DGNum/hostapd
6
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

eapol_test: Move Message-Authenticator attribute to be the first one

Browse source 
Even if this is not strictly speaking necessary for mitigating certain
RADIUS protocol attacks, be consistent with the RADIUS server behavior
and move the Message-Authenticator attribute to be the first attribute
in the message from RADIUS client.

Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen 2024-03-16 11:16:12 +02:00
parent 54abb0d3cf
commit 689a248260
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
wpa_supplicant/eapol_test.c
View file

@ -195,6 +195,9 @@ static void ieee802_1x_encapsulate_radius(struct eapol_test_data *e,
return; return;
} }
if (!radius_msg_add_msg_auth(msg))
goto fail;
radius_msg_make_authenticator(msg); radius_msg_make_authenticator(msg);
hdr = (const struct eap_hdr *) eap; hdr = (const struct eap_hdr *) eap;