dep crda wireless-regdb
B. git clone git://git.kernel.org/pub/scm/linux/kernel/git/sforshee/wireless-regdb.git
C. cd wireless-regdb
D. vim db.txt
E. Restrict regdom settings for your country according to local law! For Germany, this means
disabling channels greater 140 by prepending a # to the line: #(5725 - 5875 @ 80), (25 mW)
F. make
G. fakeroot checkinstall -D --install=no make install
2. copy deb package to vyos
3. On a VyOS instance, do:
A. install package on vyos: dpkg -i <your-wireless-regdb-package.deb>
B. reboot

With the hostapd sourced and configure set the output of sudo iw reg get sill looks like this

country 98: DFS-UNSET
(2402 - 2472 @ 40), (N/A, 20), (N/A)
(5170 - 5250 @ 80), (N/A, 23), (N/A), NO-OUTDOOR, AUTO-BW
(5250 - 5330 @ 80), (N/A, 20), (0 ms), NO-OUTDOOR, DFS, AUTO-BW
(5490 - 5725 @ 160), (N/A, 23), (0 ms), DFS
(57240 - 66000 @ 2160), (N/A, 40), (N/A)

phy#0

country US: DFS-FCC
(2402 - 2472 @ 40), (N/A, 30), (N/A)
(5170 - 5250 @ 80), (N/A, 23), (N/A), AUTO-BW
(5250 - 5330 @ 80), (N/A, 23), (0 ms), DFS, AUTO-BW
(5490 - 5730 @ 160), (N/A, 23), (0 ms), DFS
(5735 - 5835 @ 80), (N/A, 30), (N/A)
(57240 - 71000 @ 2160), (N/A, 40), (N/A)

cat show interfaces wireless wlan0

wireless wlan0 {
address 192.168.1.1/24
channel 36
description WIFI
hw-id 04:f0:21:41:80:a3
mode ac
physical-device phy0
security {
wpa {
cipher CCMP
mode wpa2
passphrase ****
}
}
ssid test1
type access-point
}

I’m able to connect to the wifi access-point but the regulatory domain is not set to DE: cat iw dev wlan0 info

Interface wlan0
ifindex 5
wdev 0x1
addr 04:f0:21:41:80:a3
ssid test1
type AP
wiphy 0
channel 36 (5180 MHz), width: 20 MHz, center1: 5180 MHz
txpower 23.00 dBm
multicast TXQ:
qsz-byt qsz-pkt flows drops marks overlmt hashcol tx-bytes tx-packets
0 0 10 0 0 0 0 1734 10

/etc/modprobe.d/cfg80221.conf /etc/default/crda also look like mentioned in T452

hostapd

hostapd configuration file for CompexWLE600VX

interface=wlan0
driver=nl80211
ctrl_interface=/var/run/hostapd_wlan0
ctrl_interface_group=0

IEEE 802.11

ssid=test1
hw_mode=a
channel=36
max_num_sta=32
auth_algs=1
disassoc_low_ack=1

DFS

ieee80211d=1
ieee80211h=1
country_code=DE
local_pwr_constraint=3

IEEE 802.11n

ieee80211n=1
ht_capab=[HT20][HT40+][HT40-][MAX-AMSDU-7935][SMPS-STATIC][LDPC][SHORT-GI-20][SHORT-GI-40][TX-STBC][RX-STBC1][DSSS_CCK-40]

IEEE 802.11ac

ieee80211ac=1
vht_oper_chwidth=1
vht_capab=[MAX-MPDU-11454][RXLDPC][SHORT-GI-80][TX-STBC-2BY1][RX-STBC-1][MAX-A-MPDU-LEN-EXP3][RX-ANTENNA-PATTERN][TX-ANTENNA-PATTERN][BF-ANTENNA-2][SOUNDING-DIMENSION-2][VHT-LINK-ADAPT3]

