2019-03-13 06:44:32 |
Cullen Jennings |
bug |
|
|
added bug |
2019-03-20 16:41:24 |
Mathieu Trudel-Lapierre |
netplan: status |
New |
Triaged |
|
2019-03-20 16:41:27 |
Mathieu Trudel-Lapierre |
netplan: importance |
Undecided |
Medium |
|
2019-03-20 16:41:39 |
Mathieu Trudel-Lapierre |
bug task added |
|
netplan.io (Ubuntu) |
|
2019-03-20 16:41:51 |
Mathieu Trudel-Lapierre |
netplan.io (Ubuntu): status |
New |
Triaged |
|
2019-03-20 16:41:59 |
Mathieu Trudel-Lapierre |
netplan.io (Ubuntu): importance |
Undecided |
Medium |
|
2019-03-20 16:42:16 |
Mathieu Trudel-Lapierre |
tags |
|
bitesize |
|
2019-07-18 12:40:21 |
Francis Ginther |
tags |
bitesize |
bitesize id-5d14ed4981f5ba74a04b0aa9 |
|
2019-07-19 14:38:36 |
Steve Langasek |
summary |
broken genration of wpa config for hashed passwords |
broken generation of wpa config for hashed passwords |
|
2019-08-20 18:04:14 |
Mathieu Trudel-Lapierre |
netplan: status |
Triaged |
Fix Released |
|
2019-08-20 18:04:18 |
Mathieu Trudel-Lapierre |
netplan.io (Ubuntu): status |
Triaged |
In Progress |
|
2019-08-22 01:13:47 |
Launchpad Janitor |
netplan.io (Ubuntu): status |
In Progress |
Fix Released |
|
2019-08-27 16:23:56 |
Mathieu Trudel-Lapierre |
description |
Have a look at the netplan.io config file at https://gist.github.com/fluffy/e2a202a0816299d519dabf7bbed2f7bb for 802.1 auth for a wired network.
This will generate a wpa config file at /run/netplan/wpa-enp4s0.conf that has
password="hash:83d…0b11"
However, this is not correct. It should not have the quotes and should look like
password=hash:83d…0b11
The quotes cause the wpa_suppicant to not detect this is a hashed password and instead think it is a normal password that starts with hash:
This is an important bug because at Cisco we can not store our passwords unhashed on disk and our production network requires 802.1x auth. I think this is simple to fix and I'm glad to send a PR or any other information that helps fix it.
Thank you for looking at this, Cullen |
[Impact]
netplan users configuring a wireless connection; who would like to use password hashes for the password (ie. they might not know the real password, etc.)
[Test case]
Write configuration for netplan wireless interface:
network:
version: 2
wifis:
wlan0:
access-points:
MyAccessPoint:
password: hash:83d…0b11
Verify that the wireless network can be succesfully connected to.
[Regression Potential]
This has a minimal risk of regression. Passwords do not typically include "hash:" as first characters, and if so may be escaped via quoting. This does not otherwise affect any other feature of netplan, and is limited to allowing users to use the commonly accepted format of hashed passwords to pass to the renderer, for connecting to wifi.
---
Have a look at the netplan.io config file at https://gist.github.com/fluffy/e2a202a0816299d519dabf7bbed2f7bb for 802.1 auth for a wired network.
This will generate a wpa config file at /run/netplan/wpa-enp4s0.conf that has
password="hash:83d…0b11"
However, this is not correct. It should not have the quotes and should look like
password=hash:83d…0b11
The quotes cause the wpa_suppicant to not detect this is a hashed password and instead think it is a normal password that starts with hash:
This is an important bug because at Cisco we can not store our passwords unhashed on disk and our production network requires 802.1x auth. I think this is simple to fix and I'm glad to send a PR or any other information that helps fix it.
Thank you for looking at this, Cullen |
|
2019-08-27 22:48:07 |
Brian Murray |
netplan.io (Ubuntu Bionic): status |
New |
Fix Committed |
|
2019-08-27 22:48:09 |
Brian Murray |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2019-08-27 22:48:10 |
Brian Murray |
bug |
|
|
added subscriber SRU Verification |
2019-08-27 22:48:13 |
Brian Murray |
tags |
bitesize id-5d14ed4981f5ba74a04b0aa9 |
bitesize id-5d14ed4981f5ba74a04b0aa9 verification-needed verification-needed-bionic |
|
2019-09-30 21:02:08 |
Mathieu Trudel-Lapierre |
tags |
bitesize id-5d14ed4981f5ba74a04b0aa9 verification-needed verification-needed-bionic |
bitesize id-5d14ed4981f5ba74a04b0aa9 verification-done-disco verification-needed verification-needed-bionic |
|
2019-09-30 21:28:51 |
Mathieu Trudel-Lapierre |
tags |
bitesize id-5d14ed4981f5ba74a04b0aa9 verification-done-disco verification-needed verification-needed-bionic |
bitesize id-5d14ed4981f5ba74a04b0aa9 verification-done-bionic verification-done-disco |
|
2019-10-02 21:48:09 |
Brian Murray |
nominated for series |
|
Ubuntu Disco |
|
2019-10-02 21:48:09 |
Brian Murray |
bug task added |
|
netplan.io (Ubuntu Disco) |
|
2019-10-02 21:48:15 |
Brian Murray |
netplan.io (Ubuntu Disco): status |
New |
Fix Committed |
|
2019-10-02 21:54:51 |
Launchpad Janitor |
netplan.io (Ubuntu Disco): status |
Fix Committed |
Fix Released |
|
2019-10-02 21:55:08 |
Launchpad Janitor |
netplan.io (Ubuntu Bionic): status |
Fix Committed |
Fix Released |
|
2019-10-02 21:55:35 |
Brian Murray |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|