[Bug 1819831] Re: broken generation of wpa config for hashed passwords

Launchpad Bug Tracker 1819831 at bugs.launchpad.net
Thu Aug 22 01:13:47 UTC 2019 

This bug was fixed in the package netplan.io - 0.98-0ubuntu1

---------------
netplan.io (0.98-0ubuntu1) eoan; urgency=medium

  * New upstream release: 0.98 (LP: #1840832)
    - Added new "feature flags" to identify new features
    - Added support for "use-domains" for DHCP overrides
    - Added support for setting IPv6 MTU Bytes (LP: #1671951)
    - Added a DBus interface to query and run 'netplan apply' via other apps
    - Various build system fixes
    - Improved validation for bonding modes
    - Added support for "hash:" for hashed 802.1x passwords (LP: #1819831)
    - Tolerate devices without a /sys path (LP: #1810043)
    - Fix incorrect separator for networkd with ARP IP targets (LP: #1829264)
  * debian/control: Add Build-Depends on libsystemd-dev for DBus feature, and
    on dbus-x11 for dbus-launch used in tests.

 -- Mathieu Trudel-Lapierre <cyphermox at ubuntu.com>  Wed, 21 Aug 2019
14:49:16 -0400

** Changed in: netplan.io (Ubuntu)
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to netplan.io in Ubuntu.
Matching subscriptions: foundations-bugs
https://bugs.launchpad.net/bugs/1819831

Title:
  broken generation of  wpa config for hashed passwords

Status in netplan:
  Fix Released
Status in netplan.io package in Ubuntu:
  Fix Released

Bug description:
  Have a look at the netplan.io config file at
  https://gist.github.com/fluffy/e2a202a0816299d519dabf7bbed2f7bb for
  802.1 auth for a wired network.

  This will generate a wpa config file at /run/netplan/wpa-enp4s0.conf
  that has

  password="hash:83d…0b11"

  However, this is not correct. It should not have the quotes and should
  look like

  password=hash:83d…0b11

  The quotes cause the wpa_suppicant to not detect this is a hashed
  password and instead think it is a normal password that starts with
  hash:

  This is an important bug because at Cisco we can not store our
  passwords unhashed on disk and our production network requires 802.1x
  auth. I think this is simple to fix and I'm glad to send a PR or any
  other information that helps fix it.

  Thank you for looking at this, Cullen

To manage notifications about this bug go to:
https://bugs.launchpad.net/netplan/+bug/1819831/+subscriptions

More information about the foundations-bugs mailing list