Fix the logic for checking config_id

In the config_id validity check logic,
it only check whether config_id is in the hex value range or is an unerscore.
But this is causing problems because in reality
it can contain all lowercase letters.
So it was modified to also check for lowercase letters.

* This is a side effect caused by the following patch.
  - Fix Stack buffer overflow and Path traversal

Change-Id: I23d0ebc1cc38b9f9e526df38539155c2308257eb
Signed-off-by: Jaehyun Kim <jeik01.kim@samsung.com>

diff --git a/src/wifi-config.c b/src/wifi-config.c
index 3ceb2b6d8eb8bbcf71f078f9acbba4aeaef402e0..5b831e9e06ab50a431a5ba2890a1552f01ae714d 100755 (executable)
--- a/src/wifi-config.c
+++ b/src/wifi-config.c
@@ -1233,7 +1233,9 @@ gboolean __netconfig_is_valid_config_id(const gchar *config_id)
                return FALSE;
 
        for (int i = 0; i < length; i++) {
-               if (!(isxdigit(config_id[i])) && config_id[i] != '_')
+               if (!(islower(config_id[i])) &&
+                               !(isdigit(config_id[i])) &&
+                               config_id[i] != '_')
                        return FALSE;
        }