From abbe0228943bd9a4883af7d995a6d8b8e6587b23 Mon Sep 17 00:00:00 2001
From: Alan Carvalho de Assis <acassis@gmail.com>
Date: Mon, 10 Oct 2022 17:23:31 -0300
Subject: [PATCH] wapi: Verify if password size if valid

---
 wireless/wapi/src/wapi.c | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/wireless/wapi/src/wapi.c b/wireless/wapi/src/wapi.c
index 219730678..191cc4b97 100644
--- a/wireless/wapi/src/wapi.c
+++ b/wireless/wapi/src/wapi.c
@@ -546,9 +546,19 @@ static int wapi_psk_cmd(int sock, int argc, FAR char **argv)
 {
   enum wpa_alg_e alg_flag;
   uint8_t auth_wpa;
+  int passlen;
   int cipher;
   int ret;
 
+  /* Check if password len >= 8 && <= 63 */
+
+  passlen = strnlen(argv[1], 64);
+  if (passlen < 8 || passlen > 63)
+    {
+      printf("The password should have between 8 and 63 characters!\n");
+      return -EINVAL;
+    }
+
   /* Convert input strings to values */
 
   alg_flag = (enum wpa_alg_e)wapi_str2ndx(argv[2], g_wapi_alg_flags);