Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Use stronger PRNG for MS-MPPE-Send/Recv-Key salt

When generating a MS-MPPE-Send/Recv-Key, don't use a weak PRNG for the
salt.

Signed-off-by: Nick Lowe <nick.lowe@lugatech.com>
Nick Lowe 9 years ago
parent
9e1f1bdb6f
commit
c06c9099f0
1 changed files with 3 additions and 1 deletions
Unified View Show Diff Stats
  1. 3 1
      src/radius/radius.c

+ 3 - 1
src/radius/radius.c
View File 

@@ -1197,7 +1197,9 @@ int radius_msg_add_mppe_keys(struct radius_msg *msg,
 
 	vhdr = (struct radius_attr_vendor *) pos;
 
 	vhdr = (struct radius_attr_vendor *) pos;
 
 	vhdr->vendor_type = RADIUS_VENDOR_ATTR_MS_MPPE_SEND_KEY;
 
 	vhdr->vendor_type = RADIUS_VENDOR_ATTR_MS_MPPE_SEND_KEY;
 
 	pos = (u8 *) (vhdr + 1);
 
 	pos = (u8 *) (vhdr + 1);
 
-	salt = os_random() | 0x8000;
 
+	if (os_get_random((u8 *) &salt, sizeof(salt)) < 0)
 
+		return 0;
 
+	salt |= 0x8000;
 
 	WPA_PUT_BE16(pos, salt);
 
 	WPA_PUT_BE16(pos, salt);
 
 	pos += 2;
 
 	pos += 2;
 
 	encrypt_ms_key(send_key, send_key_len, salt, req_authenticator, secret,
 
 	encrypt_ms_key(send_key, send_key_len, salt, req_authenticator, secret,