Autz-Type New-TLS-Connection only available when using TLS 1.3
nabble at felix.world
nabble at felix.world
Thu Feb 15 16:56:43 UTC 2024
TLS 1.2 log:
```
Thu Feb 15 16:44:23 2024 : Debug: Server was built with:
Thu Feb 15 16:44:23 2024 : Debug: accounting : yes
Thu Feb 15 16:44:23 2024 : Debug: authentication : yes
Thu Feb 15 16:44:23 2024 : Debug: ascend-binary-attributes : yes
Thu Feb 15 16:44:23 2024 : Debug: coa : yes
Thu Feb 15 16:44:23 2024 : Debug: recv-coa-from-home-server : no
Thu Feb 15 16:44:23 2024 : Debug: control-socket : yes
Thu Feb 15 16:44:23 2024 : Debug: detail : yes
Thu Feb 15 16:44:23 2024 : Debug: dhcp : yes
Thu Feb 15 16:44:23 2024 : Debug: dynamic-clients : yes
Thu Feb 15 16:44:23 2024 : Debug: osfc2 : no
Thu Feb 15 16:44:23 2024 : Debug: proxy : yes
Thu Feb 15 16:44:23 2024 : Debug: regex-pcre : no
Thu Feb 15 16:44:23 2024 : Debug: regex-posix : yes
Thu Feb 15 16:44:23 2024 : Debug: regex-posix-extended : yes
Thu Feb 15 16:44:23 2024 : Debug: session-management : yes
Thu Feb 15 16:44:23 2024 : Debug: stats : yes
Thu Feb 15 16:44:23 2024 : Debug: systemd : no
Thu Feb 15 16:44:23 2024 : Debug: tcp : yes
Thu Feb 15 16:44:23 2024 : Debug: threads : yes
Thu Feb 15 16:44:23 2024 : Debug: tls : yes
Thu Feb 15 16:44:23 2024 : Debug: unlang : yes
Thu Feb 15 16:44:23 2024 : Debug: vmps : yes
Thu Feb 15 16:44:23 2024 : Debug: developer : yes
Thu Feb 15 16:44:23 2024 : Debug: Server core libs:
Thu Feb 15 16:44:23 2024 : Debug: freeradius-server : 3.2.4
Thu Feb 15 16:44:23 2024 : Debug: talloc : 2.3.*
Thu Feb 15 16:44:23 2024 : Debug: ssl : 3.0.0b dev
Thu Feb 15 16:44:23 2024 : Debug: Endianness:
Thu Feb 15 16:44:23 2024 : Debug: little
Thu Feb 15 16:44:23 2024 : Debug: Compilation flags:
Thu Feb 15 16:44:23 2024 : Debug: cppflags :
Thu Feb 15 16:44:23 2024 : Debug: cflags : -I. -Isrc -include src/freeradius-devel/autoconf.h -include src/freeradius-devel/build.h -include src/freeradius-devel/features.h -include src/freeradius-devel/radpaths.h -fno-strict-aliasing -Wno-date-time -g3 -Wall -std=c99 -D_GNU_SOURCE -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wshadow -Wpointer-arith -Wcast-qual -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -W -Wredundant-decls -Wundef -Wformat-y2k -Wno-format-extra-args -Wno-format-zero-length -Wno-cast-align -Wformat-nonliteral -Wformat-security -Wformat=2 -DWITH_VERIFY_PTR=1 -DIS_MODULE=1
Thu Feb 15 16:44:23 2024 : Debug: ldflags :
Thu Feb 15 16:44:23 2024 : Debug: libs : -lcrypto -lssl -ltalloc -latomic -lnsl -lresolv -ldl -lpthread
Thu Feb 15 16:44:23 2024 : Debug:
Thu Feb 15 16:44:23 2024 : Info: FreeRADIUS Version 3.2.4
Thu Feb 15 16:44:23 2024 : Info: Copyright (C) 1999-2023 The FreeRADIUS server project and contributors
Thu Feb 15 16:44:23 2024 : Info: There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
Thu Feb 15 16:44:23 2024 : Info: PARTICULAR PURPOSE
Thu Feb 15 16:44:23 2024 : Info: You may redistribute copies of FreeRADIUS under the terms of the
Thu Feb 15 16:44:23 2024 : Info: GNU General Public License
Thu Feb 15 16:44:23 2024 : Info: For more information about these matters, see the file named COPYRIGHT
Thu Feb 15 16:44:23 2024 : Info: Starting - reading configuration files ...
Thu Feb 15 16:44:23 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary
Thu Feb 15 16:44:23 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary.dhcp
Thu Feb 15 16:44:23 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary.vqp
Thu Feb 15 16:44:23 2024 : Debug: including dictionary file /usr/local/etc/raddb/dictionary
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/radiusd.conf
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/proxy.conf
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/clients.conf
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/echo
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/exec
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/expr
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/unix
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/utf8
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:44:23 2024 : Debug: including files in directory /usr/local/etc/raddb/policy.d/
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/abfab-tr
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/accounting
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/canonicalization
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/control
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/cui
Thu Feb 15 16:44:23 2024 : Debug: OPTIMIZING (${policy.cui_require_operator_name} == yes) --> FALSE
Thu Feb 15 16:44:23 2024 : Debug: OPTIMIZING (no == yes) --> FALSE
Thu Feb 15 16:44:23 2024 : Debug: OPTIMIZING (${policy.cui_require_operator_name} == yes) --> FALSE
Thu Feb 15 16:44:23 2024 : Debug: OPTIMIZING (no == yes) --> FALSE
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/debug
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/dhcp
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/eap
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/filter
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/moonshot-targeted-ids
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/operator-name
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/rfc7542
Thu Feb 15 16:44:23 2024 : Debug: including files in directory /usr/local/etc/raddb/sites-enabled/
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/tls
Thu Feb 15 16:44:23 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/inner-tunnel
Thu Feb 15 16:44:23 2024 : Debug: main {
Thu Feb 15 16:44:23 2024 : Debug: security {
Thu Feb 15 16:44:23 2024 : Debug: allow_core_dumps = no
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[567]: The item 'max_attributes' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[584]: The item 'reject_delay' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[604]: The item 'status_server' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[614]: The item 'allow_vulnerable_openssl' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: name = "radiusd"
Thu Feb 15 16:44:23 2024 : Debug: prefix = "/usr/local"
Thu Feb 15 16:44:23 2024 : Debug: localstatedir = "/usr/local/var"
Thu Feb 15 16:44:23 2024 : Debug: logdir = "/usr/local/var/log/radius"
Thu Feb 15 16:44:23 2024 : Debug: run_dir = "/usr/local/var/run/radiusd"
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[97]: The item 'confdir' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[104]: The item 'db_dir' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[138]: The item 'libdir' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[149]: The item 'pidfile' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[203]: The item 'max_request_time' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[222]: The item 'cleanup_delay' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[259]: The item 'hostname_lookups' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[413]: The item 'checkrad' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[633]: The item 'proxy_requests' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: main {
Thu Feb 15 16:44:23 2024 : Debug: name = "radiusd"
Thu Feb 15 16:44:23 2024 : Debug: prefix = "/usr/local"
Thu Feb 15 16:44:23 2024 : Debug: localstatedir = "/usr/local/var"
Thu Feb 15 16:44:23 2024 : Debug: sbindir = "/usr/local/sbin"
Thu Feb 15 16:44:23 2024 : Debug: logdir = "/usr/local/var/log/radius"
Thu Feb 15 16:44:23 2024 : Debug: run_dir = "/usr/local/var/run/radiusd"
Thu Feb 15 16:44:23 2024 : Debug: libdir = "/usr/local/lib"
Thu Feb 15 16:44:23 2024 : Debug: radacctdir = "/usr/local/var/log/radius/radacct"
Thu Feb 15 16:44:23 2024 : Debug: hostname_lookups = no
Thu Feb 15 16:44:23 2024 : Debug: max_request_time = 30
Thu Feb 15 16:44:23 2024 : Debug: proxy_dedup_window = 1
Thu Feb 15 16:44:23 2024 : Debug: cleanup_delay = 5
Thu Feb 15 16:44:23 2024 : Debug: max_requests = 16384
Thu Feb 15 16:44:23 2024 : Debug: postauth_client_lost = no
Thu Feb 15 16:44:23 2024 : Debug: pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
Thu Feb 15 16:44:23 2024 : Debug: checkrad = "/usr/local/sbin/checkrad"
Thu Feb 15 16:44:23 2024 : Debug: debug_level = 0
Thu Feb 15 16:44:23 2024 : Debug: proxy_requests = yes
Thu Feb 15 16:44:23 2024 : Debug: log {
Thu Feb 15 16:44:23 2024 : Debug: stripped_names = no
Thu Feb 15 16:44:23 2024 : Debug: auth = no
Thu Feb 15 16:44:23 2024 : Debug: auth_badpass = no
Thu Feb 15 16:44:23 2024 : Debug: auth_goodpass = no
Thu Feb 15 16:44:23 2024 : Debug: colourise = yes
Thu Feb 15 16:44:23 2024 : Debug: msg_denied = "You are already logged in - access denied"
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[309]: The item 'destination' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[326]: The item 'file' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[334]: The item 'syslog_facility' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: resources {
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: security {
Thu Feb 15 16:44:23 2024 : Debug: max_attributes = 200
Thu Feb 15 16:44:23 2024 : Debug: reject_delay = 1.000000
Thu Feb 15 16:44:23 2024 : Debug: status_server = yes
Thu Feb 15 16:44:23 2024 : Debug: allow_vulnerable_openssl = "no"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[97]: The item 'confdir' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[104]: The item 'db_dir' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: radiusd: #### Loading Realms and Home Servers ####
Thu Feb 15 16:44:23 2024 : Debug: proxy server {
Thu Feb 15 16:44:23 2024 : Debug: retry_delay = 5
Thu Feb 15 16:44:23 2024 : Debug: retry_count = 3
Thu Feb 15 16:44:23 2024 : Debug: default_fallback = no
Thu Feb 15 16:44:23 2024 : Debug: dead_time = 120
Thu Feb 15 16:44:23 2024 : Debug: wake_all_if_all_dead = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: home_server localhost {
Thu Feb 15 16:44:23 2024 : Debug: nonblock = no
Thu Feb 15 16:44:23 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:44:23 2024 : Debug: port = 1812
Thu Feb 15 16:44:23 2024 : Debug: type = "auth"
Thu Feb 15 16:44:23 2024 : Debug: secret = "testing123"
Thu Feb 15 16:44:23 2024 : Debug: response_window = 20.000000
Thu Feb 15 16:44:23 2024 : Debug: response_timeouts = 1
Thu Feb 15 16:44:23 2024 : Debug: max_outstanding = 65536
Thu Feb 15 16:44:23 2024 : Debug: zombie_period = 40
Thu Feb 15 16:44:23 2024 : Debug: status_check = "status-server"
Thu Feb 15 16:44:23 2024 : Debug: ping_interval = 30
Thu Feb 15 16:44:23 2024 : Debug: check_interval = 30
Thu Feb 15 16:44:23 2024 : Debug: check_timeout = 4
Thu Feb 15 16:44:23 2024 : Debug: num_answers_to_alive = 3
Thu Feb 15 16:44:23 2024 : Debug: revive_interval = 120
Thu Feb 15 16:44:23 2024 : Debug: limit {
Thu Feb 15 16:44:23 2024 : Debug: max_connections = 16
Thu Feb 15 16:44:23 2024 : Debug: max_requests = 0
Thu Feb 15 16:44:23 2024 : Debug: lifetime = 0
Thu Feb 15 16:44:23 2024 : Debug: idle_timeout = 0
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: coa {
Thu Feb 15 16:44:23 2024 : Debug: irt = 2
Thu Feb 15 16:44:23 2024 : Debug: mrt = 16
Thu Feb 15 16:44:23 2024 : Debug: mrc = 5
Thu Feb 15 16:44:23 2024 : Debug: mrd = 30
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: home_server tls {
Thu Feb 15 16:44:23 2024 : Debug: nonblock = no
Thu Feb 15 16:44:23 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:44:23 2024 : Debug: port = 2083
Thu Feb 15 16:44:23 2024 : Debug: type = "auth"
Thu Feb 15 16:44:23 2024 : Debug: proto = "tcp"
Thu Feb 15 16:44:23 2024 : Debug: secret = "radsec"
Thu Feb 15 16:44:23 2024 : Debug: response_window = 30.000000
Thu Feb 15 16:44:23 2024 : Debug: response_timeouts = 1
