CRL signature failure

lowbassman at gmail.com lowbassman at gmail.com
Thu Mar 20 00:24:55 CET 2008


I have a cronjob that pulls down a CRL, runs openssl to verify it's OK, and
then stops radius, copies the crl into place, and then starts radius.

Occasionally, around two or three times a month, I get the following errors
and no one can auth to radius until the next run of the cronjob when the CRL
is again pulled down.

Wed Mar 19 15:01:00 2008 : Error: --> verify error:num=8:CRL signature
failure
Wed Mar 19 15:01:00 2008 : Error: TLS Alert write:fatal:decrypt error
Wed Mar 19 15:01:00 2008 : Error:     TLS_accept:error in SSLv3 read client
certificate B
Wed Mar 19 15:01:00 2008 : Error: rlm_eap: SSL error error:04077068:rsa
routines:RSA_verify:bad signature
Wed Mar 19 15:01:00 2008 : Error: rlm_eap_tls: SSL_read failed inside of TLS
(-1), TLS session fails.

Any ideas what might be causing this or how I might determine the cause?
Thanks,
~Matt
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20080319/1a3c514e/attachment.html>


More information about the Freeradius-Users mailing list