2.0.5 on Solaris, openssl 0.9.8h ---> does support sha256 ?

Rafiqul Ahsan rafiqul.ahsan at gmail.com
Fri Aug 8 23:45:42 CEST 2008 

I have tested authentication works with my existing certs. When I load
the new certs (sha256), and I see below error at "radiusd -X"
I am using FreeeRadius 2.0.5, openssl 0.9.8h, OS Solaris.

Is there any known patch for this to support advance encryption...I
believe I saw somewhere in web that 1.1.7 has this patch, how about
2.0.5 ?

Thanks for your thoughts,
Rafi


 tls {
        rsa_key_exchange = yes
        dh_key_exchange = no
        rsa_key_length = 1024
        dh_key_length = 1024
        verify_depth = 2
        pem_file_type = yes
        private_key_file = "/usr/local/etc/raddb/certs/wmxforum/xohm.com3.pvt.pe
m"
        certificate_file = "/usr/local/etc/raddb/certs/wmxforum/xohm.com3.pem"
        CA_file = "/usr/local/etc/raddb/certs/wmaxforum/sam-cacert.pem"
        dh_file = "/usr/local/etc/raddb/certs/wmxforum/DH"
        random_file = "/usr/local/etc/raddb/certs/wmxforum/random"
        fragment_size = 1024
        include_length = yes
        check_crl = no
   }
rlm_eap: SSL error error:02001002:system library:fopen:No such file or directory
rlm_eap_tls: Error reading Trusted root CA list /usr/local/etc/raddb/certs/wmaxf
orum/sam-cacert.pem
rlm_eap: Failed to initialize type tls
/usr/local/etc/raddb/eap.conf[3]: Instantiation failed for module "eap"
/usr/local/etc/raddb/sites-enabled/inner-tunnel[223]: Failed to find module "eap
".
/usr/local/etc/raddb/sites-enabled/inner-tunnel[176]: Errors parsing authenticat
e section.
 }
}
Errors initializing modules




On 8/7/08, Rafiqul Ahsan <rafiqul.ahsan at gmail.com> wrote:
> I changed the Makefile for random file creation step (as a fix for my
> earlier posted error)...
>
> This is what I found at Makefile  :
>
> random:
>        @if [ -e /dev/urandom ] ; then \
>                dd if=/dev/urandom of=./random count=10 >/dev/null 2>&1; \
>        else \
>                date > ./random; \
>        fi
>
> I Changed to ...
>
> random
>          date > ./random;
>
> That solved my earlier problem, and now my server is listening.
>
> Thanks,
> Rafi
>
>
>
>
>
>
>
> On 8/7/08, Rafiqul Ahsan <rafiqul.ahsan at gmail.com> wrote:
> > I see below error when I execute bootstrap
> >
> > bash-3.00# /usr/local/etc/raddb/certs/bootstrap
> > ...............................................
> > make: Nothing to be done for `ca'.
> > make: Nothing to be done for `server'.
> > make: `dh' is up to date.
> > /bin/sh: test: argument expected
> > make: *** [random] Error 1
> >
> > On 8/7/08, Alan DeKok <aland at deployingradius.com> wrote:
> > > Rafiqul Ahsan wrote:
> > > > Thanks, I was able to build freeradius 2.0.5 on Solaris 10. However,
> > > > server is not running, and I see below error when I run "radiusd -X".
> > > > Here is the output.
> > > ...
> > > >       make_cert_command = "/usr/local/etc/raddb/certs/bootstrap"
> > > >    }
> > > > Exec-Program output:
> > >
> > >  It's trying to run the bootstrap command.  It's not working.
> > >
> > >  Run the bootstrap command by hand, and then re-start the server.
> > >
> > >  Alan DeKok.
> > > -
> > > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> > >
> >
> >
> > --
> > Rafiqul Ahsan
> >
>
>
> --
> Rafiqul Ahsan
>


-- 
Rafiqul Ahsan

More information about the Freeradius-Users mailing list