Thu Feb 15 16:44:23 2024 : Debug: max_outstanding = 65536
Thu Feb 15 16:44:23 2024 : Debug: zombie_period = 40
Thu Feb 15 16:44:23 2024 : Debug: status_check = "none"
Thu Feb 15 16:44:23 2024 : Debug: ping_interval = 30
Thu Feb 15 16:44:23 2024 : Debug: check_timeout = 4
Thu Feb 15 16:44:23 2024 : Debug: num_answers_to_alive = 3
Thu Feb 15 16:44:23 2024 : Debug: revive_interval = 300
Thu Feb 15 16:44:23 2024 : Debug: limit {
Thu Feb 15 16:44:23 2024 : Debug: max_connections = 16
Thu Feb 15 16:44:23 2024 : Debug: max_requests = 0
Thu Feb 15 16:44:23 2024 : Debug: lifetime = 0
Thu Feb 15 16:44:23 2024 : Debug: idle_timeout = 0
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: coa {
Thu Feb 15 16:44:23 2024 : Debug: irt = 2
Thu Feb 15 16:44:23 2024 : Debug: mrt = 16
Thu Feb 15 16:44:23 2024 : Debug: mrc = 5
Thu Feb 15 16:44:23 2024 : Debug: mrd = 30
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: tls {
Thu Feb 15 16:44:23 2024 : Debug: verify_depth = 0
Thu Feb 15 16:44:23 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:44:23 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:44:23 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/client.pem"
Thu Feb 15 16:44:23 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/client.pem"
Thu Feb 15 16:44:23 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:44:23 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:44:23 2024 : Debug: fragment_size = 8192
Thu Feb 15 16:44:23 2024 : Debug: include_length = yes
Thu Feb 15 16:44:23 2024 : Debug: check_crl = no
Thu Feb 15 16:44:23 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:44:23 2024 : Debug: ca_path_reload_interval = 0
Thu Feb 15 16:44:23 2024 : Debug: ecdh_curve = "prime256v1"
Thu Feb 15 16:44:23 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/sites-enabled/tls[720]: The item 'connect_timeout' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: connect_timeout = 30
Thu Feb 15 16:44:23 2024 : Debug: home_server_pool my_auth_failover {
Thu Feb 15 16:44:23 2024 : Debug: type = fail-over
Thu Feb 15 16:44:23 2024 : Debug: home_server = localhost
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: realm example.com {
Thu Feb 15 16:44:23 2024 : Debug: auth_pool = my_auth_failover
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: realm LOCAL {
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: home_server_pool tls {
Thu Feb 15 16:44:23 2024 : Debug: type = fail-over
Thu Feb 15 16:44:23 2024 : Debug: home_server = tls
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: realm tls {
Thu Feb 15 16:44:23 2024 : Debug: auth_pool = tls
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: radiusd: #### Loading Clients ####
Thu Feb 15 16:44:23 2024 : Debug: client localhost {
Thu Feb 15 16:44:23 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:44:23 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:44:23 2024 : Debug: secret = "testing123"
Thu Feb 15 16:44:23 2024 : Debug: nas_type = "other"
Thu Feb 15 16:44:23 2024 : Debug: proto = "*"
Thu Feb 15 16:44:23 2024 : Debug: limit {
Thu Feb 15 16:44:23 2024 : Debug: max_connections = 16
Thu Feb 15 16:44:23 2024 : Debug: lifetime = 0
Thu Feb 15 16:44:23 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Adding client 127.0.0.1/32 (127.0.0.1) to prefix tree 32
Thu Feb 15 16:44:23 2024 : Debug: client localhost_ipv6 {
Thu Feb 15 16:44:23 2024 : Debug: ipv6addr = ::1
Thu Feb 15 16:44:23 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:44:23 2024 : Debug: secret = "testing123"
Thu Feb 15 16:44:23 2024 : Debug: limit {
Thu Feb 15 16:44:23 2024 : Debug: max_connections = 16
Thu Feb 15 16:44:23 2024 : Debug: lifetime = 0
Thu Feb 15 16:44:23 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Adding client ::1/128 (::1) to prefix tree 128
Thu Feb 15 16:44:23 2024 : Info: Debugger not attached
Thu Feb 15 16:44:23 2024 : Debug: # Creating Auth-Type = eap
Thu Feb 15 16:44:23 2024 : Debug: # Creating Autz-Type = New-TLS-Connection
Thu Feb 15 16:44:23 2024 : Debug: # Creating Auth-Type = MS-CHAP
Thu Feb 15 16:44:23 2024 : Debug: radiusd: #### Instantiating modules ####
Thu Feb 15 16:44:23 2024 : Debug: modules {
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_always, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_always
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "reject" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always reject {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "reject"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "fail" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always fail {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "fail"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "ok" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always ok {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "ok"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "handled" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always handled {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "handled"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "invalid" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always invalid {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "invalid"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "userlock" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always userlock {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "userlock"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "notfound" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always notfound {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "notfound"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "noop" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always noop {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "noop"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "updated" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: always updated {
Thu Feb 15 16:44:23 2024 : Debug: rcode = "updated"
Thu Feb 15 16:44:23 2024 : Debug: simulcount = 0
Thu Feb 15 16:44:23 2024 : Debug: mpp = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_attr_filter, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_attr_filter
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "attr_filter.post-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: attr_filter attr_filter.post-proxy {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/post-proxy"
Thu Feb 15 16:44:23 2024 : Debug: key = "%{Realm}"
Thu Feb 15 16:44:23 2024 : Debug: relaxed = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "attr_filter.pre-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: attr_filter attr_filter.pre-proxy {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/pre-proxy"
Thu Feb 15 16:44:23 2024 : Debug: key = "%{Realm}"
Thu Feb 15 16:44:23 2024 : Debug: relaxed = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "attr_filter.access_reject" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: attr_filter attr_filter.access_reject {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/access_reject"
Thu Feb 15 16:44:23 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:44:23 2024 : Debug: relaxed = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "attr_filter.access_challenge" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: attr_filter attr_filter.access_challenge {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/access_challenge"
Thu Feb 15 16:44:23 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:44:23 2024 : Debug: relaxed = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "attr_filter.accounting_response" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: attr_filter attr_filter.accounting_response {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/accounting_response"
Thu Feb 15 16:44:23 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:44:23 2024 : Debug: relaxed = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "attr_filter.coa" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: attr_filter attr_filter.coa {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/coa"
Thu Feb 15 16:44:23 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:44:23 2024 : Debug: relaxed = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_date, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_date
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "date" from file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:44:23 2024 : Debug: date {
Thu Feb 15 16:44:23 2024 : Debug: format = "%b %e %Y %H:%M:%S %Z"
Thu Feb 15 16:44:23 2024 : Debug: utc = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "wispr2date" from file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:44:23 2024 : Debug: date wispr2date {
Thu Feb 15 16:44:23 2024 : Debug: format = "%Y-%m-%dT%H:%M:%S"
Thu Feb 15 16:44:23 2024 : Debug: utc = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_detail, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_detail
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "detail" from file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:44:23 2024 : Debug: detail {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"
Thu Feb 15 16:44:23 2024 : Debug: header = "%t"
Thu Feb 15 16:44:23 2024 : Debug: permissions = 384
Thu Feb 15 16:44:23 2024 : Debug: locking = no
Thu Feb 15 16:44:23 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:44:23 2024 : Debug: escape_filenames = no
Thu Feb 15 16:44:23 2024 : Debug: log_packet_header = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "auth_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: detail auth_log {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/auth-detail-%Y%m%d"
Thu Feb 15 16:44:23 2024 : Debug: header = "%t"
Thu Feb 15 16:44:23 2024 : Debug: permissions = 384
Thu Feb 15 16:44:23 2024 : Debug: locking = no
Thu Feb 15 16:44:23 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:44:23 2024 : Debug: escape_filenames = no
Thu Feb 15 16:44:23 2024 : Debug: log_packet_header = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "reply_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: detail reply_log {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/reply-detail-%Y%m%d"
Thu Feb 15 16:44:23 2024 : Debug: header = "%t"
Thu Feb 15 16:44:23 2024 : Debug: permissions = 384
Thu Feb 15 16:44:23 2024 : Debug: locking = no
Thu Feb 15 16:44:23 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:44:23 2024 : Debug: escape_filenames = no
Thu Feb 15 16:44:23 2024 : Debug: log_packet_header = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "pre_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: detail pre_proxy_log {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/pre-proxy-detail-%Y%m%d"
Thu Feb 15 16:44:23 2024 : Debug: header = "%t"
Thu Feb 15 16:44:23 2024 : Debug: permissions = 384
Thu Feb 15 16:44:23 2024 : Debug: locking = no
Thu Feb 15 16:44:23 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:44:23 2024 : Debug: escape_filenames = no
Thu Feb 15 16:44:23 2024 : Debug: log_packet_header = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "post_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: detail post_proxy_log {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/post-proxy-detail-%Y%m%d"
Thu Feb 15 16:44:23 2024 : Debug: header = "%t"
Thu Feb 15 16:44:23 2024 : Debug: permissions = 384
Thu Feb 15 16:44:23 2024 : Debug: locking = no
Thu Feb 15 16:44:23 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:44:23 2024 : Debug: escape_filenames = no
Thu Feb 15 16:44:23 2024 : Debug: log_packet_header = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_eap, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_eap