WPA/IEEE 802.11ac

wpa=2
wpa_passphrase=****
wpa_key_mgmt=WPA-PSK
rsn_pairwise=CCMP
wpa_ptk_rekey=600

vht_oper_centr_freq_seg0_idx=42
beacon_int=100
dtim_period=2
rts_threshold=2347
macaddr_acl=0
ignore_broadcast_ssid=0

hostapd event logger configuration

logger_syslog=-1
logger_syslog_level=2
logger_stdout=-1
logger_stdout_level=2

TX queue parameters

tx_queue_data3_aifs=7
tx_queue_data3_cwmin=15
tx_queue_data3_cwmax=1023
tx_queue_data3_burst=0
tx_queue_data2_aifs=3
tx_queue_data2_cwmin=15
tx_queue_data2_cwmax=63
tx_queue_data2_burst=0
tx_queue_data1_aifs=1
tx_queue_data1_cwmin=7
tx_queue_data1_cwmax=15
tx_queue_data1_burst=3.0
tx_queue_data0_aifs=1
tx_queue_data0_cwmin=3
tx_queue_data0_cwmax=7
tx_queue_data0_burst=1.5

WMM

wmm_enabled=1
uapsd_advertisement_enabled=1
wmm_ac_bk_cwmin=4
wmm_ac_bk_cwmax=10
wmm_ac_bk_aifs=7
wmm_ac_bk_txop_limit=0
wmm_ac_bk_acm=0
wmm_ac_be_aifs=3
wmm_ac_be_cwmin=4
wmm_ac_be_cwmax=10
wmm_ac_be_txop_limit=0
wmm_ac_be_acm=0
wmm_ac_vi_aifs=2
wmm_ac_vi_cwmin=3
wmm_ac_vi_cwmax=4
wmm_ac_vi_txop_limit=94
wmm_ac_vi_acm=0
wmm_ac_vo_aifs=2
wmm_ac_vo_cwmin=2
wmm_ac_vo_cwmax=3
wmm_ac_vo_txop_limit=47
wmm_ac_vo_acm=0
eapol_key_index_workaround=0
eap_server=0
own_ip_addr=127.0.0.1

configure

System Management

set system time-zone Europe/Berlin

##########################################################################

Ethernet Interfaces, DHCP and DNS Server

##########################################################################

Set Interface WAN

set interfaces ethernet eth0 address ‘10.10.10.10/24’
set interfaces ethernet eth0 description ‘WAN’
set interfaces ethernet eth0 duplex auto
set interfaces ethernet eth0 smp-affinity auto
set interfaces ethernet eth0 speed auto
set interfaces ethernet eth0 pppoe 0 default-route auto
set interfaces ethernet eth0 pppoe 0 mtu 1492
set interfaces ethernet eth0 pppoe 0 name-server auto
set interfaces ethernet eth0 pppoe 0 user-id [email protected]
set interfaces ethernet eth0 pppoe 0 password something

Set Interface LAN

set interfaces ethernet eth1 address ‘192.168.0.1/24’
set interfaces ethernet eth1 description ‘LAN’

Enable SSH

set service ssh port ‘22’

Set DHCP-Server LAN

set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 default-router ‘192.168.0.1’
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 dns-server ‘192.168.0.1’
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 domain-name ‘internal-network’
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 lease ‘86400’
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 range 0 start ‘192.168.0.9’
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 range 0 stop ‘192.168.0.254’

Set DNS-Server LAN

set service dns forwarding cache-size ‘0’
set service dns forwarding listen-address ‘192.168.0.1’
set service dns forwarding name-server ‘8.8.8.8’
set service dns forwarding name-server ‘8.8.4.4’
set service dns forwarding allow-from ‘0.0.0.0/0’

Set NAT LAN

set nat source rule 100 outbound-interface ‘eth0’
set nat source rule 100 source address ‘192.168.0.0/24’
set nat source rule 100 translation address masquerade

