Freeradius 3.0.10 sigsegv

Luca Palazzo luca.palazzo at unict.it
Tue Jan 5 18:08:23 CET 2016 

I forgot to say that the if statement was in authorize section of 
default site.

Luca

Il 05/01/16 17:26, Luca Palazzo ha scritto:
> Alan,
> I've just disabled virtual servers and this part of configuration:
>
> ##      if (EAP-Message) {
> ##                 if ( Called-Station-ID =~ /.*:eduroam$/ ) {
> ##
> ##                      if ( User-Name =~ /.*@.*.unict.it$/ ) {
> ##                              update control {
> ##                                      User-Name := "%{1}"
> ##                              }
> ##                      }
> ##
> ##                         if ( SQL-Group == studente ) {
> ##                                 reject
> ##                              update reply {
> ##                                      Reply-Message = "Eduroam access
> for students allowed only if you are outside UniCT campus"
> ##                              }
> ##                         }
> ##
> ##                         update control {
> ##                                 Virtual-Server := "wluct"
> ##                         }
> ##                 }
> ##                 if ( Called-Station-ID =~ /.*:WLUCT$/ ) {
> ##                 # if ( Calling-Station-ID =~ /.*-01$/ ) {
> ##                         if ( SQL-Group != wireless ) {
> ##                                 reject
> ##                         }
> ##                         update reply {
> ##                                 Reply-Message = "WLUCT"
> ##                         }
> ##
> ##                         update control {
> ##                                 Virtual-Server := "wluct"
> ##                         }
> ##                 }
> ##                 if ( Called-Station-ID =~ /.*:WLUCTSTUD$/ ) {
> ##                 # if ( Calling-Station-ID =~ /.*-01$/ ) {
> ##                         if ( SQL-Group != studente ) {
> ##                                 reject
> ##                         }
> ##                         update reply {
> ##                                 Reply-Message = "WLUCTSTUD"
> ##                         }
> ##
> ##                         update control {
> ##                                 Virtual-Server := "wluctstud"
> ##                         }
> ##                 }
> ##
> ##         }
>
>
> I've left proxy configuration, inner-tunnel and proxied virtual server.
>
> Now the configuration is pretty similar to default one. I'll check if it
> will crash again and keep you informed.
>
> Luca
>
> Il 05/01/16 15:12, Alan DeKok ha scritto:
>> On Jan 5, 2016, at 9:08 AM, Luca Palazzo <luca.palazzo at unict.it> wrote:
>>>
>>> Hi Alan,
>>> I've got these info from gdb:
>>>
>>> Program received signal SIGSEGV, Segmentation fault.
>>> 0x00007ffff7bc77a0 in paircompare (request=request at entry=0xb10ca0,
>>> req_list=0xb10f50, check=check at entry=0xb129b0,
>>> rep_list=rep_list at entry=0x0)
>>>     at src/main/pair.c:536
>>> 536                                     if ((auth_item->da == from)
>>> || (!from)) {
>>> (gdb) p auth_item
>>> $1 = (VALUE_PAIR *) 0x2e696d696c6f7040
>>> (gdb) p auth_item->da
>>> Cannot access memory at address 0x2e696d696c6f7040
>>
>>    Hmm... auth_item is corrupt.  That should only happen if there is
>> massive memory corruption.  And that code hasn't changed for a long
>> time.  So other people *should* have run into it.
>>
>>    If you can reproduce it with a slightly modified default
>> configuration, that would help.  I could then reproduce it locally and
>> debug it.  Otherwise, it's hard for me to remotely debug a problem
>> which only occurs on your machine.
>>
>>    Alan DeKok.
>>
>>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html

More information about the Freeradius-Users mailing list