Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

WPS: Ignore too long SSID attribute

While it looks like all the users of this parsed attribute were able to
handle longer SSID values, there is no valid use case for these and to
avoid any potential future issues, enforce maximum length (32 bytes) on
the SSID during parsing.

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen 10 years ago
parent
d6c3067d32
commit
5a041acc0a
1 changed files with 5 additions and 0 deletions
Split View Show Diff Stats
  1. 5 0
      src/wps/wps_attr_parse.c

+ 5 - 0
src/wps/wps_attr_parse.c
View File 

@@ -491,6 +491,11 @@ static int wps_set_attr(struct wps_parse_attr *attr, u16 type,
 
 		attr->num_cred++;
 
 		break;
 
 	case ATTR_SSID:
 
+		if (len > SSID_MAX_LEN) {
 
+			wpa_printf(MSG_DEBUG,
 
+				   "WPS: Ignore too long SSID (len=%u)", len);
 
+			break;
 
+		}
 
 		attr->ssid = pos;
 
 		attr->ssid_len = len;
 
 		break;