MAC Secured WPA supplicant creates new MKA participant for every re-authentication and does not delete the old MKA participant.
Badrish Adiga H R
badrish.adigahr at gmail.com
Fri Feb 5 08:53:27 PST 2016
Hi all,
I was testing MACSec on a wired WPA Supplicant and found that for
every re-authentication, API ieee802_1x_kay_create_mka gets called and
new MKA participant gets created. if re-auth time is 300 seconds, over
a period of an hour there would be 12 MKA participants get created.
But as per 802.1x standard, shouldn't we delete old MKA participant
upon successfull re-authentication? Keeping old MKA instances can lead
to potential memory-leak as well
Thanks and regards,
Badrish
More information about the Hostap
mailing list