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "eap" from file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:44:23 2024 : Debug: eap {
Thu Feb 15 16:44:23 2024 : Debug: default_eap_type = "md5"
Thu Feb 15 16:44:23 2024 : Debug: timer_expire = 60
Thu Feb 15 16:44:23 2024 : Debug: max_eap_type = 52
Thu Feb 15 16:44:23 2024 : Debug: ignore_unknown_eap_types = no
Thu Feb 15 16:44:23 2024 : Debug: cisco_accounting_username_bug = no
Thu Feb 15 16:44:23 2024 : Debug: max_sessions = 16384
Thu Feb 15 16:44:23 2024 : Debug: dedup_key = ""
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_pap, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_pap
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "pap" from file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:44:23 2024 : Debug: pap {
Thu Feb 15 16:44:23 2024 : Debug: normalise = yes
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_exec, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_exec
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "echo" from file /usr/local/etc/raddb/mods-available/echo
Thu Feb 15 16:44:23 2024 : Debug: exec echo {
Thu Feb 15 16:44:23 2024 : Debug: wait = yes
Thu Feb 15 16:44:23 2024 : Debug: program = "/bin/echo %{User-Name}"
Thu Feb 15 16:44:23 2024 : Debug: input_pairs = "request"
Thu Feb 15 16:44:23 2024 : Debug: output_pairs = "reply"
Thu Feb 15 16:44:23 2024 : Debug: shell_escape = yes
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "exec" from file /usr/local/etc/raddb/mods-available/exec
Thu Feb 15 16:44:23 2024 : Debug: exec {
Thu Feb 15 16:44:23 2024 : Debug: wait = no
Thu Feb 15 16:44:23 2024 : Debug: input_pairs = "request"
Thu Feb 15 16:44:23 2024 : Debug: shell_escape = yes
Thu Feb 15 16:44:23 2024 : Debug: timeout = 10
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_expiration, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_expiration
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "expiration" from file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_expr, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_expr
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "expr" from file /usr/local/etc/raddb/mods-available/expr
Thu Feb 15 16:44:23 2024 : Debug: expr {
Thu Feb 15 16:44:23 2024 : Debug: safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /äéöüàâæçèéêëîïôœùûüaÿÄÉÖÜßÀÂÆÇÈÉÊËÎÏÔŒÙÛÜŸ"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_logintime, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_logintime
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "logintime" from file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:44:23 2024 : Debug: logintime {
Thu Feb 15 16:44:23 2024 : Debug: minimum_timeout = 60
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_preprocess, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_preprocess
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "preprocess" from file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:44:23 2024 : Debug: preprocess {
Thu Feb 15 16:44:23 2024 : Debug: huntgroups = "/usr/local/etc/raddb/mods-config/preprocess/huntgroups"
Thu Feb 15 16:44:23 2024 : Debug: hints = "/usr/local/etc/raddb/mods-config/preprocess/hints"
Thu Feb 15 16:44:23 2024 : Debug: with_ascend_hack = no
Thu Feb 15 16:44:23 2024 : Debug: ascend_channels_per_line = 23
Thu Feb 15 16:44:23 2024 : Debug: with_ntdomain_hack = no
Thu Feb 15 16:44:23 2024 : Debug: with_specialix_jetstream_hack = no
Thu Feb 15 16:44:23 2024 : Debug: with_cisco_vsa_hack = no
Thu Feb 15 16:44:23 2024 : Debug: with_alvarion_vsa_hack = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_unix, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_unix
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "unix" from file /usr/local/etc/raddb/mods-available/unix
Thu Feb 15 16:44:23 2024 : Debug: unix {
Thu Feb 15 16:44:23 2024 : Debug: radwtmp = "/usr/local/var/log/radius/radwtmp"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Creating attribute Unix-Group
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_utf8, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_utf8
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "utf8" from file /usr/local/etc/raddb/mods-available/utf8
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_linelog, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_linelog
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "linelog" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:44:23 2024 : Debug: linelog {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/var/log/radius/linelog"
Thu Feb 15 16:44:23 2024 : Debug: escape_filenames = no
Thu Feb 15 16:44:23 2024 : Debug: syslog_severity = "info"
Thu Feb 15 16:44:23 2024 : Debug: permissions = 384
Thu Feb 15 16:44:23 2024 : Debug: format = "This is a log message for %{User-Name}"
Thu Feb 15 16:44:23 2024 : Debug: reference = "messages.%{%{reply:Packet-Type}:-default}"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "log_accounting" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:44:23 2024 : Debug: linelog log_accounting {
Thu Feb 15 16:44:23 2024 : Debug: filename = "/usr/local/var/log/radius/linelog-accounting"
Thu Feb 15 16:44:23 2024 : Debug: escape_filenames = no
Thu Feb 15 16:44:23 2024 : Debug: syslog_severity = "info"
Thu Feb 15 16:44:23 2024 : Debug: permissions = 384
Thu Feb 15 16:44:23 2024 : Debug: format = ""
Thu Feb 15 16:44:23 2024 : Debug: reference = "Accounting-Request.%{%{Acct-Status-Type}:-unknown}"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_python3, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_python3
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "python3" from file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:44:23 2024 : Debug: python3 {
Thu Feb 15 16:44:23 2024 : Debug: cext_compat = yes
Thu Feb 15 16:44:23 2024 : Debug: pass_all_vps = no
Thu Feb 15 16:44:23 2024 : Debug: pass_all_vps_dict = no
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/mods-available/python3[18]: The item 'module' is defined, but is unused by the configuration
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Loaded rlm_mschap, checking if it's valid
Thu Feb 15 16:44:23 2024 : Debug: # Loaded module rlm_mschap
Thu Feb 15 16:44:23 2024 : Debug: # Loading module "mschap" from file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:44:23 2024 : Debug: mschap {
Thu Feb 15 16:44:23 2024 : Debug: use_mppe = yes
Thu Feb 15 16:44:23 2024 : Debug: require_encryption = no
Thu Feb 15 16:44:23 2024 : Debug: require_strong = no
Thu Feb 15 16:44:23 2024 : Debug: with_ntdomain_hack = yes
Thu Feb 15 16:44:23 2024 : Debug: passchange {
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: allow_retry = yes
Thu Feb 15 16:44:23 2024 : Debug: winbind_retry_with_normalised_username = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: instantiate {
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "reject" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "fail" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "ok" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "handled" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "invalid" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "userlock" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "notfound" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "noop" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "updated" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "attr_filter.post-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/post-proxy
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "attr_filter.pre-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/pre-proxy
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "attr_filter.access_reject" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/access_reject
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "attr_filter.access_challenge" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/access_challenge
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "attr_filter.accounting_response" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/accounting_response
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "attr_filter.coa" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:44:23 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/coa
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "detail" from file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "auth_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: rlm_detail (auth_log): 'User-Password' suppressed, will not appear in detail output
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "reply_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "pre_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "post_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "eap" from file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:44:23 2024 : Debug: # Linked to sub-module rlm_eap_md5
Thu Feb 15 16:44:23 2024 : Debug: # Linked to sub-module rlm_eap_tls
Thu Feb 15 16:44:23 2024 : Debug: tls {
Thu Feb 15 16:44:23 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: tls-config tls-common {
Thu Feb 15 16:44:23 2024 : Debug: verify_depth = 0
Thu Feb 15 16:44:23 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:44:23 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:44:23 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:44:23 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:44:23 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:44:23 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:44:23 2024 : Debug: fragment_size = 1024
Thu Feb 15 16:44:23 2024 : Debug: include_length = yes
Thu Feb 15 16:44:23 2024 : Debug: auto_chain = yes
Thu Feb 15 16:44:23 2024 : Debug: check_crl = no
Thu Feb 15 16:44:23 2024 : Debug: check_all_crl = no
Thu Feb 15 16:44:23 2024 : Debug: ca_path_reload_interval = 0
Thu Feb 15 16:44:23 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:44:23 2024 : Debug: cipher_server_preference = no
Thu Feb 15 16:44:23 2024 : Debug: reject_unknown_intermediate_ca = no
Thu Feb 15 16:44:23 2024 : Debug: ecdh_curve = ""
Thu Feb 15 16:44:23 2024 : Debug: tls_max_version = "1.2"
Thu Feb 15 16:44:23 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:44:23 2024 : Debug: cache {
Thu Feb 15 16:44:23 2024 : Debug: enable = no
Thu Feb 15 16:44:23 2024 : Debug: lifetime = 24
Thu Feb 15 16:44:23 2024 : Debug: max_entries = 255
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: verify {
Thu Feb 15 16:44:23 2024 : Debug: skip_if_ocsp_ok = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: ocsp {
Thu Feb 15 16:44:23 2024 : Debug: enable = no
Thu Feb 15 16:44:23 2024 : Debug: override_cert_url = yes
Thu Feb 15 16:44:23 2024 : Debug: url = "http://127.0.0.1/ocsp/"
Thu Feb 15 16:44:23 2024 : Debug: use_nonce = yes
Thu Feb 15 16:44:23 2024 : Debug: timeout = 0
Thu Feb 15 16:44:23 2024 : Debug: softfail = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Linked to sub-module rlm_eap_ttls
Thu Feb 15 16:44:23 2024 : Debug: ttls {
Thu Feb 15 16:44:23 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:44:23 2024 : Debug: default_eap_type = "md5"
Thu Feb 15 16:44:23 2024 : Debug: copy_request_to_tunnel = no
Thu Feb 15 16:44:23 2024 : Debug: use_tunneled_reply = no
Thu Feb 15 16:44:23 2024 : Debug: virtual_server = "inner-tunnel"
Thu Feb 15 16:44:23 2024 : Debug: include_length = yes
Thu Feb 15 16:44:23 2024 : Debug: require_client_cert = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: tls: Using cached TLS configuration from previous invocation
Thu Feb 15 16:44:23 2024 : Debug: # Linked to sub-module rlm_eap_peap
