Clear TK part of PTK after driver key configuration
There is no need for wpa_supplicant to maintain a copy of the TK part of PTK after this has been configured to the driver, so clear that from heap memory and only maintain KEK and KCK during association to allow additional EAPOL-Key handshakes. Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen
parent
7193254456
commit
7d711541dc
1 changed files with 4 additions and 0 deletions
|
|
@ -609,6 +609,10 @@ static int wpa_supplicant_install_ptk(struct wpa_sm *sm,
|
|||
return -1;
|
||||
}
|
||||
|
||||
/* TK is not needed anymore in supplicant */
|
||||
os_memset(sm->ptk.tk1, 0, sizeof(sm->ptk.tk1));
|
||||
os_memset(sm->ptk.u.tk2, 0, sizeof(sm->ptk.u.tk2));
|
||||
|
||||
if (sm->wpa_ptk_rekey) {
|
||||
eloop_cancel_timeout(wpa_sm_rekey_ptk, sm, NULL);
|
||||
eloop_register_timeout(sm->wpa_ptk_rekey, 0, wpa_sm_rekey_ptk,
|
||||
|
|
|
|||
Loading…
Reference in a new issue