From: Jouni Malinen <j@w1.fi>
Date: Sat, 30 Jun 2012 13:12:41 +0000 (+0300)
Subject: EAP-pwd: Increase maximum number of hunting-and-pecking iterations
X-Git-Tag: hostap_2_0~564
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=0f27f15911c4ed68e757f3af9f65f7696a321876;p=thirdparty%2Fhostap.git

EAP-pwd: Increase maximum number of hunting-and-pecking iterations

The previously used limit (10) is too small for practical purposes since
it can result in about 1 out of 1000 authentication attempts failing.
Increase the limit to 30 to avoid such issues. [Bug 453]

Signed-hostap: Jouni Malinen <j@w1.fi>
intended-for: hostap-1
---

diff --git a/src/eap_common/eap_pwd_common.c b/src/eap_common/eap_pwd_common.c
index 5b6bf3cf9..f85564aeb 100644
--- a/src/eap_common/eap_pwd_common.c
+++ b/src/eap_common/eap_pwd_common.c
@@ -154,7 +154,7 @@ int compute_password_element(EAP_PWD_group *grp, u16 num,
 	os_memset(prfbuf, 0, primebytelen);
 	ctr = 0;
 	while (1) {
-		if (ctr > 10) {
+		if (ctr > 30) {
 			wpa_printf(MSG_INFO, "EAP-pwd: unable to find random "
 				   "point on curve for group %d, something's "
 				   "fishy", num);