aboutsummaryrefslogtreecommitdiffstats
path: root/src/common/wpa_common.h
diff options
context:
space:
mode:
authorMathy Vanhoef <Mathy.Vanhoef@cs.kuleuven.be>2017-09-29 02:22:51 (GMT)
committerJouni Malinen <j@w1.fi>2017-10-15 23:03:47 (GMT)
commit53bb18cc8b7a4da72e47e4b3752d0d2135cffb23 (patch)
tree2c460dc2ce3b08192e75015e90292d4d4b250567 /src/common/wpa_common.h
parent87e2db16bafcbc60b8d0016175814a73c1e8ed45 (diff)
downloadhostap-53bb18cc8b7a4da72e47e4b3752d0d2135cffb23.zip
hostap-53bb18cc8b7a4da72e47e4b3752d0d2135cffb23.tar.gz
hostap-53bb18cc8b7a4da72e47e4b3752d0d2135cffb23.tar.bz2
Prevent installation of an all-zero TK
Properly track whether a PTK has already been installed to the driver and the TK part cleared from memory. This prevents an attacker from trying to trick the client into installing an all-zero TK. This fixes the earlier fix in commit ad00d64e7d8827b3cebd665a0ceb08adabf15e1e ('Fix TK configuration to the driver in EAPOL-Key 3/4 retry case') which did not take into account possibility of an extra message 1/4 showing up between retries of message 3/4. Signed-off-by: Mathy Vanhoef <Mathy.Vanhoef@cs.kuleuven.be>
Diffstat (limited to 'src/common/wpa_common.h')
-rw-r--r--src/common/wpa_common.h1
1 files changed, 1 insertions, 0 deletions
diff --git a/src/common/wpa_common.h b/src/common/wpa_common.h
index 0872b12..8411686 100644
--- a/src/common/wpa_common.h
+++ b/src/common/wpa_common.h
@@ -219,6 +219,7 @@ struct wpa_ptk {
size_t kck_len;
size_t kek_len;
size_t tk_len;
+ int installed; /* 1 if key has already been installed to driver */
};
struct wpa_gtk {