Thu Feb 15 16:44:23 2024 : Debug: peap {
Thu Feb 15 16:44:23 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:44:23 2024 : Debug: default_eap_type = "mschapv2"
Thu Feb 15 16:44:23 2024 : Debug: copy_request_to_tunnel = no
Thu Feb 15 16:44:23 2024 : Debug: use_tunneled_reply = no
Thu Feb 15 16:44:23 2024 : Debug: proxy_tunneled_request_as_eap = yes
Thu Feb 15 16:44:23 2024 : Debug: virtual_server = "inner-tunnel"
Thu Feb 15 16:44:23 2024 : Debug: soh = no
Thu Feb 15 16:44:23 2024 : Debug: require_client_cert = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: tls: Using cached TLS configuration from previous invocation
Thu Feb 15 16:44:23 2024 : Debug: # Linked to sub-module rlm_eap_mschapv2
Thu Feb 15 16:44:23 2024 : Debug: mschapv2 {
Thu Feb 15 16:44:23 2024 : Debug: with_ntdomain_hack = no
Thu Feb 15 16:44:23 2024 : Debug: send_error = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "pap" from file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "expiration" from file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "logintime" from file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "preprocess" from file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:44:23 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/preprocess/huntgroups
Thu Feb 15 16:44:23 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/preprocess/hints
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "linelog" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "log_accounting" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "python3" from file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:44:23 2024 : Info: Python version: 3.10.12 (main, Nov 20 2023, 15:14:05) [GCC 11.4.0]
Thu Feb 15 16:44:23 2024 : Debug: # Instantiating module "mschap" from file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:44:23 2024 : Debug: rlm_mschap (mschap): using internal authentication
Thu Feb 15 16:44:23 2024 : Debug: } # modules
Thu Feb 15 16:44:23 2024 : Debug: radiusd: #### Loading Virtual Servers ####
Thu Feb 15 16:44:23 2024 : Debug: server { # from file /usr/local/etc/raddb/radiusd.conf
Thu Feb 15 16:44:23 2024 : Debug: } # server
Thu Feb 15 16:44:23 2024 : Debug: server default { # from file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:44:23 2024 : Debug: # Loading authenticate {...}
Thu Feb 15 16:44:23 2024 : Debug: Compiling Auth-Type eap for attr Auth-Type
Thu Feb 15 16:44:23 2024 : Debug: # Loading authorize {...}
Thu Feb 15 16:44:23 2024 : Debug: eap
Thu Feb 15 16:44:23 2024 : Debug: auth_log
Thu Feb 15 16:44:23 2024 : Debug: Compiling Autz-Type New-TLS-Connection for attr Autz-Type
Thu Feb 15 16:44:23 2024 : Debug: # Loading preacct {...}
Thu Feb 15 16:44:23 2024 : Debug: preprocess
Thu Feb 15 16:44:23 2024 : Debug: policy acct_unique {
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &Tmp-String-9 := "ai:"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: if ("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/ && "%{string:&Class}" =~ /^ai:([0-9a-f]{32})/) {
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &Acct-Unique-Session-Id := "%{md5:%{1},%{Acct-Session-ID}}"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: else {
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &Acct-Unique-Session-Id := "%{md5:%{User-Name},%{Acct-Session-ID},%{%{NAS-IPv6-Address}:-%{NAS-IP-Address}},%{NAS-Identifier},%{NAS-Port-ID},%{NAS-Port}}"
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &Tmp-String-9 !* ANY
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: # Loading accounting {...}
Thu Feb 15 16:44:23 2024 : Debug: detail
Thu Feb 15 16:44:23 2024 : Debug: unix
Thu Feb 15 16:44:23 2024 : Debug: exec
Thu Feb 15 16:44:23 2024 : Debug: # Loading post-proxy {...}
Thu Feb 15 16:44:23 2024 : Debug: eap
Thu Feb 15 16:44:23 2024 : Debug: # Loading post-auth {...}
Thu Feb 15 16:44:23 2024 : Debug: if (&EAP-Type == TLS) {
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &TLS-OCSP-Cert-Valid := &session-state:TLS-OCSP-Cert-Valid
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: python3
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &reply:[*] += &session-state:[*]
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: auth_log
Thu Feb 15 16:44:23 2024 : Debug: exec
Thu Feb 15 16:44:23 2024 : Debug: policy remove_reply_message_if_eap {
Thu Feb 15 16:44:23 2024 : Debug: if (&reply:EAP-Message && &reply:Reply-Message) {
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &reply:Reply-Message !* ANY
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: else {
Thu Feb 15 16:44:23 2024 : Debug: noop
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Compiling Post-Auth-Type REJECT for attr Post-Auth-Type
Thu Feb 15 16:44:23 2024 : Debug: Compiling Post-Auth-Type Challenge for attr Post-Auth-Type
Thu Feb 15 16:44:23 2024 : Debug: } # server default
Thu Feb 15 16:44:23 2024 : Debug: server inner-tunnel { # from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
Thu Feb 15 16:44:23 2024 : Debug: # Loading authenticate {...}
Thu Feb 15 16:44:23 2024 : Debug: Compiling Auth-Type MS-CHAP for attr Auth-Type
Thu Feb 15 16:44:23 2024 : Debug: Compiling Auth-Type eap for attr Auth-Type
Thu Feb 15 16:44:23 2024 : Debug: # Loading authorize {...}
Thu Feb 15 16:44:23 2024 : Debug: python3
Thu Feb 15 16:44:23 2024 : Debug: expiration
Thu Feb 15 16:44:23 2024 : Debug: logintime
Thu Feb 15 16:44:23 2024 : Debug: # Loading post-proxy {...}
Thu Feb 15 16:44:23 2024 : Debug: eap
Thu Feb 15 16:44:23 2024 : Debug: # Loading post-auth {...}
Thu Feb 15 16:44:23 2024 : Debug: python3
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/sites-enabled/inner-tunnel[46]: Please change attribute reference to '&User-Name := ...'
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &outer.request:User-Name := &User-Name
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Warning: /usr/local/etc/raddb/sites-enabled/inner-tunnel[49]: Please change attribute reference to '&User-Name := ...'
Thu Feb 15 16:44:23 2024 : Debug: update {
Thu Feb 15 16:44:23 2024 : Debug: &outer.reply:User-Name := &User-Name
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Compiling Post-Auth-Type REJECT for attr Post-Auth-Type
Thu Feb 15 16:44:23 2024 : Debug: } # server inner-tunnel
Thu Feb 15 16:44:23 2024 : Debug: thread pool {
Thu Feb 15 16:44:23 2024 : Debug: start_servers = 5
Thu Feb 15 16:44:23 2024 : Debug: max_servers = 32
Thu Feb 15 16:44:23 2024 : Debug: min_spare_servers = 3
Thu Feb 15 16:44:23 2024 : Debug: max_spare_servers = 10
Thu Feb 15 16:44:23 2024 : Debug: max_requests_per_server = 0
Thu Feb 15 16:44:23 2024 : Debug: cleanup_delay = 5
Thu Feb 15 16:44:23 2024 : Debug: max_queue_size = 65536
Thu Feb 15 16:44:23 2024 : Debug: auto_limit_acct = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Thread spawned new child 1. Total threads in pool: 1
Thu Feb 15 16:44:23 2024 : Debug: Thread 1 waiting to be assigned a request
Thu Feb 15 16:44:23 2024 : Debug: Thread spawned new child 2. Total threads in pool: 2
Thu Feb 15 16:44:23 2024 : Debug: Thread spawned new child 3. Total threads in pool: 3
Thu Feb 15 16:44:23 2024 : Debug: Thread 2 waiting to be assigned a request
Thu Feb 15 16:44:23 2024 : Debug: Thread spawned new child 4. Total threads in pool: 4
Thu Feb 15 16:44:23 2024 : Debug: Thread 3 waiting to be assigned a request
Thu Feb 15 16:44:23 2024 : Debug: Thread 4 waiting to be assigned a request
Thu Feb 15 16:44:23 2024 : Debug: Thread spawned new child 5. Total threads in pool: 5
Thu Feb 15 16:44:23 2024 : Debug: Thread pool initialized
Thu Feb 15 16:44:23 2024 : Debug: Thread 5 waiting to be assigned a request
Thu Feb 15 16:44:23 2024 : Debug: radiusd: #### Opening IP addresses and Ports ####
Thu Feb 15 16:44:23 2024 : Debug: listen {
Thu Feb 15 16:44:23 2024 : Debug: type = "auth+acct"
Thu Feb 15 16:44:23 2024 : Debug: virtual_server = "default"
Thu Feb 15 16:44:23 2024 : Debug: ipaddr = *
Thu Feb 15 16:44:23 2024 : Debug: port = 2083
Thu Feb 15 16:44:23 2024 : Debug: proto = "tcp"
Thu Feb 15 16:44:23 2024 : Debug: tls {
Thu Feb 15 16:44:23 2024 : Debug: verify_depth = 0
Thu Feb 15 16:44:23 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:44:23 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:44:23 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:44:23 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:44:23 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:44:23 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:44:23 2024 : Debug: fragment_size = 8192
Thu Feb 15 16:44:23 2024 : Debug: include_length = yes
Thu Feb 15 16:44:23 2024 : Debug: auto_chain = yes
Thu Feb 15 16:44:23 2024 : Debug: check_crl = no
Thu Feb 15 16:44:23 2024 : Debug: check_all_crl = no
Thu Feb 15 16:44:23 2024 : Debug: ca_path_reload_interval = 3600
Thu Feb 15 16:44:23 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:44:23 2024 : Debug: cipher_server_preference = no
Thu Feb 15 16:44:23 2024 : Debug: require_client_cert = yes
Thu Feb 15 16:44:23 2024 : Debug: reject_unknown_intermediate_ca = no
Thu Feb 15 16:44:23 2024 : Debug: ecdh_curve = "prime256v1"
Thu Feb 15 16:44:23 2024 : Debug: tls_max_version = "1.2"
Thu Feb 15 16:44:23 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:44:23 2024 : Debug: cache {
Thu Feb 15 16:44:23 2024 : Debug: enable = no
Thu Feb 15 16:44:23 2024 : Debug: lifetime = 24
Thu Feb 15 16:44:23 2024 : Debug: max_entries = 255
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: verify {
Thu Feb 15 16:44:23 2024 : Debug: skip_if_ocsp_ok = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: ocsp {
Thu Feb 15 16:44:23 2024 : Debug: enable = no
Thu Feb 15 16:44:23 2024 : Debug: override_cert_url = no
Thu Feb 15 16:44:23 2024 : Debug: use_nonce = yes
Thu Feb 15 16:44:23 2024 : Debug: timeout = 0
Thu Feb 15 16:44:23 2024 : Debug: softfail = no
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: check_client_connections = yes
Thu Feb 15 16:44:23 2024 : Debug: limit {
Thu Feb 15 16:44:23 2024 : Debug: max_connections = 16
Thu Feb 15 16:44:23 2024 : Debug: lifetime = 0
Thu Feb 15 16:44:23 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: clients = "radsec"
Thu Feb 15 16:44:23 2024 : Debug: client 127.0.0.1 {
Thu Feb 15 16:44:23 2024 : Debug: ipaddr = *
Thu Feb 15 16:44:23 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:44:23 2024 : Debug: secret = "radsec"
Thu Feb 15 16:44:23 2024 : Debug: proto = "tls"
Thu Feb 15 16:44:23 2024 : Debug: limit {
Thu Feb 15 16:44:23 2024 : Debug: max_connections = 16
Thu Feb 15 16:44:23 2024 : Debug: lifetime = 0
Thu Feb 15 16:44:23 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Adding client 0.0.0.0/0 (0.0.0.0) to prefix tree 0
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: listen {
Thu Feb 15 16:44:23 2024 : Debug: type = "auth"
Thu Feb 15 16:44:23 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:44:23 2024 : Debug: port = 18120
Thu Feb 15 16:44:23 2024 : Debug: }
Thu Feb 15 16:44:23 2024 : Debug: Listening on auth+acct proto tcp address * port 2083 (TLS) bound to server default
Thu Feb 15 16:44:23 2024 : Debug: Listening on auth address 127.0.0.1 port 18120 bound to server inner-tunnel
Thu Feb 15 16:44:23 2024 : Debug: Opened new proxy socket 'proxy address * port 57111'
Thu Feb 15 16:44:23 2024 : Debug: Listening on proxy address * port 57111
Thu Feb 15 16:44:23 2024 : Info: Ready to process requests
Thu Feb 15 16:45:01 2024 : Debug: ... new connection request on TCP socket
Thu Feb 15 16:45:01 2024 : Debug: Listening on auth+acct from client (192.168.215.1, 62862) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:45:01 2024 : Debug: Waking up in 0.3 seconds.
