include_length and EAP-TTLS
I wonder if this is a small violation of the EAP-TTLS RFC (5281). In RFC 5281 http://tools.ietf.org/html/rfc5281#section-9.2.2, it states: Fragments other than the first MUST NOT have the L bit set. ... while this behavior is configurable in eap.conf: # include_length is a flag which is # by default set to yes If set to # yes, Total Length of the message is # included in EVERY packet we send. # If set to no, Total Length of the # message is included ONLY in the # First packet of a fragment series. # # include_length = yes I understand that it is for EAP-TLS (which does not have this restriction) but I think EAP-TTLS is controlled by the same line. (?) I confess that I only actually SEE the behavior in the now ancient 1.1.6 version, and only took a quick look at the 2.1.0 config file and source code. I apologize if I missed something or this had been brought up before. -gong - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: include_length and EAP-TTLS
Gong Cheng wrote:
I wonder if this is a small violation of the EAP-TTLS RFC (5281).
In RFC 5281 http://tools.ietf.org/html/rfc5281#section-9.2.2, it states:
Fragments other than the first MUST NOT have the L
bit set. ...
while this behavior is configurable in eap.conf:
...
I confess that I only actually SEE the behavior in the now ancient 1.1.6
version, and only took a quick look at the 2.1.0 config file and source code.
I apologize if I missed something or this had been brought up before.
I don't think it's serious. I don't know why this is a MUST NOT,
because it makes very little difference to the protocol. And
supplicants that break if the L bit is set on second fragments are badly
written.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: include_length and EAP-TTLS
(sorry i still don't know how to reply into a thread from yahoo web mail)
Yeah I agree. All the supplicants I used are ok with that. I just thought I
might point it out ... Thanks for your reply Alan.
Re: include_length and EAP-TTLS
* To: FreeRadius users mailing list
freeradius-users@lists.freeradius.org
* Subject: Re: include_length and EAP-TTLS
* From: Alan DeKok [EMAIL PROTECTED]
* Date: Fri, 05 Dec 2008 07:58:14 +0100
* In-reply-to: [EMAIL PROTECTED]
* References: [EMAIL PROTECTED]
* Reply-to: FreeRadius users mailing list
freeradius-users@lists.freeradius.org
* User-agent: Thunderbird 2.0.0.18 (Macintosh/20081105)
Gong Cheng wrote:
I wonder if this is a small violation of the EAP-TTLS RFC (5281).
In RFC 5281 http://tools.ietf.org/html/rfc5281#section-9.2.2, it states:
Fragments other than the first MUST NOT have the L
bit set. ...
while this behavior is configurable in eap.conf:
...
I confess that I only actually SEE the behavior in the now ancient 1.1.6
version, and only took a quick look at the 2.1.0 config file and source code.
I apologize if I missed something or this had been brought up before.
I don't think it's serious. I don't know why this is a MUST NOT,
because it makes very little difference to the protocol. And
supplicants that break if the L bit is set on second fragments are badly
written.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
