From ca9110e8c27d5bde60958207cf767d39e77d113b Mon Sep 17 00:00:00 2001
From: James Prestwood <prestwoj@gmail.com>
Date: Fri, 6 Mar 2020 11:16:28 -0800
Subject: [PATCH] network: enforce max EAP/pkey password length

---
 src/network.c | 17 ++++++++++++++++-
 1 file changed, 16 insertions(+), 1 deletion(-)

diff --git a/src/network.c b/src/network.c
index fe6ba867..c08d7e72 100644
--- a/src/network.c
+++ b/src/network.c
@@ -892,7 +892,15 @@ static void eap_password_callback(enum agent_result result, const char *value,
 	struct eap_secret_request *req = user_data;
 
 	req->network->agent_request = 0;
-	req->secret->value = l_strdup(value);
+
+	if (value) {
+		if (strlen(value) < IWD_MAX_PASSWORD_LEN)
+			req->secret->value = l_strdup(value);
+		else {
+			l_error("EAP password too long");
+			result = AGENT_RESULT_FAILED;
+		}
+	}
 
 	req->callback(result, message, req);
 }
@@ -910,11 +918,18 @@ static void eap_user_password_callback(enum agent_result result,
 		size_t len1 = strlen(user) + 1;
 		size_t len2 = strlen(passwd) + 1;
 
+		if (len2 > IWD_MAX_PASSWORD_LEN) {
+			l_error("EAP password too long");
+			result = AGENT_RESULT_FAILED;
+			goto done;
+		}
+
 		req->secret->value = l_malloc(len1 + len2);
 		memcpy(req->secret->value, user, len1);
 		memcpy(req->secret->value + len1, passwd, len2);
 	}
 
+done:
 	req->callback(result, message, req);
 }