Proxying EAP-TTLS requests via 2.1.0 to 1.1.7
Alan DeKok
aland at deployingradius.com
Fri Sep 26 17:22:02 CEST 2008
Peter Eriksson wrote:
> Any suggestions on where I should start adding debugging
> printf's/debugger checkpoints in order to try to pin-point
> this problem?
src/lib/radius.c, rad_encode, and the attr2vp functions.
> Am I correct in assuming the keys in question are generated in
> src/modules/rlm_eap/libeap/mppe_keys.c:151 via a call to the local
> function add_reply?
Yes. But the MPPE keys are the correct length. The problem comes
when they are encoded in the packet. There's an extra "0" byte added to
the start. Maybe because it thinks the attribute is tagged?
> OS: Solaris 10
> Hardware: Sun Fire T1000 (64bit UltraSPARC-T1 processor)
>
> FreeRadius built as a 32bit process.
Hmm... It should be 64-bit clean. I'll try it on the 64-bit system I
have access to.
> Hmmm... Structure alignment issue (SPARC can be more "picky" there)?
> Byte order issue? (SPARC is different from x86 here).
The server is 64-bit clean, and works on big/little-endian machines.
> I'm going to build on some x86 machines too to see if it behaves
> differently there.
It it does, it's likely a 64-bit issue.
Alan DeKok.
More information about the Freeradius-Users
mailing list