##########################################################################

WIFI Interface, DHCP and DNS Server

##########################################################################

Set Interface WLAN

set system wifi-regulatory-domain DE
set interfaces wireless wlan0 description ‘WIFI’
set interfaces wireless wlan0 address ‘192.168.1.1/24’
set interfaces wireless wlan0 type access-point
set interfaces wireless wlan0 channel 36
set interfaces wireless wlan0 mode ac
set interfaces wireless wlan0 ssid ‘test1’
set interfaces wireless wlan0 security wpa mode wpa2
set interfaces wireless wlan0 security wpa cipher CCMP
set interfaces wireless wlan0 security wpa passphrase ‘****’

Set DHCP-Server WIFI

set service dhcp-server shared-network-name WIFI authoritative
set service dhcp-server shared-network-name WIFI subnet 192.168.1.0/24 default-router ‘192.168.1.1’
set service dhcp-server shared-network-name WIFI subnet 192.168.1.0/24 dns-server ‘192.168.1.1’
set service dhcp-server shared-network-name WIFI subnet 192.168.1.0/24 domain-name ‘internal-wifi’
set service dhcp-server shared-network-name WIFI subnet 192.168.1.0/24 lease ‘86400’
set service dhcp-server shared-network-name WIFI subnet 192.168.1.0/24 range 0 start ‘192.168.1.10’
set service dhcp-server shared-network-name WIFI subnet 192.168.1.0/24 range 0 stop ‘192.168.1.254’

Set DNS-Server WIFI

set service dns forwarding listen-address ‘192.168.1.1’

Set NAT WIFI

set nat source rule 200 outbound-interface ‘eth0’
set nat source rule 200 source address ‘192.168.1.0/24’
set nat source rule 200 translation address masquerade

##########################################################################

Firewall rules

##########################################################################

Set Firewall WAN

set firewall name WAN-IN default-action ‘drop’
set firewall name WAN-IN rule 10 action ‘accept’
set firewall name WAN-IN rule 10 state established ‘enable’
set firewall name WAN-IN rule 10 state related ‘enable’

Set Firewall LAN

set firewall name WAN-LAN default-action ‘drop’
set firewall name WAN-LAN rule 10 action ‘accept’
set firewall name WAN-LAN rule 10 state established ‘enable’
set firewall name WAN-LAN rule 10 state related ‘enable’
set firewall name WAN-LAN rule 20 action ‘accept’
set firewall name WAN-LAN rule 20 icmp type-name ‘echo-request’
set firewall name WAN-LAN rule 20 protocol ‘icmp’
set firewall name WAN-LAN rule 20 state new ‘enable’

Set SSH access

set firewall name WAN-LAN rule 30 action ‘drop’
set firewall name WAN-LAN rule 30 destination port ‘22’
set firewall name WAN-LAN rule 30 protocol ‘tcp’
set firewall name WAN-LAN rule 30 recent count ‘4’
set firewall name WAN-LAN rule 30 recent time ‘60’
set firewall name WAN-LAN rule 30 state new ‘enable’
set firewall name WAN-LAN rule 31 action ‘accept’
set firewall name WAN-LAN rule 31 destination port ‘22’
set firewall name WAN-LAN rule 31 protocol ‘tcp’
set firewall name WAN-LAN rule 31 state new ‘enable’

Apply Firewall policies

set interfaces ethernet eth0 firewall in name ‘WAN-IN’
set interfaces ethernet eth0 firewall local name ‘WAN-LAN’

Anyone got an idea why my configuration does apply or finds some mistake in it?

