draft-josefsson-pppext-eap-tls-eap-05.txt
来自「linux 下通过802.1认证的安装包」· 文本 代码 · 共 1,665 行 · 第 1/5 页
TXT
1,665 行
Andersson et al. Standards Track [Page 17]
INTERNET-DRAFT PEAP September 2002
3. Detailed description of the PEAP protocol
3.1. PEAP Packet Format
A summary of the PEAP Request/Response packet format is shown below.
The fields are transmitted from left to right.
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Code | Identifier | Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type | Flags |Ver| Data...
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Code
1 - Request
2 - Response
Identifier
The Identifier field is one octet and aids in matching responses with
requests.
Length
The Length field is two octets and indicates the length of the EAP
packet including the Code, Identifier, Length, Type, and Data fields.
Octets outside the range of the Length field should be treated as
Data Link Layer padding and should be ignored on reception.
Type
25 - PEAP
Flags
0 1 2 3 4 5
+-+-+-+-+-+-+
|L M S R R R|
+-+-+-+-+-+-+
L = Length included
M = More fragments
S = PEAP start
R = Reserved (must be zero)
Andersson et al. Standards Track [Page 18]
INTERNET-DRAFT PEAP September 2002
The L bit (length included) is set to indicate the presence of the
four octet TLS Message Length field, and MUST be set for the first
fragment of a fragmented TLS message or set of messages. The M bit
(more fragments) is set on all but the last fragment. The S bit (PEAP
start) is set in a PEAP Start message. This differentiates the PEAP
Start message from a fragment acknowledgment.
Version
0 1
+-+-+
|R 1|
+-+-+
R = Reserved (must be zero)
Data
The format of the Data field is determined by the Code field.
Andersson et al. Standards Track [Page 19]
INTERNET-DRAFT PEAP September 2002
3.2. PEAP Request Packet
A summary of the PEAP Request packet format is shown below. The fields
are transmitted from left to right.
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Code | Identifier | Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type | Flags |Ver| TLS Message Length
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| TLS Message Length | TLS Data...
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Code
1
Identifier
The Identifier field is one octet and aids in matching responses with
requests. The Identifier field MUST be changed on each Request
packet.
Length
The Length field is two octets and indicates the length of the EAP
packet including the Code, Identifier, Length, Type, and TLS Response
fields.
Type
25 - PEAP
Flags
0 1 2 3 4 5
+-+-+-+-+-+-+
|L M S R R R|
+-+-+-+-+-+-+
L = Length included
M = More fragments
S = PEAP start
R = Reserved (must be zero)
The L bit (length included) is set to indicate the presence of the
Andersson et al. Standards Track [Page 20]
INTERNET-DRAFT PEAP September 2002
four octet TLS Message Length field, and MUST be set for the first
fragment of a fragmented TLS message or set of messages. The M bit
(more fragments) is set on all but the last fragment. The S bit (PEAP
start) is set in a PEAP Start message. This differentiates the PEAP
Start message from a fragment acknowledgment.
Version
0 1
+-+-+
|R 1|
+-+-+
R = Reserved (must be zero)
TLS Message Length
The TLS Message Length field is four octets, and is present only if
the L bit is set. This field provides the total length of the TLS
message or set of messages that is being fragmented.
TLS data
The TLS data consists of the encapsulated packet in TLS record
format.
Andersson et al. Standards Track [Page 21]
INTERNET-DRAFT PEAP September 2002
3.3. PEAP Response Packet
A summary of the PEAP Response packet format is shown below. The fields
are transmitted from left to right.
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Code | Identifier | Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type | Flags |Ver| TLS Message Length
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| TLS Message Length | TLS Data...
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Code
2
Identifier
The Identifier field is one octet and MUST match the Identifier field
from the corresponding request.
Length
The Length field is two octets and indicates the length of the EAP
packet including the Code, Identifier, Length, Type, and TLS data
fields.
Type
25 - PEAP
Flags
0 1 2 3 4 5
+-+-+-+-+-+-+
|L M S R R R|
+-+-+-+-+-+-+
L = Length included
M = More fragments
S = PEAP start
R = Reserved (must be zero)
The L bit (length included) is set to indicate the presence of the
four octet TLS Message Length field, and MUST be set for the first
Andersson et al. Standards Track [Page 22]
INTERNET-DRAFT PEAP September 2002
fragment of a fragmented TLS message or set of messages. The M bit
(more fragments) is set on all but the last fragment. The S bit (PEAP
start) is set in a PEAP Start message. This differentiates the PEAP
Start message from a fragment acknowledgment.
Version
⌨️ 快捷键说明
复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?