HUP stops radiusd

John Horne john.horne at plymouth.ac.uk
Mon May 14 15:01:52 CEST 2007 

Hello,

This is a 'me too' message I'm afraid. From the list archives I saw:

======================================================
> Date: Mon, 02 Apr 2007 20:20:47 +0200
> From: Alan DeKok <aland at deployingradius.com>
> Subject: Re: HUP in freeradius-1.1.5 + CVS results in process death.
> To: FreeRadius users mailing list
> 	<freeradius-users at lists.freeradius.org>
> Message-ID: <4611497F.3000500 at deployingradius.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Arran Cudbard-Bell wrote:
>   
>> I know theres a bug report for this already,
>> but when I HUP the process freeradius doesn't die in the same place.
>>     
>
>   If it's an issue due to incorrectly free'd memory, the crashes will be
> random.
>
>   There may be a fix in 1.1.6, but I'm not sure.
>
>   Alan DeKok.
> --
>   http://deployingradius.com       - The web site of the book
>   http://deployingradius.com/blog/ - The blog
>   
Looks more like a bug in rlm_tls . Dies every time on HUP, deffinatly 
not random...
======================================================


In our case, using freeradius 1.1.6, if I HUP the radiusd process it
crashes/stops. Running 'radiusd -X', the tail part shows:

=========================================================
 security: status_server = no
 main: debug_level = 0
read_config_files:  reading dictionary
read_config_files:  reading naslist
Using deprecated naslist file.  Support for this will go away soon.
read_config_files:  reading clients
read_config_files:  reading realms
Mon May 14 13:38:54 2007 : Info: rlm_exec: Wait=yes but no output
defined. Did you mean output=none?
Mon May 14 13:38:54 2007 : Error: radiusd.conf[230] Auth-Type PAP
already configured - skipping
Mon May 14 13:38:54 2007 : Error: radiusd.conf[234] Auth-Type MS-CHAP
already configured - skipping
Mon May 14 13:38:54 2007 : Info: rlm_eap_tls: Loading the certificate
file as a chain
Mon May 14 13:38:54 2007 : Error: rlm_eap: SSL error error:0906D06C:PEM
routines:PEM_read_bio:no start line
Mon May 14 13:38:54 2007 : Error: rlm_eap_tls: Error reading certificate
file
Mon May 14 13:38:54 2007 : Error: rlm_eap: Failed to initialize type tls
Mon May 14 13:38:54 2007 : Error: radiusd.conf[1]: eap: Module
instantiation failed.
Mon May 14 13:38:54 2007 : Error: radiusd.conf[238] Unknown module
"eap".
Mon May 14 13:38:54 2007 : Error: radiusd.conf[229] Failed to parse
authenticate section.
=========================================================

This was running radiusd as the root user, running it as our usual
non-root user caused the same output. Starting up radiusd normally shows
no such error messages, so I'm not sure why it should now complain about
the Auth-Type's or the certificate. Using the original radiusd.conf
produces the same error messages, with a couple of extras (for the
Auth-Types's system and CHAP).

Any ideas?


Thanks,

John.

-- 
---------------------------------------------------------------
John Horne, University of Plymouth, UK  Tel: +44 (0)1752 233914
E-mail: John.Horne at plymouth.ac.uk       Fax: +44 (0)1752 233839

More information about the Freeradius-Users mailing list