230 	{ RADIUS_ATTR_MESSAGE_AUTHENTICATOR, "Message-Authenticator",
436 			   "WARNING: Could not add Message-Authenticator");  in radius_msg_add_msg_auth()
452 		/* Use already added Message-Authenticator attribute */  in radius_msg_auth_pos()
456 	/* Add a Message-Authenticator attribute */  in radius_msg_auth_pos()
497 	os_memcpy(msg->hdr->authenticator, req_authenticator,  in radius_msg_finish_srv()
498 		  sizeof(msg->hdr->authenticator));  in radius_msg_finish_srv()
512 	md5_vector(4, addr, len, msg->hdr->authenticator);  in radius_msg_finish_srv()
536 	os_memcpy(msg->hdr->authenticator, req_hdr->authenticator, 16);  in radius_msg_finish_das_resp()
546 	if (md5_vector(2, addr, len, msg->hdr->authenticator) < 0)  in radius_msg_finish_das_resp()
565 	os_memset(msg->hdr->authenticator, 0, MD5_MAC_LEN);  in radius_msg_finish_acct()
570 	md5_vector(2, addr, len, msg->hdr->authenticator);  in radius_msg_finish_acct()
586 	os_memcpy(msg->hdr->authenticator, req_authenticator, MD5_MAC_LEN);  in radius_msg_finish_acct_resp()
591 	md5_vector(2, addr, len, msg->hdr->authenticator);  in radius_msg_finish_acct_resp()
618 	return os_memcmp_const(msg->hdr->authenticator, hash, MD5_MAC_LEN) != 0;  in radius_msg_verify_acct_req()
646 	if (os_memcmp_const(msg->hdr->authenticator, hash, MD5_MAC_LEN) != 0)  in radius_msg_verify_das_req()
654 					   "Message-Authenticator attributes "  in radius_msg_verify_das_req()
665 				   "Missing Message-Authenticator attribute in RADIUS message");  in radius_msg_verify_das_req()
673 	os_memcpy(orig_authenticator, msg->hdr->authenticator,  in radius_msg_verify_das_req()
675 	os_memset(msg->hdr->authenticator, 0,  in radius_msg_verify_das_req()
676 		  sizeof(msg->hdr->authenticator));  in radius_msg_verify_das_req()
680 	os_memcpy(msg->hdr->authenticator, orig_authenticator,  in radius_msg_verify_das_req()
954 				wpa_printf(MSG_INFO, "Multiple Message-Authenticator attributes in RADIUS message");  in radius_msg_verify_msg_auth()
962 		wpa_printf(MSG_INFO, "No Message-Authenticator attribute found");  in radius_msg_verify_msg_auth()
969 		os_memcpy(orig_authenticator, msg->hdr->authenticator,  in radius_msg_verify_msg_auth()
971 		os_memcpy(msg->hdr->authenticator, req_auth,  in radius_msg_verify_msg_auth()
972 			  sizeof(msg->hdr->authenticator));  in radius_msg_verify_msg_auth()
979 		os_memcpy(msg->hdr->authenticator, orig_authenticator,  in radius_msg_verify_msg_auth()
984 		wpa_printf(MSG_INFO, "Invalid Message-Authenticator!");  in radius_msg_verify_msg_auth()
1011 			/* Check the Message-Authenticator attribute since it  in radius_msg_verify()
1020 				       sent_msg->hdr->authenticator)) {  in radius_msg_verify()
1027 	addr[1] = sent_msg->hdr->authenticator;  in radius_msg_verify()
1034 	    os_memcmp_const(hash, msg->hdr->authenticator, MD5_MAC_LEN) != 0) {  in radius_msg_verify()
1035 		wpa_printf(MSG_INFO, "Response Authenticator invalid!");  in radius_msg_verify()
1064 /* Create Request Authenticator. The value should be unique over the lifetime
1065  * of the shared secret between authenticator and authentication server.
1069 	return os_get_random((u8 *) &msg->hdr->authenticator,  in radius_msg_make_authenticator()
1070 			     sizeof(msg->hdr->authenticator));  in radius_msg_make_authenticator()
1173 		/* b(1) = MD5(Secret + Request-Authenticator + Salt)  in decrypt_ms_key()
1240 		/* b(1) = MD5(Secret + Request-Authenticator + Salt)  in encrypt_ms_key()
1284 					    sent_msg->hdr->authenticator,  in radius_msg_get_ms_keys()
1299 					    sent_msg->hdr->authenticator,  in radius_msg_get_ms_keys()
1333 					    sent_msg->hdr->authenticator,  in radius_msg_get_cisco_keys()
1493 	addr[1] = msg->hdr->authenticator;  in radius_user_password_hide()
1808 	addr[1] = sent_msg->hdr->authenticator;  in radius_msg_get_tunnel_password()