RE: [PATCH] Send Client-Error when AT_KDF attributes from the server are incorrect

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi Jouni,

Thank you for your approval.

Best Regards,
Tomoharu Hatano

-----Original Message-----
From: Jouni Malinen [mailto:j@xxxxx] 
Sent: Monday, September 11, 2017 4:51 AM
To: Hatano, Tomoharu (Sony Mobile) <Tomoharu.Hatano@xxxxxxxx>
Cc: hostap@xxxxxxxxxxxxxxxxxxx; Akihiro Onodera <akihiro.onodera@xxxxxxxx>; Nanbu, Tomonori (Sony Mobile) <Tomonori.Nanbu@xxxxxxxx>; Sogo, Shinji (Sony Mobile) <Shinji.Sogo@xxxxxxxx>
Subject: Re: [PATCH] Send Client-Error when AT_KDF attributes from the server are incorrect

On Tue, Jul 25, 2017 at 12:25:51PM +0900, Tomoharu Hatano wrote:
> After KDF negotiation, must check only requested change occurred in 
> the list of AT_KDF attributes. If there are any other changes, the 
> peer must behave like the case that AT_MAC had been incorrect and 
> authentication is failed. These are defined in EAP-AKA' specification RFC5448.
> 
> Adds a complete check of AT_KDF attributes and sends Client-Error if a 
> change which is not requested is included in it.

Thanks, applied.
 
-- 
Jouni Malinen                                            PGP id EFC895FA

_______________________________________________
Hostap mailing list
Hostap@xxxxxxxxxxxxxxxxxxx
http://lists.infradead.org/mailman/listinfo/hostap



[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]

  Powered by Linux