feedc0de/esp-idf
1
0
Fork 0
forked from espressif/esp-idf
Code Pull Requests Activity

EAP-TLS peer: Support fragmentation of last message

Browse Source 
With TLS v1.3, the Finished message from the client can require
fragmentation. Postpone key derivation and marking of the EAP session
fully completed until all the fragments of that last message are sent to
avoid losing all the subsequent fragments.

Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen
2018-05-01 17:49:19 +03:00
committed by Sarvesh Bodakhe
parent 77d87edbb2
commit 6a83540ae0
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
components/wpa_supplicant/src/eap_peer/eap_tls.c
View File

@@ -114,6 +114,11 @@ static void eap_tls_success(struct eap_sm *sm, struct eap_tls_data *data,
{
wpa_printf(MSG_DEBUG, "EAP-TLS: Done");
if (data->ssl.tls_out) {
wpa_printf(MSG_DEBUG, "EAP-TLS: Fragment(s) remaining");
return;
}
ret->methodState = METHOD_DONE;
ret->decision = DECISION_UNCOND_SUCC;