Broken wpa_passphrase - \n characters are not parsed

Michael Vogt michael at neeo.com
Mon Dec 5 02:17:55 PST 2016


Hi

I was playing around with wpa_passphrase and discovered, that newlines are not stripped away when using wpa_passphrase (similar like CVE-2016-4476?). So if someone uses wpa_passphrase to generate a configuration file a user might add arbitrary data to the configuration file, example: 

[root at linux ~]# wpa_passphrase "FOO
> BAR
> #" "PASS
> EAP=MD5
> #”

network={
	ssid="FOO
BAR
#"
	#psk="PASS
EAP=MD5
#"
	psk=7adcbee301dc48f0fb7f7a061283ac51232d11414547225bcdbc1307b56e5509
}

I guess this should be handled correctly in wpa_passphrase, but I might be wrong.

cheers
Michael


More information about the Hostap mailing list