blue_11j@yahoo.co.jp wrote:
I tried to make a patch for FR-1.1.7 like that fix.
but, When it continue to receive EAP-Identity only(Dos Attack), 1) growing up memory usage of radiusd. 2) over max_sessions, growing up memory usage stopped. it is ok. 3) but, starting expiring old handler and add new handler, growing up memory usage of radiusd, again.
to expiring eap handler, only call eap_handler_free() ?
Yes.
is there other memory leak still ?
No idea. Use "valgrind" to see what's going on. And please don't spend effort on 1.1.7. It is old, unsupported, and all new development is on the 2.0 branch.
to ignoring EAP-Identity when over max_sessions, what kind of state is should return at eap_authenticate()? PW_MODULE_FAIL or NOOP or REJECT ?
FAIL.
# I'm sorry, do you understand my english?
Your english is fine. Alan DeKok.