Jouni Malinen ecbb0b3dc1 WPS: Reject a Credential with invalid passphrase ... WPA/WPA2-Personal passphrase is not allowed to include control characters. Reject a Credential received from a WPS Registrar both as STA (Credential) and AP (AP Settings) if the credential is for WPAPSK or WPA2PSK authentication type and includes an invalid passphrase. This fixes an issue where hostapd or wpa_supplicant could have updated the configuration file PSK/passphrase parameter with arbitrary data from an external device (Registrar) that may not be fully trusted. Should such data include a newline character, the resulting configuration file could become invalid and fail to be parsed. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>		2016-05-02 11:08:25 +03:00
..
http.h	WPS: Move POST URL validation into web_connection_parse_post()	2009-12-12 16:48:50 +02:00
http_client.c	WPS: Use a shared error path in http_client_addr()	2015-08-29 13:42:32 +03:00
http_client.h	Remove the GPL notification from files contributed by Jouni Malinen	2012-02-11 19:39:36 +02:00
http_server.c	WPS: Merge common error paths in HTTP server	2015-08-28 20:33:22 +03:00
http_server.h	Remove the GPL notification from files contributed by Jouni Malinen	2012-02-11 19:39:36 +02:00
httpread.c	WPS: Remove duplicated isgraph() loop in HTTP header parsing	2015-08-28 23:59:28 +03:00
httpread.h	Remove the GPL notification from files contributed by Atheros	2012-02-11 19:39:36 +02:00
Makefile	tests: Add p2p-fuzzer	2015-04-22 11:44:19 +03:00
ndef.c	WPS: Avoid bogus static analyzer warning in ndef_parse_record()	2015-07-17 20:43:17 +03:00
upnp_xml.c	WPS ER: Fix UPnP XML Device Description parser to find correct device	2011-08-31 13:56:03 +03:00
upnp_xml.h	WPS ER: Fix UPnP XML Device Description parser to find correct device	2011-08-31 13:56:03 +03:00
wps.c	WPS: Explicitly clear wpabuf memory with key information	2016-04-28 20:32:15 +03:00
wps.h	WPS: Use only os_get_random() for PIN generation	2016-02-19 18:44:40 +02:00
wps_attr_build.c	WPS: Explicitly clear wpabuf memory with key information	2016-04-28 20:32:15 +03:00
wps_attr_parse.c	WPS: Avoid undefined behavior in pointer arithmetic	2015-10-18 11:37:47 +03:00
wps_attr_parse.h	WPS: Reduce struct wps_parse_attr size	2015-09-07 23:02:19 +03:00
wps_attr_process.c	WPS: Reject a Credential with invalid passphrase	2016-05-02 11:08:25 +03:00
wps_common.c	WPS: Explicitly clear wpabuf memory with key information	2016-04-28 20:32:15 +03:00
wps_defs.h	WPS: Testing mechanism to force auth/encr type flags	2016-01-01 13:42:04 +02:00
wps_dev_attr.c	P2P NFC: Add WPS attribute building for P2P NFC	2014-01-27 21:10:55 +02:00
wps_dev_attr.h	P2P NFC: Add WPS attribute building for P2P NFC	2014-01-27 21:10:55 +02:00
wps_enrollee.c	WPS: Explicitly clear wpabuf memory with key information	2016-04-28 20:32:15 +03:00
wps_er.c	WPS ER: Clean up WPS session on PutMessage error cases	2015-09-07 17:45:53 +03:00
wps_er.h	WPS ER: Allow UPnP interface to be forced	2013-04-28 21:56:24 +03:00
wps_er_ssdp.c	WPS ER: Fix SSDP CACHE-CONTROL line parser	2015-08-15 22:24:15 +03:00
wps_i.h	WPS: Extend per-station PSK to support ER case as well	2014-03-13 18:22:25 +02:00
wps_module_tests.c	Declare all read only data structures as const	2015-04-25 17:33:06 +03:00
wps_registrar.c	WPS: Explicitly clear wpabuf memory with key information	2016-04-28 20:32:15 +03:00
wps_upnp.c	WPS: Support parallel UPnP WPS protocol runs	2015-11-30 16:57:11 +02:00
wps_upnp.h	WPS: Support parallel UPnP WPS protocol runs	2015-11-30 16:57:11 +02:00
wps_upnp_ap.c	WPS: Merge SetSelectedRegistrar parsing error returns	2015-08-31 17:25:20 +03:00
wps_upnp_event.c	WPS: Merge event_send_start() error paths	2015-08-31 17:25:20 +03:00
wps_upnp_i.h	WPS: Support parallel UPnP WPS protocol runs	2015-11-30 16:57:11 +02:00
wps_upnp_ssdp.c	WPS: Merge identical error paths in ssdp_listener_open()	2015-09-05 19:28:45 +03:00
wps_upnp_web.c	WPS: Support parallel UPnP WPS protocol runs	2015-11-30 16:57:11 +02:00
wps_validate.c	WPS: Add support for 60 GHz band	2015-04-28 00:22:16 +03:00