)]}' { "commit": "ca68a8b561c48393c8ba25055ce294caaa3ac008", "tree": "159ff4bcb852a0dffa172909df1bfca79e7ae6ce", "parents": [ "6b94f71dcd16d88845759dad90c13d41675da6e9" ], "author": { "name": "Jouni Malinen", "email": "j@w1.fi", "time": "Sun Apr 19 17:45:33 2015 +0300" }, "committer": { "name": "Jouni Malinen", "email": "j@w1.fi", "time": "Wed Apr 22 22:05:12 2015 +0300" }, "message": "WPS: Explicitly reject Public Key attribute with unexpected length\n\nThere is no need to try to derive DH shared key with a peer that tries\nto use too short or too long DH Public Key. Previously, such cases ended\nup implicitly getting rejected by the DH operations failing to produce\nmatching results. That is unnecessarily, so simply reject the message\ncompletely if it does not have a Public Key with valid length. Accept\ncouple of octets shorter value to be used to avoid interoperability\nissues if there are implementations that do not use zero-padding\nproperly.\n\nSigned-off-by: Jouni Malinen \u003cj@w1.fi\u003e\n", "tree_diff": [ { "type": "modify", "old_id": "a1330ded14649c52029b7ad576f553928ab778b6", "old_mode": 33188, "old_path": "src/wps/wps_attr_parse.c", "new_id": "11a967ba0ef182f2a7ddc882b160f7425f6d5d50", "new_mode": 33188, "new_path": "src/wps/wps_attr_parse.c" } ] }