Edit: I’m using vyos-1.3-rolling-202001150217-amd64.iso

Edit2: @admins Sorry for double posting this thread. Please delete the other one

zsdc · January 16, 2020, 2:17pm

Hello!
Debugging, in this case, could be a true hell: some wireless cards can not change the regulatory domain due to some internal (hardware/firmware) limits, even if all software work properly. But, let try to at least get maximum information, which could help to isolate the problem.
Try, please, to collect all possible logs from the system (kernel module, hostapd, crda, etc.), they must help to recreate the configuration process, as a regulatory domain can be configured multiple times by different software.

dennisN86 · January 17, 2020, 3:50pm

Here we go

lsmod

ath10k_pci 36864 0
ath10k_core 319488 1 ath10k_pci
ath 28672 1 ath10k_core
mac80211 458752 1 ath10k_core
cfg80211 319488 3 ath,mac80211,ath10k_core

modinfo ath10k_pci

filename: /lib/modules/4.19.91-amd64-vyos/kernel/drivers/net/wireless/ath/ath10k/ath10k_pci.ko
firmware: ath10k/QCA9377/hw1.0/board.bin
firmware: ath10k/QCA9377/hw1.0/firmware-5.bin
firmware: ath10k/QCA9377/hw1.0/firmware-6.bin
firmware: ath10k/QCA6174/hw3.0/board-2.bin
firmware: ath10k/QCA6174/hw3.0/board.bin
firmware: ath10k/QCA6174/hw3.0/firmware-6.bin
firmware: ath10k/QCA6174/hw3.0/firmware-5.bin
firmware: ath10k/QCA6174/hw3.0/firmware-4.bin
firmware: ath10k/QCA6174/hw2.1/board-2.bin
firmware: ath10k/QCA6174/hw2.1/board.bin
firmware: ath10k/QCA6174/hw2.1/firmware-5.bin
firmware: ath10k/QCA6174/hw2.1/firmware-4.bin
firmware: ath10k/QCA9887/hw1.0/board-2.bin
firmware: ath10k/QCA9887/hw1.0/board.bin
firmware: ath10k/QCA9887/hw1.0/firmware-5.bin
firmware: ath10k/QCA988X/hw2.0/board-2.bin
firmware: ath10k/QCA988X/hw2.0/board.bin
firmware: ath10k/QCA988X/hw2.0/firmware-5.bin
firmware: ath10k/QCA988X/hw2.0/firmware-4.bin
firmware: ath10k/QCA988X/hw2.0/firmware-3.bin
firmware: ath10k/QCA988X/hw2.0/firmware-2.bin
license: Dual BSD/GPL
description: Driver support for Qualcomm Atheros 802.11ac WLAN PCIe/AHB devices
author: Qualcomm Atheros
alias: pci:v0000168Cd00000050svsdbcsci*
alias: pci:v0000168Cd00000042svsdbcsci*
alias: pci:v0000168Cd00000046svsdbcsci*
alias: pci:v0000168Cd00000056svsdbcsci*
alias: pci:v0000168Cd00000040svsdbcsci*
alias: pci:v0000168Cd0000003Esvsdbcsci*
alias: pci:v0000168Cd00000041svsdbcsci*
alias: pci:v0000168Cd0000003Csvsdbcsci*
alias: pci:v00000777d000011ACsvsdbcsci*
depends: ath10k_core
retpoline: Y
intree: Y
name: ath10k_pci
vermagic: 4.19.91-amd64-vyos SMP mod_unload modversions
parm: irq_mode:0: auto, 1: legacy, 2: msi (default: 0) (uint)
parm: reset_mode:0: auto, 1: warm only (default: 0) (uint)

modinfo ath10k_core

filename: /lib/modules/4.19.91-amd64-vyos/kernel/drivers/net/wireless/ath/ath10k/ath10k_core.ko
license: Dual BSD/GPL
description: Core module for Qualcomm Atheros 802.11ac wireless LAN cards.
author: Qualcomm Atheros
depends: mac80211,cfg80211,ath
retpoline: Y
intree: Y
name: ath10k_core
vermagic: 4.19.91-amd64-vyos SMP mod_unload modversions
parm: debug_mask:Debugging mask (uint)
parm: uart_print:Uart target debugging (bool)
parm: skip_otp:Skip otp failure for calibration in testmode (bool)
parm: cryptmode:Crypto mode: 0-hardware, 1-software (uint)
parm: rawmode:Use raw 802.11 frame datapath (bool)
parm: coredump_mask:Bitfield of what to include in firmware crash file (ulong)

