I've run into some strange issues with hex encoded passphrases.
Maybe it is an iwm driver issue, but on some connections if I had
any hex string passphrases in the hostname.if file, it would
absolutely fail to connect.
On 11/25/23 07:42, Stefan Sperling wrote:
On Sat, Nov 25, 2023 at 08:20:47AM -0700, Theo de Raadt wrote:
What you are asking for is too difficult to do.
netstart is a shell script. shell script arguments are not 8 bit clean,
because the the sh language has many meta & escape characters.
Your configuration exceeds what can be done.
There is a workaround: ifconfig accepts pre-hashed WPA keys
Tools such as this will generate the required hash:
https://www.wireshark.org/tools/wpa-psk.html
(We used to have a wpa-psk tool in base but it's been removed.)
Put your SSID and passphrase in there, and the tool will generate a long
hex string: d7a38e9a542a82f19af0b2117687e43ba4cc60afeb742539ecd326fdee6b70b8
This hex string can be passed as wpakey by prefixing the string with "0x":
# ifconfig iwx0 join foo wpakey
0xd7a38e9a542a82f19af0b2117687e43ba4cc60afeb742539ecd326fdee6b70b8
# ifconfig iwx0 joinlist | grep foo
foo wpaprotos wpa2 wpaakms psk wpaciphers ccmp
wpagroupcipher ccmp