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS -Initiating new session
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Setting verify mode to require certificate from client
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 188
00: 16 03 01 00 b7 01 00 00 b3 03 03 e5 13 fd 27 a7
10: c4 64 b8 cb 7f 9a df 61 4e 06 2a 55 80 a4 45 87
20: bd 55 87 00 2e 12 43 a9 9e a9 79 00 00 38 c0 2c
30: c0 30 00 9f cc a9 cc a8 cc aa c0 2b c0 2f 00 9e
40: c0 24 c0 28 00 6b c0 23 c0 27 00 67 c0 0a c0 14
50: 00 39 c0 09 c0 13 00 33 00 9d 00 9c 00 3d 00 3c
60: 00 35 00 2f 00 ff 01 00 00 52 00 0b 00 04 03 00
70: 01 02 00 0a 00 0c 00 0a 00 1d 00 17 00 1e 00 19
80: 00 18 00 23 00 00 00 16 00 00 00 17 00 00 00 0d
90: 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08 09
a0: 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01
b0: 03 03 03 01 03 02 04 02 05 02 06 02
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - before SSL initialization (0)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:45:01 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [0] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [1] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [2] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [5] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [8] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES256-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES128-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES256-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES128-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [21] AES256-GCM-SHA384
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [22] AES128-GCM-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [23] AES256-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [24] AES128-SHA256
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [25] AES256-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) [26] AES128-SHA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHello
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Certificate
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSC] - Server SSLv3/TLS write certificate (23)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerKeyExchange
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSKE] - Server SSLv3/TLS write key exchange (24)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, CertificateRequest
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCR] - Server SSLv3/TLS write certificate request (25)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHelloDone
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: SSLv3/TLS write server done
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS- got 3034 bytes of data
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:45:01 2024 : Debug: Waking up in 0.3 seconds.
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 7
00: 15 03 03 00 02 02 30
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Alert, fatal unknown_ca
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - The client is informing us that it does not recognize the CA used to issue the server certificate. Please update the client so that it knows about the CA.
Thu Feb 15 16:45:01 2024 : ERROR: (0) (TLS) RADIUS/TLS - Alert read:fatal:unknown CA
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: error
Thu Feb 15 16:45:01 2024 : ERROR: (0) (TLS) Failed reading from OpenSSL: ../ssl/record/rec_layer_s3.c[1584]:error:0A000418:SSL routines::tlsv1 alert unknown ca
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) RADIUS/TLS - Application data.
Thu Feb 15 16:45:01 2024 : Debug: Waking up in 0.3 seconds.
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) Reading from socket 11
Thu Feb 15 16:45:01 2024 : Debug: (0) (TLS) Client has closed the TCP connection
Thu Feb 15 16:45:01 2024 : Debug: (TLS) Closing socket from client port 62862
Thu Feb 15 16:45:01 2024 : Debug: (TLS) Closing connection
Thu Feb 15 16:45:01 2024 : Info: ... shutting down socket auth+acct from client (192.168.215.1, 62862) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:45:01 2024 : Debug: ... cleaning up socket auth+acct from client (192.168.215.1, 62862) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:45:01 2024 : Info: Ready to process requests
Thu Feb 15 16:45:03 2024 : Debug: ... new connection request on TCP socket
Thu Feb 15 16:45:03 2024 : Debug: Listening on auth+acct from client (192.168.215.1, 62863) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:45:03 2024 : Debug: Waking up in 0.3 seconds.
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS -Initiating new session
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Setting verify mode to require certificate from client
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 188
00: 16 03 01 00 b7 01 00 00 b3 03 03 b0 e3 29 56 6a
10: a5 5e 15 69 82 f4 b5 e2 57 9e 24 ee 6e ee 0d 65
20: 78 78 e9 9a a1 89 5a 98 f2 55 6b 00 00 38 c0 2c
30: c0 30 00 9f cc a9 cc a8 cc aa c0 2b c0 2f 00 9e
40: c0 24 c0 28 00 6b c0 23 c0 27 00 67 c0 0a c0 14
50: 00 39 c0 09 c0 13 00 33 00 9d 00 9c 00 3d 00 3c
60: 00 35 00 2f 00 ff 01 00 00 52 00 0b 00 04 03 00
70: 01 02 00 0a 00 0c 00 0a 00 1d 00 17 00 1e 00 19
80: 00 18 00 23 00 00 00 16 00 00 00 17 00 00 00 0d
90: 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08 09
a0: 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01
b0: 03 03 03 01 03 02 04 02 05 02 06 02
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - before SSL initialization (0)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:45:03 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [0] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [1] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [2] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [5] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [8] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES256-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES128-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES256-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES128-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [21] AES256-GCM-SHA384
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [22] AES128-GCM-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [23] AES256-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [24] AES128-SHA256
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [25] AES256-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) [26] AES128-SHA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHello
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Certificate
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSC] - Server SSLv3/TLS write certificate (23)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerKeyExchange
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSKE] - Server SSLv3/TLS write key exchange (24)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, CertificateRequest
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCR] - Server SSLv3/TLS write certificate request (25)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHelloDone
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: SSLv3/TLS write server done
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS- got 3034 bytes of data
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:45:03 2024 : Debug: Waking up in 0.3 seconds.
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 7
00: 15 03 03 00 02 02 30
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Alert, fatal unknown_ca
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - The client is informing us that it does not recognize the CA used to issue the server certificate. Please update the client so that it knows about the CA.
Thu Feb 15 16:45:03 2024 : ERROR: (0) (TLS) RADIUS/TLS - Alert read:fatal:unknown CA
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: error
Thu Feb 15 16:45:03 2024 : ERROR: (0) (TLS) Failed reading from OpenSSL: ../ssl/record/rec_layer_s3.c[1584]:error:0A000418:SSL routines::tlsv1 alert unknown ca
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) RADIUS/TLS - Application data.
Thu Feb 15 16:45:03 2024 : Debug: Waking up in 0.2 seconds.
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) Reading from socket 11
Thu Feb 15 16:45:03 2024 : Debug: (0) (TLS) Client has closed the TCP connection
Thu Feb 15 16:45:03 2024 : Debug: (TLS) Closing socket from client port 62863
Thu Feb 15 16:45:03 2024 : Debug: (TLS) Closing connection
Thu Feb 15 16:45:03 2024 : Info: ... shutting down socket auth+acct from client (192.168.215.1, 62863) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:45:03 2024 : Debug: ... cleaning up socket auth+acct from client (192.168.215.1, 62863) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:45:03 2024 : Info: Ready to process requests
Thu Feb 15 16:46:18 2024 : Debug: ... new connection request on TCP socket
Thu Feb 15 16:46:18 2024 : Debug: Listening on auth+acct from client (192.168.215.1, 62866) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:46:18 2024 : Debug: Waking up in 0.8 seconds.
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS -Initiating new session
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Setting verify mode to require certificate from client
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 188
00: 16 03 01 00 b7 01 00 00 b3 03 03 af 45 17 23 c8
10: 69 fa 47 dd 77 fc 78 d0 7b 44 74 ea 0b 79 7a 2b
20: f3 23 c7 5c 2a ff 63 42 2d ac 4b 00 00 38 c0 2c
30: c0 30 00 9f cc a9 cc a8 cc aa c0 2b c0 2f 00 9e
40: c0 24 c0 28 00 6b c0 23 c0 27 00 67 c0 0a c0 14
50: 00 39 c0 09 c0 13 00 33 00 9d 00 9c 00 3d 00 3c
60: 00 35 00 2f 00 ff 01 00 00 52 00 0b 00 04 03 00
70: 01 02 00 0a 00 0c 00 0a 00 1d 00 17 00 1e 00 19
80: 00 18 00 23 00 00 00 16 00 00 00 17 00 00 00 0d
90: 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08 09
a0: 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01
b0: 03 03 03 01 03 02 04 02 05 02 06 02
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - before SSL initialization (0)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:46:18 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [0] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [1] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [2] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [5] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [8] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES256-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES128-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES256-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES128-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [21] AES256-GCM-SHA384
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [22] AES128-GCM-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [23] AES256-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [24] AES128-SHA256
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [25] AES256-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) [26] AES128-SHA
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHello
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Certificate
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSC] - Server SSLv3/TLS write certificate (23)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerKeyExchange
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSKE] - Server SSLv3/TLS write key exchange (24)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, CertificateRequest
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCR] - Server SSLv3/TLS write certificate request (25)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHelloDone
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: SSLv3/TLS write server done
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS- got 3034 bytes of data
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:46:18 2024 : Debug: Waking up in 0.8 seconds.
