Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

EAP-TLS server: Clear temporary buffer during EMSK derivation

Now that EMSK derivation is taken into use with ERP, it is better to
make sure the temporary MSK + EMSK buffer does not get left in heap
after use.

Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen 10 years ago
parent
d1f89dd732
commit
9429bee4cc
1 changed files with 1 additions and 1 deletions
Split View Show Diff Stats
  1. 1 1
      src/eap_server/eap_server_tls.c

+ 1 - 1
src/eap_server/eap_server_tls.c
View File 

@@ -287,7 +287,7 @@ static u8 * eap_tls_get_emsk(struct eap_sm *sm, void *priv, size_t *len)
 
 		if (emsk)
 
 			os_memcpy(emsk, eapKeyData + EAP_TLS_KEY_LEN,
 
 				  EAP_EMSK_LEN);
 
-		os_free(eapKeyData);
 
+		bin_clear_free(eapKeyData, EAP_TLS_KEY_LEN + EAP_EMSK_LEN);
 
 	} else
 
 		emsk = NULL;