From 5e09f24a344d5043703a8d93cf51d9369247172f Mon Sep 17 00:00:00 2001
From: Anton Nayshtut <qca_antonn@qca.qualcomm.com>
Date: Mon, 27 Jul 2015 16:45:36 +0300
Subject: [PATCH] FST: Fix MB IE clearing on detach

This fixes an issue where freed MB IEs buffer memory could potentially
have been accessed after an interface is detached from FST group.
Without this fix, if an interface is detached from FST group, it can use
MB IEs buffer previously set by fst_iface_set_ies(), although the buffer
was released by fst_iface_delete().

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
---
 src/fst/fst_iface.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/fst/fst_iface.c b/src/fst/fst_iface.c
index 4fba9b1a5..5a92d2c33 100644
--- a/src/fst/fst_iface.c
+++ b/src/fst/fst_iface.c
@@ -43,6 +43,7 @@ struct fst_iface * fst_iface_create(struct fst_group *g, const char *ifname,
 
 void fst_iface_delete(struct fst_iface *i)
 {
+	fst_iface_set_ies(i, NULL);
 	wpabuf_free(i->mb_ie);
 	os_free(i);
 }