Use secure_random.

GitOrigin-RevId: 49c4ff11b0c165a802cea7cc83783e54e7613d0b
2018-04-06 14:42:42 +03:00 · 2018-04-06 14:42:42 +03:00 · 3c9599b8aa
commit 3c9599b8aa
parent d584e80cf9
2 changed files with 4 additions and 3 deletions
--- a/td/telegram/PasswordManager.cpp
+++ b/td/telegram/PasswordManager.cpp
@ -401,6 +401,7 @@ void PasswordManager::do_get_state(Promise<PasswordState> promise) {
                      auto result = r_result.move_as_ok();

                      PasswordState state;
+                      string secure_random;
                      if (result->get_id() == telegram_api::account_noPassword::ID) {
                        auto no_password = move_tl_object_as<telegram_api::account_noPassword>(result);
                        state.has_password = false;
@ -408,7 +409,7 @@ void PasswordManager::do_get_state(Promise<PasswordState> promise) {
                        state.current_salt = "";
                        state.new_salt = no_password->new_salt_.as_slice().str();
                        state.new_secure_salt = no_password->new_secure_salt_.as_slice().str();
-                        state.secure_random = no_password->secure_random_.as_slice().str();
+                        secure_random = no_password->secure_random_.as_slice().str();
                        state.has_recovery_email_address = false;
                        state.unconfirmed_recovery_email_address_pattern = no_password->email_unconfirmed_pattern_;
                      } else if (result->get_id() == telegram_api::account_password::ID) {
@ -418,12 +419,13 @@ void PasswordManager::do_get_state(Promise<PasswordState> promise) {
                        state.current_salt = password->current_salt_.as_slice().str();
                        state.new_salt = password->new_salt_.as_slice().str();
                        state.new_secure_salt = password->new_secure_salt_.as_slice().str();
-                        state.secure_random = password->secure_random_.as_slice().str();
+                        secure_random = password->secure_random_.as_slice().str();
                        state.has_recovery_email_address = password->has_recovery_;
                        state.unconfirmed_recovery_email_address_pattern = password->email_unconfirmed_pattern_;
                      } else {
                        UNREACHABLE();
                      }
+                      Random::add_seed(secure_random);
                      promise.set_value(std::move(state));
                    }));
 }
--- a/td/telegram/PasswordManager.h
+++ b/td/telegram/PasswordManager.h
@ -80,7 +80,6 @@ class PasswordManager : public NetQueryCallback {
    string new_salt;

    string new_secure_salt;
-    string secure_random;

    State as_td_api() const {
      return td_api::make_object<td_api::passwordState>(has_password, password_hint, has_recovery_email_address,