<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<META NAME="Generator" CONTENT="MS Exchange Server version 6.5.7650.28">
<TITLE>server crashes with eap/tls after crl update</TITLE>
</HEAD>
<BODY>
<!-- Converted from text/rtf format -->
<P><FONT SIZE=2 FACE="Arial">Hello,</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">this week I updated to freeradius 1.1.6. We use eap/tls with a crl from a Microsoft CA, which is downloaded and converted by a shell script every hour or has to be updated manually. If it changes, I have to reload the server config, right? Since the update the server crashes with a seg fault about a minute after the config reload - but only if the crl changed. For now I changed the reload (SIGHUP) to a complete restart as a work around. Before we used freeradius 1.1.4.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">--- debug info ---</FONT>
<BR><FONT SIZE=2 FACE="Arial"># ./radiusd -X</FONT>
<BR><FONT SIZE=2 FACE="Arial">...</FONT>
<BR><FONT SIZE=2 FACE="Arial">--- Walking the entire request list ---</FONT>
<BR><FONT SIZE=2 FACE="Arial">Nothing to do. Sleeping until we see a request.</FONT>
<BR><FONT SIZE=2 FACE="Arial">Reloading configuration files.</FONT>
<BR><FONT SIZE=2 FACE="Arial">reread_config: reading radiusd.conf</FONT>
<BR><FONT SIZE=2 FACE="Arial">Config: including file: /opt/freeradius/etc/raddb/proxy.conf</FONT>
<BR><FONT SIZE=2 FACE="Arial">Config: including file: /opt/freeradius/etc/raddb/clients.conf</FONT>
<BR><FONT SIZE=2 FACE="Arial">Config: including file: /opt/freeradius/etc/raddb/snmp.conf</FONT>
<BR><FONT SIZE=2 FACE="Arial">Config: including file: /opt/freeradius/etc/raddb/eap.conf</FONT>
<BR><FONT SIZE=2 FACE="Arial">Config: including file: /opt/freeradius/etc/raddb/sql.conf</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: prefix = "/opt/freeradius"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: localstatedir = "/opt/freeradius/var"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: logdir = "/opt/freeradius/var/log/radius"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: libdir = "/opt/freeradius/lib"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: radacctdir = "/opt/freeradius/var/log/radius/radacct"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: hostname_lookups = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: snmp = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: max_request_time = 30</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: cleanup_delay = 5</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: max_requests = 1024</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: delete_blocked_requests = 0</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: port = 0</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: allow_core_dumps = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: log_stripped_names = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: log_file = "/opt/freeradius/var/log/radius/radius.log"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: log_auth = yes</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: log_auth_badpass = yes</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: log_auth_goodpass = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: pidfile = "/opt/freeradius/var/run/radiusd/radiusd.pid"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: user = "(null)"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: group = "(null)"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: usercollide = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: lower_user = "no"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: lower_pass = "no"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: nospace_user = "no"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: nospace_pass = "no"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: checkrad = "/opt/freeradius/sbin/checkrad"</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: proxy_requests = yes</FONT>
<BR><FONT SIZE=2 FACE="Arial"> proxy: retry_delay = 5</FONT>
<BR><FONT SIZE=2 FACE="Arial"> proxy: retry_count = 3</FONT>
<BR><FONT SIZE=2 FACE="Arial"> proxy: synchronous = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> proxy: default_fallback = yes</FONT>
<BR><FONT SIZE=2 FACE="Arial"> proxy: dead_time = 120</FONT>
<BR><FONT SIZE=2 FACE="Arial"> proxy: post_proxy_authorize = yes</FONT>
<BR><FONT SIZE=2 FACE="Arial"> proxy: wake_all_if_all_dead = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> security: max_attributes = 200</FONT>
<BR><FONT SIZE=2 FACE="Arial"> security: reject_delay = 1</FONT>
<BR><FONT SIZE=2 FACE="Arial"> security: status_server = no</FONT>
<BR><FONT SIZE=2 FACE="Arial"> main: debug_level = 0</FONT>
<BR><FONT SIZE=2 FACE="Arial">read_config_files: reading dictionary</FONT>
<BR><FONT SIZE=2 FACE="Arial">read_config_files: reading naslist</FONT>
<BR><FONT SIZE=2 FACE="Arial">Using deprecated naslist file. Support for this will go away soon.</FONT>
<BR><FONT SIZE=2 FACE="Arial">read_config_files: reading clients</FONT>
<BR><FONT SIZE=2 FACE="Arial">read_config_files: reading realms</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:23 2007 : Info: rlm_exec: Wait=yes but no output defined. Did you mean output=none?</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:23 2007 : Error: radiusd.conf[1683] Auth-Type PAP already configured - skipping</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:23 2007 : Error: radiusd.conf[1692] Auth-Type CHAP already configured - skipping</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:23 2007 : Error: radiusd.conf[1698] Auth-Type MS-CHAP already configured - skipping</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:23 2007 : Info: radiusd.conf Auth-Type System already configured - skipping</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:23 2007 : Info: rlm_eap_tls: Loading the certificate file as a chain</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: radiusd.conf Auth-Type eap already configured - skipping</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: rlm_sql (sql): Attempting to connect to XXXremovedXXX</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: rlm_sql_mysql: Starting connect to MySQL server for #0</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: rlm_sql_mysql: Starting connect to MySQL server for #1</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: rlm_sql_mysql: Starting connect to MySQL server for #2</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: rlm_sql_mysql: Starting connect to MySQL server for #3</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: rlm_sql_mysql: Starting connect to MySQL server for #4</FONT>
<BR><FONT SIZE=2 FACE="Arial">Thu Apr 19 19:07:24 2007 : Info: Ready to process requests.</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">Segmentation fault</FONT>
<BR><FONT SIZE=2 FACE="Arial">--- debug info ---<BR>
</FONT>
<BR><FONT SIZE=2 FACE="Arial">Does anyone have the same problem?</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">Thanks!</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">bye</FONT>
<BR><FONT SIZE=2 FACE="Arial">Daniel</FONT>
</P>
</BODY>
</HTML>