server crashes with eap/tls after crl update
inverse
inverse at ngi.it
Fri Apr 20 10:36:23 CEST 2007
On 4/20/07, Fiederling, Daniel <daniel.fiederling at warema.de> wrote:
> Hello,
>
> this week I updated to freeradius 1.1.6. We use eap/tls with a crl from a
> Microsoft CA, which is downloaded and converted by a shell script every hour
> or has to be updated manually. If it changes, I have to reload the server
> config, right? Since the update the server crashes with a seg fault about a
> minute after the config reload - but only if the crl changed. For now I
> changed the reload (SIGHUP) to a complete restart as a work around. Before
> we used freeradius 1.1.4.
my test setup is: freeradius 1.1.6 compiled against openssll 0.9.8e.
the system is RedHat EL4 with the latest updates and kernel
2.6.9-22.ELsmp
EAP-TLS is implemented and works fine, so does the CRL.
My problem is as follows: the HUP works but radiusd segfaults at the
first authentication after the HUP.
Now I'm in the process of performance and stability testing. if this
version shows the same outstanding level of performance shown by the
bleeding edge I'll keep it, otherwise I'll consider taking the risk of
CVS.
More information about the Freeradius-Users
mailing list