Fix logic error reading random bytes from /dev/urandom

Fixes a bug introduced in c2be7e6 Previously, this would return those bytes if the number of bytes read was **less than** the number of bytes this was trying to read. In practice, I believe this would mean bytes from /dev/urandom would never get used. (Noticed when upgrading phpseclib)
phpseclib · Apr 3, 2020 · 41eb0d8 · 41eb0d8 · terrafrost · Apr 3, 2020
1 parent 5e2951f
commit 41eb0d8
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/phpseclib/Crypt/Random.php b/phpseclib/Crypt/Random.php
@@ -106,7 +106,7 @@ function crypt_random_string($length)
             }
             if ($fp !== true && $fp !== false) { // surprisingly faster than !is_bool() or is_resource()
                 $temp = fread($fp, $length);
-                if (strlen($temp) != $length) {
+                if (strlen($temp) == $length) {
                     return $temp;
                 }
             }