Detail listeners halt on invalid signature when proxying

Alan DeKok aland at deployingradius.com
Tue Oct 20 12:13:26 CEST 2009


John Morrissey wrote:
> Recently, one of the home servers in a load balanced pool was configured
> with the wrong secret, triggering this code in received_proxy_response():
...
> Since the proxy response is ignored and detail_send() is never called, the
> detail listener stays in STATE_RUNNING. detail_recv() short-circuits during
> STATE_RUNNING, so the failed request is never retransmitted and all detail
> processing for that listener halts until FreeRADIUS is restarted.

  OK.  That should be fixed.

  The solution is to fix detail_recv() so that it retries the packet
after being in the RUNNING state for "retry_interval".

  I'll commit a patch.

  Alan DeKok.



More information about the Freeradius-Devel mailing list