]> git.ipfire.org Git - thirdparty/hostap.git/commit
projects / thirdparty / hostap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 30411b3) | patch
EAP-MSCHAPv2: Use os_memcmp_const() for hash/password comparisons
authorJouni Malinen <j@w1.fi>
Sun, 29 Jun 2014 17:25:36 +0000 (20:25 +0300)
committerJouni Malinen <j@w1.fi>
Wed, 2 Jul 2014 09:38:48 +0000 (12:38 +0300)
commita6eae3f7a1477aaa15b2461340c2cd269da2232c
tree66ab96f7b96b89a187145f2b41dce382c519098ctree
parent30411b351c16ef4dae12d84d8f7dd7137b145f11commit | diff
EAP-MSCHAPv2: Use os_memcmp_const() for hash/password comparisons

This makes the implementation less likely to provide useful timing
information to potential attackers from comparisons of information
received from a remote device and private material known only by the
authorized devices.

Signed-off-by: Jouni Malinen <j@w1.fi>
src/eap_peer/mschapv2.c diff | blob | blame | history
src/eap_server/eap_server_mschapv2.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.