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 2030
00: 16 03 03 05 5e 0b 00 05 5a 00 05 57 00 05 54 30
10: 82 05 50 30 82 03 38 a0 03 02 01 02 02 10 2a ef
20: 75 f0 ea 7f 49 c6 8b 28 78 1d 7a 6a 2f f9 30 0d
30: 06 09 2a 86 48 86 f7 0d 01 01 0b 05 00 30 1e 31
40: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
50: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 1e 17
60: 0d 32 34 30 32 30 38 31 30 34 35 35 39 5a 17 0d
70: 33 34 30 32 30 38 31 30 35 35 35 39 5a 30 1e 31
80: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
90: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 82 02
a0: 22 30 0d 06 09 2a 86 48 86 f7 0d 01 01 01 05 00
b0: 03 82 02 0f 00 30 82 02 0a 02 82 02 01 00 c9 92
c0: 48 b1 3d 5d 30 70 c9 15 61 5c 81 28 94 1d 24 5d
d0: ea 39 e5 ed 7b 5f 74 78 67 8d 10 8c 33 71 e5 e1
e0: 09 40 6b 01 fa a3 3b 42 9d 3c 6e 17 07 c7 63 52
f0: 4c 03 b4 24 8f 56 3e be 91 4f 11 0f 59 39 ff 33
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Certificate
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Creating attributes from client certificate
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-Serial := "2aef75f0ea7f49c68b28781d7a6a2ff9"
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-Expiration := "340208105559Z"
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-Valid-Since := "240208104559Z"
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-Subject := "/CN=BoilerPlate"
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-Issuer := "/CN=BoilerPlate"
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-Common-Name := "BoilerPlate"
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-Subject-Alt-Name-Dns := "radius.BoilerPlate.net"
Thu Feb 15 16:46:18 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Key-Usage += 'Digital Signature, Key Encipherment, Certificate Sign'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-X509v3-Basic-Constraints += "CA:FALSE"
Thu Feb 15 16:46:18 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Subject-Alternative-Name += 'DNS:radius.BoilerPlate.net'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-X509v3-Authority-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Client-Cert-X509v3-Subject-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:46:18 2024 : Warning: Certificate chain - 0 intermediate CA cert(s) untrusted
Thu Feb 15 16:46:18 2024 : Warning: To forbid these certificates see 'reject_unknown_intermediate_ca'
Thu Feb 15 16:46:18 2024 : Warning: (TLS) untrusted certificate with depth [0] subject name /CN=BoilerPlate
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) chain-depth : 0
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) error : 0
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) common name : BoilerPlate
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) subject : /CN=BoilerPlate
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) issuer : /CN=BoilerPlate
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) verify return : 1
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCC] - Server SSLv3/TLS read client certificate (27)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, ClientKeyExchange
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCKE] - Server SSLv3/TLS read client key exchange (28)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, CertificateVerify
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCV] - Server SSLv3/TLS read certificate verify (29)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCCS] - Server SSLv3/TLS read change cipher spec (31)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Finished
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRFIN] - Server SSLv3/TLS read finished (32)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 ChangeCipherSpec
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCCS] - Server SSLv3/TLS write change cipher spec (35)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Finished
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWFIN] - Server SSLv3/TLS write finished (36)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [SSLOK] - SSL negotiation finished successfully (1)
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS - Connection Established
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Session-Cipher-Suite = "ECDHE-RSA-AES256-GCM-SHA384"
Thu Feb 15 16:46:18 2024 : Debug: (0) TLS-Session-Version = "TLS 1.2"
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) RADIUS/TLS- got 51 bytes of data
Thu Feb 15 16:46:18 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:46:18 2024 : Debug: Waking up in 0.8 seconds.
Thu Feb 15 16:46:19 2024 : Debug: Waking up in 29.4 seconds.
Thu Feb 15 16:46:48 2024 : Debug: Reached idle timeout on socket auth+acct from client (192.168.215.1, 62866) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:46:48 2024 : Info: ... shutting down socket auth+acct from client (192.168.215.1, 62866) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:46:48 2024 : Debug: ... cleaning up socket auth+acct from client (192.168.215.1, 62866) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:46:48 2024 : Info: Ready to process requests
Thu Feb 15 16:46:48 2024 : Debug: ... new connection request on TCP socket
Thu Feb 15 16:46:48 2024 : Debug: Listening on auth+acct from client (192.168.215.1, 62868) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:46:48 2024 : Debug: Waking up in 0.4 seconds.
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS -Initiating new session
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Setting verify mode to require certificate from client
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 188
00: 16 03 01 00 b7 01 00 00 b3 03 03 51 b5 e4 9e 04
10: 6e 65 8d da 71 a0 3a c2 42 17 f1 cc c9 4a 08 92
20: ce 3c 46 31 5e 8f 93 41 94 e7 44 00 00 38 c0 2c
30: c0 30 00 9f cc a9 cc a8 cc aa c0 2b c0 2f 00 9e
40: c0 24 c0 28 00 6b c0 23 c0 27 00 67 c0 0a c0 14
50: 00 39 c0 09 c0 13 00 33 00 9d 00 9c 00 3d 00 3c
60: 00 35 00 2f 00 ff 01 00 00 52 00 0b 00 04 03 00
70: 01 02 00 0a 00 0c 00 0a 00 1d 00 17 00 1e 00 19
80: 00 18 00 23 00 00 00 16 00 00 00 17 00 00 00 0d
90: 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08 09
a0: 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01
b0: 03 03 03 01 03 02 04 02 05 02 06 02
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - before SSL initialization (0)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:46:48 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [0] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [1] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [2] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [5] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [8] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES256-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES128-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES256-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES128-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [21] AES256-GCM-SHA384
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [22] AES128-GCM-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [23] AES256-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [24] AES128-SHA256
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [25] AES256-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) [26] AES128-SHA
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHello
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Certificate
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSC] - Server SSLv3/TLS write certificate (23)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerKeyExchange
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSKE] - Server SSLv3/TLS write key exchange (24)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, CertificateRequest
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCR] - Server SSLv3/TLS write certificate request (25)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHelloDone
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: SSLv3/TLS write server done
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS- got 3034 bytes of data
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:46:48 2024 : Debug: Waking up in 0.4 seconds.
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 2030
00: 16 03 03 05 5e 0b 00 05 5a 00 05 57 00 05 54 30
10: 82 05 50 30 82 03 38 a0 03 02 01 02 02 10 2a ef
20: 75 f0 ea 7f 49 c6 8b 28 78 1d 7a 6a 2f f9 30 0d
30: 06 09 2a 86 48 86 f7 0d 01 01 0b 05 00 30 1e 31
40: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
50: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 1e 17
60: 0d 32 34 30 32 30 38 31 30 34 35 35 39 5a 17 0d
70: 33 34 30 32 30 38 31 30 35 35 35 39 5a 30 1e 31
80: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
90: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 82 02
a0: 22 30 0d 06 09 2a 86 48 86 f7 0d 01 01 01 05 00
b0: 03 82 02 0f 00 30 82 02 0a 02 82 02 01 00 c9 92
c0: 48 b1 3d 5d 30 70 c9 15 61 5c 81 28 94 1d 24 5d
d0: ea 39 e5 ed 7b 5f 74 78 67 8d 10 8c 33 71 e5 e1
e0: 09 40 6b 01 fa a3 3b 42 9d 3c 6e 17 07 c7 63 52
f0: 4c 03 b4 24 8f 56 3e be 91 4f 11 0f 59 39 ff 33
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Certificate
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Creating attributes from client certificate
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-Serial := "2aef75f0ea7f49c68b28781d7a6a2ff9"
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-Expiration := "340208105559Z"
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-Valid-Since := "240208104559Z"
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-Subject := "/CN=BoilerPlate"
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-Issuer := "/CN=BoilerPlate"
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-Common-Name := "BoilerPlate"
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-Subject-Alt-Name-Dns := "radius.BoilerPlate.net"
Thu Feb 15 16:46:48 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Key-Usage += 'Digital Signature, Key Encipherment, Certificate Sign'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-X509v3-Basic-Constraints += "CA:FALSE"
Thu Feb 15 16:46:48 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Subject-Alternative-Name += 'DNS:radius.BoilerPlate.net'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-X509v3-Authority-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Client-Cert-X509v3-Subject-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:46:48 2024 : Warning: Certificate chain - 0 intermediate CA cert(s) untrusted
Thu Feb 15 16:46:48 2024 : Warning: To forbid these certificates see 'reject_unknown_intermediate_ca'
Thu Feb 15 16:46:48 2024 : Warning: (TLS) untrusted certificate with depth [0] subject name /CN=BoilerPlate
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) chain-depth : 0
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) error : 0
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) common name : BoilerPlate
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) subject : /CN=BoilerPlate
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) issuer : /CN=BoilerPlate
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) verify return : 1
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCC] - Server SSLv3/TLS read client certificate (27)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, ClientKeyExchange
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCKE] - Server SSLv3/TLS read client key exchange (28)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, CertificateVerify
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCV] - Server SSLv3/TLS read certificate verify (29)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCCS] - Server SSLv3/TLS read change cipher spec (31)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Finished
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRFIN] - Server SSLv3/TLS read finished (32)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 ChangeCipherSpec
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCCS] - Server SSLv3/TLS write change cipher spec (35)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Finished
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWFIN] - Server SSLv3/TLS write finished (36)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [SSLOK] - SSL negotiation finished successfully (1)
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS - Connection Established
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Session-Cipher-Suite = "ECDHE-RSA-AES256-GCM-SHA384"
Thu Feb 15 16:46:48 2024 : Debug: (0) TLS-Session-Version = "TLS 1.2"
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) RADIUS/TLS- got 51 bytes of data
Thu Feb 15 16:46:48 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:46:48 2024 : Debug: Waking up in 0.4 seconds.
Thu Feb 15 16:46:49 2024 : Debug: Waking up in 29.4 seconds.
Thu Feb 15 16:47:03 2024 : Debug: (0) (TLS) Reading from socket 11
Thu Feb 15 16:47:03 2024 : Debug: (0) (TLS) Client has closed the TCP connection
Thu Feb 15 16:47:03 2024 : Debug: (TLS) Closing socket from client port 62868
Thu Feb 15 16:47:03 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Alert, warning close_notify
Thu Feb 15 16:47:03 2024 : Debug: (TLS) Closing connection
Thu Feb 15 16:47:03 2024 : Info: ... shutting down socket auth+acct from client (192.168.215.1, 62868) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:47:03 2024 : Debug: ... cleaning up socket auth+acct from client (192.168.215.1, 62868) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:47:03 2024 : Info: Ready to process requests
Thu Feb 15 16:47:04 2024 : Debug: ... new connection request on TCP socket
Thu Feb 15 16:47:04 2024 : Debug: Listening on auth+acct from client (192.168.215.1, 62873) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:47:04 2024 : Debug: Waking up in 0.7 seconds.
