mka: Disable peer detection timeout for PSK mode
The first peer may take a long time to come up. In PSK mode we are basically in a p2p system, and we cannot know when a peer will join the key exchange. Wait indefinitely, and let the administrator decide if they want to abort. Signed-off-by: Sabrina Dubroca <sd@queasysnail.net>
This commit is contained in:
Sabrina Dubroca
Jouni Malinen
parent
ad51731abf
commit
008e224dbb
1 changed files with 10 additions and 2 deletions
|
|
@ -3339,8 +3339,16 @@ ieee802_1x_kay_create_mka(struct ieee802_1x_kay *kay, struct mka_key_name *ckn,
|
|||
usecs = os_random() % (MKA_HELLO_TIME * 1000);
|
||||
eloop_register_timeout(0, usecs, ieee802_1x_participant_timer,
|
||||
participant, NULL);
|
||||
participant->mka_life = MKA_LIFE_TIME / 1000 + time(NULL) +
|
||||
usecs / 1000000;
|
||||
|
||||
/* Disable MKA lifetime for PSK mode.
|
||||
* The peer(s) can take a long time to come up, because we
|
||||
* create a "standby" MKA, and we need it to remain live until
|
||||
* some peer appears.
|
||||
*/
|
||||
if (mode != PSK) {
|
||||
participant->mka_life = MKA_LIFE_TIME / 1000 + time(NULL) +
|
||||
usecs / 1000000;
|
||||
}
|
||||
|
||||
return participant;
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue