Annotate places depending on strong random numbers
This commit adds a new wrapper, random_get_bytes(), that is currently defined to use os_get_random() as is. The places using random_get_bytes() depend on the returned value being strong random number, i.e., something that is infeasible for external device to figure out. These values are used either directly as a key or as nonces/challenges that are used as input for key derivation or authentication. The remaining direct uses of os_get_random() do not need as strong random numbers to function correctly.
This commit is contained in:
Jouni Malinen
parent
1bdb7ab3af
commit
3642c4313a
38 changed files with 123 additions and 63 deletions
|
|
@ -18,6 +18,7 @@
|
|||
#include "crypto/md5.h"
|
||||
#include "crypto/sha1.h"
|
||||
#include "crypto/tls.h"
|
||||
#include "crypto/random.h"
|
||||
#include "x509v3.h"
|
||||
#include "tlsv1_common.h"
|
||||
#include "tlsv1_record.h"
|
||||
|
|
@ -57,7 +58,7 @@ u8 * tls_send_client_hello(struct tlsv1_client *conn, size_t *out_len)
|
|||
|
||||
os_get_time(&now);
|
||||
WPA_PUT_BE32(conn->client_random, now.sec);
|
||||
if (os_get_random(conn->client_random + 4, TLS_RANDOM_LEN - 4)) {
|
||||
if (random_get_bytes(conn->client_random + 4, TLS_RANDOM_LEN - 4)) {
|
||||
wpa_printf(MSG_ERROR, "TLSv1: Could not generate "
|
||||
"client_random");
|
||||
return NULL;
|
||||
|
|
@ -222,7 +223,7 @@ static int tlsv1_key_x_anon_dh(struct tlsv1_client *conn, u8 **pos, u8 *end)
|
|||
TLS_ALERT_INTERNAL_ERROR);
|
||||
return -1;
|
||||
}
|
||||
if (os_get_random(csecret, csecret_len)) {
|
||||
if (random_get_bytes(csecret, csecret_len)) {
|
||||
wpa_printf(MSG_DEBUG, "TLSv1: Failed to get random "
|
||||
"data for Diffie-Hellman");
|
||||
tls_alert(conn, TLS_ALERT_LEVEL_FATAL,
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue