Thanks, Jouni. That's a good clarification.

-----Original Message-----
From: Jouni Malinen <j...@w1.fi>
Sent: Saturday, March 28, 2020 9:26 AM
To: Alan DeKok <al...@deployingradius.com>
Cc: Hannes Tschofenig <hannes.tschofe...@arm.com>; emu@ietf.org
Subject: Re: [Emu] My review ... was RE: I-D Action: 
draft-ietf-emu-eaptlscert-02.txt

On Tue, Mar 24, 2020 at 10:08:06AM -0400, Alan DeKok wrote:
> On Mar 24, 2020, at 4:00 AM, Hannes Tschofenig <hannes.tschofe...@arm.com> 
> wrote:
> >> For example, many EAP authenticator (access point) implementations
> >> will drop an EAP session if it has not finished after
> >>  40 - 50 round-trips.
> >
> > Is there a reference that could be included?
>
>   References to hostap source code.

hostapd has a limit in the EAP server role on the number of round trips (and 
wpa_supplicant in the EAP peer role). However, there is no such limit in the 
EAP authenticator role, i.e., hostapd as the access point forwarding EAP to an 
external RADIUS authentication server does not place such a constraint on the 
exchange.

--
Jouni Malinen                                            PGP id EFC895FA
IMPORTANT NOTICE: The contents of this email and any attachments are 
confidential and may also be privileged. If you are not the intended recipient, 
please notify the sender immediately and do not disclose the contents to any 
other person, use it for any purpose, or store or copy the information in any 
medium. Thank you.

_______________________________________________
Emu mailing list
Emu@ietf.org
https://www.ietf.org/mailman/listinfo/emu

Reply via email to