hostapd

DGNum/hostapd

Fork 0

Commit graph

Author	SHA1	Message	Date
Jouni Malinen	0a13e06bdb	EAP server: Clear keying material on deinit Reduce the amount of time keying material (MSK, EMSK, temporary private data) remains in memory in EAP methods. This provides additional protection should there be any issues that could expose process memory to external observers. Signed-off-by: Jouni Malinen <j@w1.fi>	2014-07-02 12:38:48 +03:00
Jouni Malinen	dddf7bbd4e	EAP-EKE: Use os_memcmp_const() for hash/password comparisons This makes the implementation less likely to provide useful timing information to potential attackers from comparisons of information received from a remote device and private material known only by the authorized devices. Signed-off-by: Jouni Malinen <j@w1.fi>	2014-07-02 12:38:47 +03:00
Jouni Malinen	fe65847bb1	EAP-EKE: Add server implementation This adds a new password-based EAP method defined in RFC 6124. Signed-hostap: Jouni Malinen <j@w1.fi>	2013-07-07 20:30:10 +03:00

Author

SHA1

Message

Date

Jouni Malinen

0a13e06bdb

EAP server: Clear keying material on deinit

Reduce the amount of time keying material (MSK, EMSK, temporary private
data) remains in memory in EAP methods. This provides additional
protection should there be any issues that could expose process memory
to external observers.

Signed-off-by: Jouni Malinen <j@w1.fi>

2014-07-02 12:38:48 +03:00

Jouni Malinen

dddf7bbd4e

EAP-EKE: Use os_memcmp_const() for hash/password comparisons

This makes the implementation less likely to provide useful timing
information to potential attackers from comparisons of information
received from a remote device and private material known only by the
authorized devices.

Signed-off-by: Jouni Malinen <j@w1.fi>

2014-07-02 12:38:47 +03:00

Jouni Malinen

fe65847bb1

EAP-EKE: Add server implementation

This adds a new password-based EAP method defined in RFC 6124.

Signed-hostap: Jouni Malinen <j@w1.fi>

2013-07-07 20:30:10 +03:00

3 commits