Broken wpa_passphrase - \n characters are not parsed

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi

I was playing around with wpa_passphrase and discovered, that newlines are not stripped away when using wpa_passphrase (similar like CVE-2016-4476?). So if someone uses wpa_passphrase to generate a configuration file a user might add arbitrary data to the configuration file, example: 

[root@linux ~]# wpa_passphrase "FOO
> BAR
> #" "PASS
> EAP=MD5
> #”

network={
	ssid="FOO
BAR
#"
	#psk="PASS
EAP=MD5
#"
	psk=7adcbee301dc48f0fb7f7a061283ac51232d11414547225bcdbc1307b56e5509
}

I guess this should be handled correctly in wpa_passphrase, but I might be wrong.

cheers
Michael
_______________________________________________
Hostap mailing list
Hostap@xxxxxxxxxxxxxxxxxxx
http://lists.infradead.org/mailman/listinfo/hostap
[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]

  Powered by Linux