Hi Jouni, Thank you for your approval. Best Regards, Tomoharu Hatano -----Original Message----- From: Jouni Malinen [mailto:j@xxxxx] Sent: Monday, September 11, 2017 4:51 AM To: Hatano, Tomoharu (Sony Mobile) <Tomoharu.Hatano@xxxxxxxx> Cc: hostap@xxxxxxxxxxxxxxxxxxx; Akihiro Onodera <akihiro.onodera@xxxxxxxx>; Nanbu, Tomonori (Sony Mobile) <Tomonori.Nanbu@xxxxxxxx>; Sogo, Shinji (Sony Mobile) <Shinji.Sogo@xxxxxxxx> Subject: Re: [PATCH] Send Client-Error when AT_KDF attributes from the server are incorrect On Tue, Jul 25, 2017 at 12:25:51PM +0900, Tomoharu Hatano wrote: > After KDF negotiation, must check only requested change occurred in > the list of AT_KDF attributes. If there are any other changes, the > peer must behave like the case that AT_MAC had been incorrect and > authentication is failed. These are defined in EAP-AKA' specification RFC5448. > > Adds a complete check of AT_KDF attributes and sends Client-Error if a > change which is not requested is included in it. Thanks, applied. -- Jouni Malinen PGP id EFC895FA _______________________________________________ Hostap mailing list Hostap@xxxxxxxxxxxxxxxxxxx http://lists.infradead.org/mailman/listinfo/hostap
