From 51e9e6722ea552dd4658083930b440fcc6c662f5 Mon Sep 17 00:00:00 2001
From: Pol Henarejos <pol.henarejos@cttc.es>
Date: Tue, 7 Mar 2023 23:14:55 +0100
Subject: [PATCH] Reset puk status on failed authentication.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
---
 src/hsm/cmd_external_authenticate.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/hsm/cmd_external_authenticate.c b/src/hsm/cmd_external_authenticate.c
index 0cf3795..b003109 100644
--- a/src/hsm/cmd_external_authenticate.c
+++ b/src/hsm/cmd_external_authenticate.c
@@ -38,6 +38,7 @@ int cmd_external_authenticate() {
     if (!file_has_data(ef_puk)) {
         return SW_FILE_NOT_FOUND();
     }
+    puk_status[ef_puk_aut->fid & (MAX_PUK - 1)] = 0;
     uint8_t *puk_data = file_get_data(ef_puk);
     uint8_t *input = (uint8_t *) calloc(dev_name_len + challenge_len, sizeof(uint8_t)), hash[32];
     memcpy(input, dev_name, dev_name_len);