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS -Initiating new session
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Setting verify mode to require certificate from client
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 188
00: 16 03 01 00 b7 01 00 00 b3 03 03 2a 2a 12 13 4c
10: dd df 82 d5 2f 06 3a b5 a3 32 4c 1d 66 db c9 af
20: a5 af 32 2e 7c d4 71 84 e0 6c 46 00 00 38 c0 2c
30: c0 30 00 9f cc a9 cc a8 cc aa c0 2b c0 2f 00 9e
40: c0 24 c0 28 00 6b c0 23 c0 27 00 67 c0 0a c0 14
50: 00 39 c0 09 c0 13 00 33 00 9d 00 9c 00 3d 00 3c
60: 00 35 00 2f 00 ff 01 00 00 52 00 0b 00 04 03 00
70: 01 02 00 0a 00 0c 00 0a 00 1d 00 17 00 1e 00 19
80: 00 18 00 23 00 00 00 16 00 00 00 17 00 00 00 0d
90: 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08 09
a0: 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01
b0: 03 03 03 01 03 02 04 02 05 02 06 02
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - before SSL initialization (0)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:47:04 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [0] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [1] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [2] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [5] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [8] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES256-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES128-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES256-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES128-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [21] AES256-GCM-SHA384
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [22] AES128-GCM-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [23] AES256-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [24] AES128-SHA256
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [25] AES256-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) [26] AES128-SHA
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHello
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Certificate
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSC] - Server SSLv3/TLS write certificate (23)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerKeyExchange
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSKE] - Server SSLv3/TLS write key exchange (24)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, CertificateRequest
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCR] - Server SSLv3/TLS write certificate request (25)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHelloDone
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: SSLv3/TLS write server done
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS- got 3034 bytes of data
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:47:04 2024 : Debug: Waking up in 0.7 seconds.
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 2030
00: 16 03 03 05 5e 0b 00 05 5a 00 05 57 00 05 54 30
10: 82 05 50 30 82 03 38 a0 03 02 01 02 02 10 2a ef
20: 75 f0 ea 7f 49 c6 8b 28 78 1d 7a 6a 2f f9 30 0d
30: 06 09 2a 86 48 86 f7 0d 01 01 0b 05 00 30 1e 31
40: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
50: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 1e 17
60: 0d 32 34 30 32 30 38 31 30 34 35 35 39 5a 17 0d
70: 33 34 30 32 30 38 31 30 35 35 35 39 5a 30 1e 31
80: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
90: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 82 02
a0: 22 30 0d 06 09 2a 86 48 86 f7 0d 01 01 01 05 00
b0: 03 82 02 0f 00 30 82 02 0a 02 82 02 01 00 c9 92
c0: 48 b1 3d 5d 30 70 c9 15 61 5c 81 28 94 1d 24 5d
d0: ea 39 e5 ed 7b 5f 74 78 67 8d 10 8c 33 71 e5 e1
e0: 09 40 6b 01 fa a3 3b 42 9d 3c 6e 17 07 c7 63 52
f0: 4c 03 b4 24 8f 56 3e be 91 4f 11 0f 59 39 ff 33
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Certificate
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Creating attributes from client certificate
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-Serial := "2aef75f0ea7f49c68b28781d7a6a2ff9"
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-Expiration := "340208105559Z"
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-Valid-Since := "240208104559Z"
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-Subject := "/CN=BoilerPlate"
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-Issuer := "/CN=BoilerPlate"
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-Common-Name := "BoilerPlate"
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-Subject-Alt-Name-Dns := "radius.BoilerPlate.net"
Thu Feb 15 16:47:04 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Key-Usage += 'Digital Signature, Key Encipherment, Certificate Sign'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-X509v3-Basic-Constraints += "CA:FALSE"
Thu Feb 15 16:47:04 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Subject-Alternative-Name += 'DNS:radius.BoilerPlate.net'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-X509v3-Authority-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Client-Cert-X509v3-Subject-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:47:04 2024 : Warning: Certificate chain - 0 intermediate CA cert(s) untrusted
Thu Feb 15 16:47:04 2024 : Warning: To forbid these certificates see 'reject_unknown_intermediate_ca'
Thu Feb 15 16:47:04 2024 : Warning: (TLS) untrusted certificate with depth [0] subject name /CN=BoilerPlate
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) chain-depth : 0
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) error : 0
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) common name : BoilerPlate
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) subject : /CN=BoilerPlate
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) issuer : /CN=BoilerPlate
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) verify return : 1
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCC] - Server SSLv3/TLS read client certificate (27)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, ClientKeyExchange
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCKE] - Server SSLv3/TLS read client key exchange (28)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, CertificateVerify
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCV] - Server SSLv3/TLS read certificate verify (29)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCCS] - Server SSLv3/TLS read change cipher spec (31)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Finished
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRFIN] - Server SSLv3/TLS read finished (32)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 ChangeCipherSpec
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCCS] - Server SSLv3/TLS write change cipher spec (35)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Finished
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWFIN] - Server SSLv3/TLS write finished (36)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [SSLOK] - SSL negotiation finished successfully (1)
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS - Connection Established
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Session-Cipher-Suite = "ECDHE-RSA-AES256-GCM-SHA384"
Thu Feb 15 16:47:04 2024 : Debug: (0) TLS-Session-Version = "TLS 1.2"
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) RADIUS/TLS- got 51 bytes of data
Thu Feb 15 16:47:04 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:47:04 2024 : Debug: Waking up in 0.7 seconds.
Thu Feb 15 16:47:05 2024 : Debug: Waking up in 29.4 seconds.
EXIT(2) CALLED src/main/radiusd.c[779]. Last error was: Unknown name "TLS-Client-Cert-X509v3-Subject-Alternative-Name"
Thu Feb 15 16:47:11 2024 : Debug: Server was built with:
Thu Feb 15 16:47:11 2024 : Debug: accounting : yes
Thu Feb 15 16:47:11 2024 : Debug: authentication : yes
Thu Feb 15 16:47:11 2024 : Debug: ascend-binary-attributes : yes
Thu Feb 15 16:47:11 2024 : Debug: coa : yes
Thu Feb 15 16:47:11 2024 : Debug: recv-coa-from-home-server : no
Thu Feb 15 16:47:11 2024 : Debug: control-socket : yes
Thu Feb 15 16:47:11 2024 : Debug: detail : yes
Thu Feb 15 16:47:11 2024 : Debug: dhcp : yes
Thu Feb 15 16:47:11 2024 : Debug: dynamic-clients : yes
Thu Feb 15 16:47:11 2024 : Debug: osfc2 : no
Thu Feb 15 16:47:11 2024 : Debug: proxy : yes
Thu Feb 15 16:47:11 2024 : Debug: regex-pcre : no
Thu Feb 15 16:47:11 2024 : Debug: regex-posix : yes
Thu Feb 15 16:47:11 2024 : Debug: regex-posix-extended : yes
Thu Feb 15 16:47:11 2024 : Debug: session-management : yes
Thu Feb 15 16:47:11 2024 : Debug: stats : yes
Thu Feb 15 16:47:11 2024 : Debug: systemd : no
Thu Feb 15 16:47:11 2024 : Debug: tcp : yes
Thu Feb 15 16:47:11 2024 : Debug: threads : yes
Thu Feb 15 16:47:11 2024 : Debug: tls : yes
Thu Feb 15 16:47:11 2024 : Debug: unlang : yes
Thu Feb 15 16:47:11 2024 : Debug: vmps : yes
Thu Feb 15 16:47:11 2024 : Debug: developer : yes
Thu Feb 15 16:47:11 2024 : Debug: Server core libs:
Thu Feb 15 16:47:11 2024 : Debug: freeradius-server : 3.2.4
Thu Feb 15 16:47:11 2024 : Debug: talloc : 2.3.*
Thu Feb 15 16:47:11 2024 : Debug: ssl : 3.0.0b dev
Thu Feb 15 16:47:11 2024 : Debug: Endianness:
Thu Feb 15 16:47:11 2024 : Debug: little
Thu Feb 15 16:47:11 2024 : Debug: Compilation flags:
Thu Feb 15 16:47:11 2024 : Debug: cppflags :
Thu Feb 15 16:47:11 2024 : Debug: cflags : -I. -Isrc -include src/freeradius-devel/autoconf.h -include src/freeradius-devel/build.h -include src/freeradius-devel/features.h -include src/freeradius-devel/radpaths.h -fno-strict-aliasing -Wno-date-time -g3 -Wall -std=c99 -D_GNU_SOURCE -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wshadow -Wpointer-arith -Wcast-qual -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -W -Wredundant-decls -Wundef -Wformat-y2k -Wno-format-extra-args -Wno-format-zero-length -Wno-cast-align -Wformat-nonliteral -Wformat-security -Wformat=2 -DWITH_VERIFY_PTR=1 -DIS_MODULE=1
Thu Feb 15 16:47:11 2024 : Debug: ldflags :
Thu Feb 15 16:47:11 2024 : Debug: libs : -lcrypto -lssl -ltalloc -latomic -lnsl -lresolv -ldl -lpthread
Thu Feb 15 16:47:11 2024 : Debug:
Thu Feb 15 16:47:11 2024 : Info: FreeRADIUS Version 3.2.4
Thu Feb 15 16:47:11 2024 : Info: Copyright (C) 1999-2023 The FreeRADIUS server project and contributors
Thu Feb 15 16:47:11 2024 : Info: There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
Thu Feb 15 16:47:11 2024 : Info: PARTICULAR PURPOSE
Thu Feb 15 16:47:11 2024 : Info: You may redistribute copies of FreeRADIUS under the terms of the
Thu Feb 15 16:47:11 2024 : Info: GNU General Public License
Thu Feb 15 16:47:11 2024 : Info: For more information about these matters, see the file named COPYRIGHT
Thu Feb 15 16:47:11 2024 : Info: Starting - reading configuration files ...
