aboutsummaryrefslogtreecommitdiffstats
path: root/src/eap_server/eap_server_ikev2.c
diff options
context:
space:
mode:
authorJouni Malinen <j@w1.fi>2014-06-29 22:48:41 (GMT)
committerJouni Malinen <j@w1.fi>2014-07-02 09:38:48 (GMT)
commit0a13e06bdba710cc7e6ea8da391a595b5d33aba6 (patch)
treed984c752de6a327883186e02cb33b1daa7583f18 /src/eap_server/eap_server_ikev2.c
parentf534ee0804dc8d77434d2b534a118e86bd597694 (diff)
downloadhostap-0a13e06bdba710cc7e6ea8da391a595b5d33aba6.zip
hostap-0a13e06bdba710cc7e6ea8da391a595b5d33aba6.tar.gz
hostap-0a13e06bdba710cc7e6ea8da391a595b5d33aba6.tar.bz2
EAP server: Clear keying material on deinit
Reduce the amount of time keying material (MSK, EMSK, temporary private data) remains in memory in EAP methods. This provides additional protection should there be any issues that could expose process memory to external observers. Signed-off-by: Jouni Malinen <j@w1.fi>
Diffstat (limited to 'src/eap_server/eap_server_ikev2.c')
-rw-r--r--src/eap_server/eap_server_ikev2.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/src/eap_server/eap_server_ikev2.c b/src/eap_server/eap_server_ikev2.c
index 3e32cc9..65b2ef6 100644
--- a/src/eap_server/eap_server_ikev2.c
+++ b/src/eap_server/eap_server_ikev2.c
@@ -127,7 +127,7 @@ static void eap_ikev2_reset(struct eap_sm *sm, void *priv)
wpabuf_free(data->in_buf);
wpabuf_free(data->out_buf);
ikev2_initiator_deinit(&data->ikev2);
- os_free(data);
+ bin_clear_free(data, sizeof(*data));
}