Client sends empty EAP-TTLS packet on fatal alerts to properly shut down TLS
This commit is contained in:
parent
c5142f110e
commit
f55f9c4e1e
|
@ -338,6 +338,12 @@ METHOD(eap_method_t, process, status_t,
|
|||
{
|
||||
*out = read_buf(this, pkt->identifier);
|
||||
}
|
||||
else if (status == FAILED && !this->is_server)
|
||||
{ /* client sends an empty TLS message, waits for a EAP-Failure */
|
||||
chunk_free(&this->output);
|
||||
*out = read_buf(this, pkt->identifier);
|
||||
return NEED_MORE;
|
||||
}
|
||||
return status;
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in New Issue