modinfo ath

filename: /lib/modules/4.19.91-amd64-vyos/kernel/drivers/net/wireless/ath/ath.ko
license: Dual BSD/GPL
description: Shared library for Atheros wireless LAN cards.
author: Atheros Communications
depends: cfg80211
retpoline: Y
intree: Y
name: ath
vermagic: 4.19.91-amd64-vyos SMP mod_unload modversions

Edit:

vyos@vyos:~$ show version
Version: VyOS 1.3-rolling-202001140217
Built by: [email protected]
Built on: Tue 14 Jan 2020 02:17 UTC
Build UUID: a771a636-8b23-4fd1-9adf-1ccc1b4373ff
Build Commit ID: 2b332ea0c3cd73

Architecture: x86_64
Boot via: installed image
System type: bare metal

Hardware vendor: PC Engines
Hardware model: apu2
Hardware S/N: 1276350
Hardware UUID: Unknown

Copyright: VyOS maintainers and contributors

dmesg boot message

[ 0.068961] do_IRQ: 1.55 No irq handler for vector
[ 0.068961] do_IRQ: 2.55 No irq handler for vector
[ 0.068961] do_IRQ: 3.55 No irq handler for vector
[ OK ] Started Dispatch Password �…ts to Console Directory Watch.
[ OK ] Created slice system-serial\x2dgetty.slice.
[ OK ] Listening on Journal Socket (/dev/log).
[ OK ] Set up automount Arbitrary�…s File System Automount Point.
[ OK ] Listening on udev Control Socket.
[ OK ] Listening on Syslog Socket.
[ OK ] Reached target Swap.
[ OK ] Created slice system-getty.slice.
[ OK ] Listening on Journal Audit Socket.
[ OK ] Created slice User and Session Slice.
[ OK ] Reached target Slices.
[ OK ] Listening on udev Kernel Socket.
[ OK ] Listening on initctl Compatibility Named Pipe.
[ OK ] Reached target Remote File Systems.
[ OK ] Listening on Journal Socket.
Mounting Huge Pages File System…
Mounting Kernel Debug File System…
Mounting POSIX Message Queue File System…
Starting Load Kernel Modules…
Starting Remount Root and Kernel File Systems…
Starting Set the console keyboard layout…
Starting udev Coldplug all Devices…
Starting Journal Service…
Starting Create list of re�…odes for the current kernel…
[ OK ] Started Forward Password R�…uests to Wall Directory Watch.
[ OK ] Reached target Paths.
[ OK ] Reached target Local Encrypted Volumes.
[ OK ] Mounted Huge Pages File System.
[ OK ] Mounted Kernel Debug File System.
[ OK ] Mounted POSIX Message Queue File System.
[ OK ] Started Remount Root and Kernel File Systems.
[ OK ] Started Create list of req�… nodes for the current kernel.
Starting Load/Save Random Seed…
Starting Create System Users…
[ OK ] Started VyOS DNS configuration keeper.
[ OK ] Started Load Kernel Modules.
Starting Apply Kernel Variables…
[ OK ] Started Load/Save Random Seed.
[ OK ] Started udev Coldplug all Devices.
Starting Helper to synchronize boot up for ifupdown…
[ OK ] Started Create System Users.
[ OK ] Started Apply Kernel Variables.
[ OK ] Started Journal Service.
[ OK ] Started Helper to synchronize boot up for ifupdown.
Starting Flush Journal to Persistent Storage…
Starting Create Static Device Nodes in /dev…
[ OK ] Started Flush Journal to Persistent Storage.
[ OK ] Started Create Static Device Nodes in /dev.
Starting udev Kernel Device Manager…
[ OK ] Started Set the console keyboard layout.
[ OK ] Reached target Local File Systems (Pre).
Mounting /tmp…
[ OK ] Mounted /tmp.
[ OK ] Reached target Local File Systems.
Starting Set console font and keymap…
Starting Create Volatile Files and Directories…
Starting Raise network interfaces…
[ OK ] Started Set console font and keymap.
