mirror of
https://git.kernel.org/pub/scm/network/wireless/iwd.git
synced 2024-12-23 05:32:48 +01:00
eap-tls,eap-peap: Memzero copies of secrets
This commit is contained in:
parent
a090b1ef52
commit
5306e37279
@ -201,6 +201,7 @@ static bool eap_peap_tunnel_ready(struct eap_state *eap,
|
|||||||
msk_emsk, 128);
|
msk_emsk, 128);
|
||||||
|
|
||||||
eap_set_key_material(eap, msk_emsk + 0, 64, NULL, 0, NULL, 0);
|
eap_set_key_material(eap, msk_emsk + 0, 64, NULL, 0, NULL, 0);
|
||||||
|
explicit_bzero(msk_emsk, sizeof(msk_emsk));
|
||||||
|
|
||||||
eap_tls_common_send_empty_response(eap);
|
eap_tls_common_send_empty_response(eap);
|
||||||
|
|
||||||
|
@ -912,6 +912,10 @@ done:
|
|||||||
(l_queue_destroy_func_t) l_cert_free);
|
(l_queue_destroy_func_t) l_cert_free);
|
||||||
l_certchain_free(cert);
|
l_certchain_free(cert);
|
||||||
l_key_free(priv_key);
|
l_key_free(priv_key);
|
||||||
|
|
||||||
|
if (passphrase)
|
||||||
|
explicit_bzero(passphrase, strlen(passphrase));
|
||||||
|
|
||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -49,6 +49,8 @@ static bool eap_tls_tunnel_ready(struct eap_state *eap,
|
|||||||
iv, 64);
|
iv, 64);
|
||||||
|
|
||||||
eap_set_key_material(eap, msk_emsk + 0, 64, msk_emsk + 64, 64, iv, 64);
|
eap_set_key_material(eap, msk_emsk + 0, 64, msk_emsk + 64, 64, iv, 64);
|
||||||
|
explicit_bzero(msk_emsk, sizeof(msk_emsk));
|
||||||
|
explicit_bzero(iv, sizeof(iv));
|
||||||
|
|
||||||
eap_tls_common_send_empty_response(eap);
|
eap_tls_common_send_empty_response(eap);
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user