Dear Friends, I wanted to modify EAP-TLS protocol available in Freeradius. I found two files in src/modules/rlm_eap/libeap directory: eap_tls.c and tls.c. Can you please guide me to understand the code and which file does which functionality? Harshil A. Shah, Systems Engineer(SE), Convergence Labs, SETLabs, Bangalore, Contact#: 09742887966.
Harshil Anil Kumar Shah wrote:
I wanted to modify EAP-TLS protocol available in Freeradius. I found two files in src/modules/rlm_eap/libeap directory: *eap_tls.c *and *tls.c*. Can you please guide me to understand the code and which file does which functionality?
The comments in the code should make it clear. If you're asking for a detailed design document, none exists. And there isn't enough time to write one. The code should be *reasonably* clear to anyone familiar with C. i.e. if you don't understand the code, you shouldn't be modifying it. If you have *specific* questions about things you want to do, we can help. But we can't explain the code. You have it, and it's well commented. Go read it. Alan DeKok.
Thanks. But just give me brief idea regarding what tls.c does?. I am clear with eap_tls.c code and how cipher_spec and client/server_key_exchange takes place? -----Original Message----- From: freeradius-devel-bounces+harshil_shah=infosys.com@lists.freeradius.org [mailto:freeradius-devel-bounces+harshil_shah=infosys.com@lists.freeradius.org] On Behalf Of Alan DeKok Sent: Monday, May 17, 2010 3:19 PM To: FreeRadius developers mailing list Subject: Re: FW: EAP_TLS Harshil Anil Kumar Shah wrote:
I wanted to modify EAP-TLS protocol available in Freeradius. I found two files in src/modules/rlm_eap/libeap directory: *eap_tls.c *and *tls.c*. Can you please guide me to understand the code and which file does which functionality?
The comments in the code should make it clear. If you're asking for a detailed design document, none exists. And there isn't enough time to write one. The code should be *reasonably* clear to anyone familiar with C. i.e. if you don't understand the code, you shouldn't be modifying it. If you have *specific* questions about things you want to do, we can help. But we can't explain the code. You have it, and it's well commented. Go read it. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/devel.html **************** CAUTION - Disclaimer ***************** This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION intended solely for the use of the addressee(s). If you are not the intended recipient, please notify the sender by e-mail and delete the original message. Further, you are not to copy, disclose, or distribute this e-mail or its contents to any other person and any such actions are unlawful. This e-mail may contain viruses. Infosys has taken every reasonable precaution to minimize this risk, but is not liable for any damage you may sustain as a result of any virus in this e-mail. You should carry out your own virus checks before opening the e-mail or attachment. Infosys reserves the right to monitor and review the content of all messages sent to or from this e-mail address. Messages sent to or from this e-mail address may be stored on the Infosys e-mail system. ***INFOSYS******** End of Disclaimer ********INFOSYS***
OK. Have a *specific* one: Can you tell me, how server_key_exchange/certificate_request are sent to TLS client? -----Original Message----- From: freeradius-devel-bounces+harshil_shah=infosys.com@lists.freeradius.org [mailto:freeradius-devel-bounces+harshil_shah=infosys.com@lists.freeradius.org] On Behalf Of Alan DeKok Sent: Monday, May 17, 2010 3:51 PM To: FreeRadius developers mailing list Subject: Re: FW: EAP_TLS Harshil Anil Kumar Shah wrote:
Thanks.
But just give me brief idea regarding what tls.c does?.
No. You were told to ask *specific* questions. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/devel.html
Harshil Anil Kumar Shah wrote:
OK. Have a *specific* one: Can you tell me, how server_key_exchange/certificate_request are sent to TLS client?
That is part of the TLS protocol, and has nothing to do with RADIUS. Please read the EAP-TLS specification (RFC something or other). It explains all of this in detail. Alan DeKok.
participants (2)
-
Alan DeKok -
Harshil Anil Kumar Shah