08704cd885
On Linux, verify that the kernel entropy pool is capable of providing strong random data before allowing WPA/WPA2 connection to be established. If 20 bytes of data cannot be read from /dev/random, force first two 4-way handshakes to fail while collecting entropy into the internal pool in hostapd. After that, give up on /dev/random and allow the AP to function based on the combination of /dev/urandom and whatever data has been collected into the internal entropy pool.
30 lines
918 B
C
30 lines
918 B
C
/*
|
|
* Random number generator
|
|
* Copyright (c) 2010, Jouni Malinen <j@w1.fi>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License version 2 as
|
|
* published by the Free Software Foundation.
|
|
*
|
|
* Alternatively, this software may be distributed under the terms of BSD
|
|
* license.
|
|
*
|
|
* See README and COPYING for more details.
|
|
*/
|
|
|
|
#ifndef RANDOM_H
|
|
#define RANDOM_H
|
|
|
|
#ifdef CONFIG_NO_RANDOM_POOL
|
|
#define random_add_randomness(b, l) do { } while (0)
|
|
#define random_get_bytes(b, l) os_get_random((b), (l))
|
|
#define random_pool_ready() 1
|
|
#define random_mark_pool_ready() do { } while (0)
|
|
#else /* CONFIG_NO_RANDOM_POOL */
|
|
void random_add_randomness(const void *buf, size_t len);
|
|
int random_get_bytes(void *buf, size_t len);
|
|
int random_pool_ready(void);
|
|
void random_mark_pool_ready(void);
|
|
#endif /* CONFIG_NO_RANDOM_POOL */
|
|
|
|
#endif /* RANDOM_H */
|