Do you see anything in here? write(6, "Fri Mar 10 10:32:38 2006 : Info:"..., 86) = 86 close(6) = 0 munmap(0xb7fb6000, 4096) = 0 open("/etc/raddb/certs/cert-srv.pem", O_RDONLY) = 6 fstat64(6, {st_mode=S_IFREG|0644, st_size=2439, ...}) = 0 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7fb6000 read(6, "Bag Attributes\n localKeyID: 0"..., 4096) = 2439 close(6) = 0 munmap(0xb7fb6000, 4096) = 0 write(2, "12836:error:0906D06C:PEM routine"..., 100) = 100 write(2, "12836:error:14085005:SSL routine"..., 70) = 70 open("/var/log/freeradius/radius.log", O_WRONLY|O_APPEND|O_CREAT, 0666) = 6 fstat64(6, {st_mode=S_IFREG|0644, st_size=128573, ...}) = 0 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7fb6000 fstat64(6, {st_mode=S_IFREG|0644, st_size=128573, ...}) = 0 _llseek(6, 128573, [128573], SEEK_SET) = 0 time(NULL) = 1141986758 write(6, "Fri Mar 10 10:32:38 2006 : Error"..., 78) = 78 Alan DeKok wrote:
=?ISO-8859-1?Q?Andr=E9_Lemos?= <alemos@criticalsoftware.com> wrote:
doesn't anyone also have this problem?
It works in my tests.
Hmm... the code prints the SSL errors to stderr. They're lost when running in daemon mode. Yuck.
I *suspect* that the files aren't readable by the server after a HUP. Try making them owned by the UID the server is running as, and making them readable by that uid.
Alan DeKok.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- **_____________________** * *André Ventura Lemos** **Software Engineer** **Critical Software, SA** **Webpage:** **www.andrelemos.com** **MSN:** **tux@tuxslare.org** **GSM:** **+351916401042** **TLF:** **+351239989100** DISCLAIMER: This message may contain confidential information or privileged material and is intended only for the individual(s) named. If you are not a named addressee and mistakenly received this message you should not copy or otherwise disseminate it: please delete this e-mail from your system and notify the sender immediately. E-mail transmissions are not guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete or contain viruses. Therefore, the sender does not accept liability for any errors or omissions in the contents of this message that arise as a result of e-mail transmissions. Please request a hard copy version if verification is required. Critical Software.