rlm_eap_tls sometimes fails to read files after HUP

Alan DeKok aland at ox.org
Thu Mar 23 18:15:51 CET 2006


Ben Thompson <bt4 at york.ac.uk> wrote:
> Could someone advise how to go about debugging this problem?

  First I'd suggest editing the code so that it prints the SSL errors
to radius.log, rather than stderr:

http://bugs.freeradius.org/show_bug.cgi?id=347

  That way the reason why SSL can't read the file will be printed too.
Without that information, it's pretty much impossible to fix it.

  I've added a patch as an attachment to the bug report.  It builds,
but I haven't tested it.  I'd suggest:

  a) try it in a test environment.  If it doesn't kill the system,
      maybe put it in a live environment

  b) look at the logs to see what SSL errors are being returned right
      before the "Error reading certificate file" message.

  Alan DeKok.



More information about the Freeradius-Users mailing list