diff --git a/files/usr/local/bin/wifi-setup b/files/usr/local/bin/wifi-setup
index 5afada96..15c7717c 100755
--- a/files/usr/local/bin/wifi-setup
+++ b/files/usr/local/bin/wifi-setup
@@ -115,10 +115,14 @@ for _dev in /sys/class/ieee80211/*; do
chanbw=""
country=""
distance=""
- ssid="${wifi2_ssid}"
+ ssid=$(echo "${wifi2_ssid}" | sed -e 's/\(..\)/\\x\1/g')
+ ssid=$(echo -e "${ssid}")
+ ssid=${ssid//\"/\\\"}
mode="ap"
encryption="${wifi2_encryption}"
- key="${wifi2_key}"
+ key=$(echo "${wifi2_key}" | sed -e 's/\(..\)/\\x\1/g')
+ key=$(echo -e "${key}")
+ key=${key//\"/\\\"}
network="lan"
fi
@@ -137,9 +141,9 @@ for _dev in /sys/class/ieee80211/*; do
set wireless.@wifi-iface[${ifacenum}].device=${radio}
set wireless.@wifi-iface[${ifacenum}].network=${network}
set wireless.@wifi-iface[${ifacenum}].mode=${mode}
- set wireless.@wifi-iface[${ifacenum}].ssid=${ssid}
+ set wireless.@wifi-iface[${ifacenum}].ssid="${ssid}"
set wireless.@wifi-iface[${ifacenum}].encryption=${encryption}
- set wireless.@wifi-iface[${ifacenum}].key=${key}
+ set wireless.@wifi-iface[${ifacenum}].key="${key}"
EOF
uci -c ${dropdir} -q commit wireless
diff --git a/files/www/cgi-bin/setup b/files/www/cgi-bin/setup
index 4c44f0a5..487991fe 100755
--- a/files/www/cgi-bin/setup
+++ b/files/www/cgi-bin/setup
@@ -111,6 +111,8 @@ else
{
eval (sprintf "\$$_ = \"%s\"", quotemeta $cfg{$_});
}
+ $wifi2_key =~ s/([a-f0-9][a-f0-9])/chr(hex($1))/eg;
+ $wifi2_ssid =~ s/([a-f0-9][a-f0-9])/chr(hex($1))/eg;
}
}
@@ -437,10 +439,14 @@ if($parms{button_save})
push (@errors, "LAN Access Point SSID must be 32 or less characters ");
}
- if( "$wifi2_encryption" != "none" and (length( $wifi2_key ) < 8 or length($wifi2_key) > 64) )
+ if( "$wifi2_enable" eq "1" and (length( $wifi2_key ) < 8 or length($wifi2_key) > 64) )
{
push (@errors, "LAN Access Point Password must be at least 8 charaters, up to 64");
}
+ if( "$wifi2_enable" eq "1" and ( $wifi2_key =~ /\'/ or $wifi2_ssid =~ /\'/ ))
+ {
+ push (@errors, "The password and ssid may not contain a single quote character.");
+ }
if($debug == 3) # don't save the config, just validate it
{
@@ -452,6 +458,8 @@ if($parms{button_save})
$parms{node} = $node;
$parms{tactical} = $tactical;
system "touch /tmp/unconfigured" if -f "/etc/config/unconfigured";
+ $parms{wifi2_key} =~ s/(.)/sprintf("%x",ord($1))/eg;
+ $parms{wifi2_ssid} =~ s/(.)/sprintf("%x",ord($1))/eg;
$rc = save_setup("/etc/config.mesh/_setup");
$rc2 = &uci_commit("system");
if(-s "/tmp/web/save/node-setup.out")
@@ -859,13 +867,11 @@ if ( $phycount > 1 ) {
print "
Encryption
\n";
print "
\n";
print "
Password
\n";
- print "
";
+ print "
";
print "
\n";
}
diff --git a/files/www/help.html b/files/www/help.html
index 07f0cafd..333e24be 100644
--- a/files/www/help.html
+++ b/files/www/help.html
@@ -380,12 +380,16 @@ self explanatory. The LAN Mode is described in the next section.
The LAN Access Point section will appear on the hAP ac
-lite device. Configure similiar to a typical home access point. DFS channels
+lite device. Configure similar to a typical home access point. DFS channels
are currently not selectable. Access Points must detect Doppler Radar signals
and dynamically move to a clear channel for part 15 compliance. This capability
and channels may be added in a future image. Clients connecting to the LAN Access
Point share the IP Address range with clients attached though the physical Ethernet
-ports.
+ports.
The Encryption option 'none' is not given to enable operator control
+of who is connecting to the mesh network and manage compliance of part 97
+obligations.
The password key length must be between 8 and 63 characters.
+If the key is 64 characters, it is treated as hex encoded. A single quote character
+may not be used.