SAE: Fix PWE generation to use minimum loop count (k) properly
The implementation did not match the comment, i.e., only k-1 rounds were required instead of k. Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
parent
b1f487cb74
commit
fdd731bd4a
1 changed files with 1 additions and 1 deletions
|
@ -326,7 +326,7 @@ static int sae_derive_pwe_ecc(struct sae_data *sae, const u8 *addr1,
|
||||||
* attacks that attempt to determine the number of iterations required
|
* attacks that attempt to determine the number of iterations required
|
||||||
* in the loop.
|
* in the loop.
|
||||||
*/
|
*/
|
||||||
for (counter = 1; counter < k || !found; counter++) {
|
for (counter = 1; counter <= k || !found; counter++) {
|
||||||
u8 pwd_seed[SHA256_MAC_LEN];
|
u8 pwd_seed[SHA256_MAC_LEN];
|
||||||
int res;
|
int res;
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue