Cite this repository
Push Tracker
Files 15 items
|
A
f367103ceb
Security: - Serve generated profiles at /api/profile/<random-token> instead of /api/profile/<sequential-int>. Profiles carry Ki/OPc, so the enumerable id scheme allowed anyone on the WiFi to harvest all subscriber keys. Unknown tokens return a plain 404 so they can't be probed. Robustness: - Open5GS/free5gc adapters use short MongoDB timeouts so an unreachable core fails provisioning fast instead of blocking ~30s on the default. - Profile cache is now a size-capped LRU (OrderedDict) to prevent unbounded memory growth. - load_config rejects empty/non-mapping YAML and validates network.op_key is a 16-byte hex string. Tests: +25 (test_app.py API coverage, test_utils.py); 78 pass. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> |
|||
|---|---|---|---|
| android | |||
| configs | |||
| plan | |||
| portal | |||
| scripts | |||
| server | |||
| systemd | |||
| tests | |||
| .gitattributes | |||
| .gitignore | |||
| CHANGELOG.md | |||
| claude.md | |||
| config.yaml.example | |||
| README.md | |||
| requirements.txt | |||