[ OK ] Started udev Kernel Device Manager.
[ OK ] Started Create Volatile Files and Directories.
Starting Update UTMP about System Boot/Shutdown…
Starting live-config conta�…t process (late userspace)…
[ OK ] Reached target System Time Synchronized.
[ OK ] Started Entropy daemon using the HAVEGE algorithm.
[ OK ] Started Update UTMP about System Boot/Shutdown.
[ OK ] Reached target System Initialization.
[ OK ] Listening on D-Bus System Message Bus Socket.
[ OK ] Listening on UUID daemon activation socket.
[ OK ] Started Daily Cleanup of Temporary Directories.
[ OK ] Listening on ACPID Listen Socket.
[ OK ] Reached target Sockets.
[ OK ] Started Daily rotation of log files.
[ OK ] Reached target Timers.
[ OK ] Found device /dev/ttyS0.
[ 25.297094] PKCS#7 signature not signed with a trusted key
[ OK ] Started live-config contai�…oot process (late userspace)…
[ OK ] Reached target Basic System.
Starting Login Service…
[ OK ] Started D-Bus System Message Bus.
Starting Atop process accounting daemon…
[ OK ] Started ACPI event daemon.
[ OK ] Started Regular background program processing daemon.
Starting Deferred execution scheduler…
Starting System Logging Service…
Starting Restore /etc/reso�… the ppp link was shut down…
Starting LSB: Cleans up pppoe peers files…
[ OK ] Started VyOS Router.
Starting LSB: AWS EC2 inst�…tch and load ssh public key…
[ OK ] Started Raise network interfaces.
[ OK ] Started Atop process accounting daemon.
[ OK ] Started Atop advanced performance monitor.
[ OK ] Reached target Network.
Starting OpenBSD Secure Shell session cleanup…
Starting Permit User Sessions…
[ OK ] Started Deferred execution scheduler.
[ OK ] Started OpenBSD Secure Shell session cleanup.
[ 38.282594] vyos-router[766]: Started watchfrr.
[ 38.321249] vyos-router[766]: Mounting VyOS Config…done.
[ 109.463152] vyos-router[766]: Starting VyOS router: migrate rl-system firewall configure failed!
[ 110.282809] vyos-config[831]: Configuration error

Welcome to VyOS - vyos ttyS0

vyos login: vyos
Password:
Linux vyos 4.19.91-amd64-vyos #1 SMP Sat Dec 28 14:52:12 UTC 2019 x86_64

The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.

Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
vyos@vyos:~$

I have some thoughts on my mind, regarding changes I made in comparison to T452:

I’ve used the current version of wireless-regdb 2016.06.10-1, which is provided in the debian stable repository. The first time I was building the regdb manually, vyos informed me, I was about to use an older version then the one installed.
The hostapd I’m using is called hostapd_wle600vx_DFS.conf and was sourced with hostapd command. Do I have to follow a naming convention and does the file need to live in a certain directory?
Does the order of things matter in which I installed my homebrewed wireless-regdb , set regulatory domain DE and so forth? I tried to set up the wifi card in different order with always the same result…

akvadrako · December 2, 2020, 9:00am

Have you seen this:

It applies a few patches from OpenWrt which fix the regulatory domain behavior in mainline Linux. Without them the region in the EEPROM is never overridden – instead if a new region is provided, the restrictions are just merged.

I think an alternative is modifying your regdb so the EEPROM region, US in your case, matches the restrictions you want.