Thu Feb 15 16:47:11 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary
Thu Feb 15 16:47:11 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary.dhcp
Thu Feb 15 16:47:11 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary.vqp
Thu Feb 15 16:47:11 2024 : Debug: including dictionary file /usr/local/etc/raddb/dictionary
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/radiusd.conf
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/proxy.conf
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/clients.conf
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/echo
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/exec
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/expr
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/unix
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/utf8
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:47:11 2024 : Debug: including files in directory /usr/local/etc/raddb/policy.d/
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/abfab-tr
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/accounting
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/canonicalization
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/control
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/cui
Thu Feb 15 16:47:11 2024 : Debug: OPTIMIZING (${policy.cui_require_operator_name} == yes) --> FALSE
Thu Feb 15 16:47:11 2024 : Debug: OPTIMIZING (no == yes) --> FALSE
Thu Feb 15 16:47:11 2024 : Debug: OPTIMIZING (${policy.cui_require_operator_name} == yes) --> FALSE
Thu Feb 15 16:47:11 2024 : Debug: OPTIMIZING (no == yes) --> FALSE
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/debug
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/dhcp
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/eap
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/filter
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/moonshot-targeted-ids
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/operator-name
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/rfc7542
Thu Feb 15 16:47:11 2024 : Debug: including files in directory /usr/local/etc/raddb/sites-enabled/
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/tls
Thu Feb 15 16:47:11 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/inner-tunnel
Thu Feb 15 16:47:11 2024 : Debug: main {
Thu Feb 15 16:47:11 2024 : Debug: security {
Thu Feb 15 16:47:11 2024 : Debug: allow_core_dumps = no
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[567]: The item 'max_attributes' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[584]: The item 'reject_delay' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[604]: The item 'status_server' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[614]: The item 'allow_vulnerable_openssl' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: name = "radiusd"
Thu Feb 15 16:47:11 2024 : Debug: prefix = "/usr/local"
Thu Feb 15 16:47:11 2024 : Debug: localstatedir = "/usr/local/var"
Thu Feb 15 16:47:11 2024 : Debug: logdir = "/usr/local/var/log/radius"
Thu Feb 15 16:47:11 2024 : Debug: run_dir = "/usr/local/var/run/radiusd"
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[97]: The item 'confdir' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[104]: The item 'db_dir' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[138]: The item 'libdir' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[149]: The item 'pidfile' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[203]: The item 'max_request_time' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[222]: The item 'cleanup_delay' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[259]: The item 'hostname_lookups' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[413]: The item 'checkrad' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[633]: The item 'proxy_requests' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: main {
Thu Feb 15 16:47:11 2024 : Debug: name = "radiusd"
Thu Feb 15 16:47:11 2024 : Debug: prefix = "/usr/local"
Thu Feb 15 16:47:11 2024 : Debug: localstatedir = "/usr/local/var"
Thu Feb 15 16:47:11 2024 : Debug: sbindir = "/usr/local/sbin"
Thu Feb 15 16:47:11 2024 : Debug: logdir = "/usr/local/var/log/radius"
Thu Feb 15 16:47:11 2024 : Debug: run_dir = "/usr/local/var/run/radiusd"
Thu Feb 15 16:47:11 2024 : Debug: libdir = "/usr/local/lib"
Thu Feb 15 16:47:11 2024 : Debug: radacctdir = "/usr/local/var/log/radius/radacct"
Thu Feb 15 16:47:11 2024 : Debug: hostname_lookups = no
Thu Feb 15 16:47:11 2024 : Debug: max_request_time = 30
Thu Feb 15 16:47:11 2024 : Debug: proxy_dedup_window = 1
Thu Feb 15 16:47:11 2024 : Debug: cleanup_delay = 5
Thu Feb 15 16:47:11 2024 : Debug: max_requests = 16384
Thu Feb 15 16:47:11 2024 : Debug: postauth_client_lost = no
Thu Feb 15 16:47:11 2024 : Debug: pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
Thu Feb 15 16:47:11 2024 : Debug: checkrad = "/usr/local/sbin/checkrad"
Thu Feb 15 16:47:11 2024 : Debug: debug_level = 0
Thu Feb 15 16:47:11 2024 : Debug: proxy_requests = yes
Thu Feb 15 16:47:11 2024 : Debug: log {
Thu Feb 15 16:47:11 2024 : Debug: stripped_names = no
Thu Feb 15 16:47:11 2024 : Debug: auth = no
Thu Feb 15 16:47:11 2024 : Debug: auth_badpass = no
Thu Feb 15 16:47:11 2024 : Debug: auth_goodpass = no
Thu Feb 15 16:47:11 2024 : Debug: colourise = yes
Thu Feb 15 16:47:11 2024 : Debug: msg_denied = "You are already logged in - access denied"
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[309]: The item 'destination' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[326]: The item 'file' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[334]: The item 'syslog_facility' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: resources {
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: security {
Thu Feb 15 16:47:11 2024 : Debug: max_attributes = 200
Thu Feb 15 16:47:11 2024 : Debug: reject_delay = 1.000000
Thu Feb 15 16:47:11 2024 : Debug: status_server = yes
Thu Feb 15 16:47:11 2024 : Debug: allow_vulnerable_openssl = "no"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[97]: The item 'confdir' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[104]: The item 'db_dir' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: radiusd: #### Loading Realms and Home Servers ####
Thu Feb 15 16:47:11 2024 : Debug: proxy server {
Thu Feb 15 16:47:11 2024 : Debug: retry_delay = 5
Thu Feb 15 16:47:11 2024 : Debug: retry_count = 3
Thu Feb 15 16:47:11 2024 : Debug: default_fallback = no
Thu Feb 15 16:47:11 2024 : Debug: dead_time = 120
Thu Feb 15 16:47:11 2024 : Debug: wake_all_if_all_dead = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: home_server localhost {
Thu Feb 15 16:47:11 2024 : Debug: nonblock = no
Thu Feb 15 16:47:11 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:47:11 2024 : Debug: port = 1812
Thu Feb 15 16:47:11 2024 : Debug: type = "auth"
Thu Feb 15 16:47:11 2024 : Debug: secret = "testing123"
Thu Feb 15 16:47:11 2024 : Debug: response_window = 20.000000
Thu Feb 15 16:47:11 2024 : Debug: response_timeouts = 1
Thu Feb 15 16:47:11 2024 : Debug: max_outstanding = 65536
Thu Feb 15 16:47:11 2024 : Debug: zombie_period = 40
Thu Feb 15 16:47:11 2024 : Debug: status_check = "status-server"
Thu Feb 15 16:47:11 2024 : Debug: ping_interval = 30
Thu Feb 15 16:47:11 2024 : Debug: check_interval = 30
Thu Feb 15 16:47:11 2024 : Debug: check_timeout = 4
Thu Feb 15 16:47:11 2024 : Debug: num_answers_to_alive = 3
Thu Feb 15 16:47:11 2024 : Debug: revive_interval = 120
Thu Feb 15 16:47:11 2024 : Debug: limit {
Thu Feb 15 16:47:11 2024 : Debug: max_connections = 16
Thu Feb 15 16:47:11 2024 : Debug: max_requests = 0
Thu Feb 15 16:47:11 2024 : Debug: lifetime = 0
Thu Feb 15 16:47:11 2024 : Debug: idle_timeout = 0
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: coa {
Thu Feb 15 16:47:11 2024 : Debug: irt = 2
Thu Feb 15 16:47:11 2024 : Debug: mrt = 16
Thu Feb 15 16:47:11 2024 : Debug: mrc = 5
Thu Feb 15 16:47:11 2024 : Debug: mrd = 30
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: home_server tls {
Thu Feb 15 16:47:11 2024 : Debug: nonblock = no
Thu Feb 15 16:47:11 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:47:11 2024 : Debug: port = 2083
Thu Feb 15 16:47:11 2024 : Debug: type = "auth"
Thu Feb 15 16:47:11 2024 : Debug: proto = "tcp"
Thu Feb 15 16:47:11 2024 : Debug: secret = "radsec"
Thu Feb 15 16:47:11 2024 : Debug: response_window = 30.000000
Thu Feb 15 16:47:11 2024 : Debug: response_timeouts = 1
Thu Feb 15 16:47:11 2024 : Debug: max_outstanding = 65536
Thu Feb 15 16:47:11 2024 : Debug: zombie_period = 40
Thu Feb 15 16:47:11 2024 : Debug: status_check = "none"
Thu Feb 15 16:47:11 2024 : Debug: ping_interval = 30
Thu Feb 15 16:47:11 2024 : Debug: check_timeout = 4
Thu Feb 15 16:47:11 2024 : Debug: num_answers_to_alive = 3
Thu Feb 15 16:47:11 2024 : Debug: revive_interval = 300
Thu Feb 15 16:47:11 2024 : Debug: limit {
Thu Feb 15 16:47:11 2024 : Debug: max_connections = 16
Thu Feb 15 16:47:11 2024 : Debug: max_requests = 0
Thu Feb 15 16:47:11 2024 : Debug: lifetime = 0
Thu Feb 15 16:47:11 2024 : Debug: idle_timeout = 0
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: coa {
Thu Feb 15 16:47:11 2024 : Debug: irt = 2
Thu Feb 15 16:47:11 2024 : Debug: mrt = 16
Thu Feb 15 16:47:11 2024 : Debug: mrc = 5
Thu Feb 15 16:47:11 2024 : Debug: mrd = 30
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: tls {
Thu Feb 15 16:47:11 2024 : Debug: verify_depth = 0
Thu Feb 15 16:47:11 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:47:11 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:47:11 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/client.pem"
Thu Feb 15 16:47:11 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/client.pem"
Thu Feb 15 16:47:11 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:47:11 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:47:11 2024 : Debug: fragment_size = 8192
Thu Feb 15 16:47:11 2024 : Debug: include_length = yes
Thu Feb 15 16:47:11 2024 : Debug: check_crl = no
Thu Feb 15 16:47:11 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:47:11 2024 : Debug: ca_path_reload_interval = 0
Thu Feb 15 16:47:11 2024 : Debug: ecdh_curve = "prime256v1"
Thu Feb 15 16:47:11 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/sites-enabled/tls[720]: The item 'connect_timeout' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: connect_timeout = 30
Thu Feb 15 16:47:11 2024 : Debug: home_server_pool my_auth_failover {
Thu Feb 15 16:47:11 2024 : Debug: type = fail-over
Thu Feb 15 16:47:11 2024 : Debug: home_server = localhost
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: realm example.com {
Thu Feb 15 16:47:11 2024 : Debug: auth_pool = my_auth_failover
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: realm LOCAL {
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: home_server_pool tls {
Thu Feb 15 16:47:11 2024 : Debug: type = fail-over
Thu Feb 15 16:47:11 2024 : Debug: home_server = tls
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: realm tls {
Thu Feb 15 16:47:11 2024 : Debug: auth_pool = tls
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: radiusd: #### Loading Clients ####
Thu Feb 15 16:47:11 2024 : Debug: client localhost {
Thu Feb 15 16:47:11 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:47:11 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:47:11 2024 : Debug: secret = "testing123"
Thu Feb 15 16:47:11 2024 : Debug: nas_type = "other"
Thu Feb 15 16:47:11 2024 : Debug: proto = "*"
Thu Feb 15 16:47:11 2024 : Debug: limit {
Thu Feb 15 16:47:11 2024 : Debug: max_connections = 16
Thu Feb 15 16:47:11 2024 : Debug: lifetime = 0
Thu Feb 15 16:47:11 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Adding client 127.0.0.1/32 (127.0.0.1) to prefix tree 32
Thu Feb 15 16:47:11 2024 : Debug: client localhost_ipv6 {
Thu Feb 15 16:47:11 2024 : Debug: ipv6addr = ::1
Thu Feb 15 16:47:11 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:47:11 2024 : Debug: secret = "testing123"
Thu Feb 15 16:47:11 2024 : Debug: limit {
Thu Feb 15 16:47:11 2024 : Debug: max_connections = 16
Thu Feb 15 16:47:11 2024 : Debug: lifetime = 0
Thu Feb 15 16:47:11 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Adding client ::1/128 (::1) to prefix tree 128
Thu Feb 15 16:47:11 2024 : Info: Debugger not attached
Thu Feb 15 16:47:11 2024 : Debug: # Creating Auth-Type = eap
Thu Feb 15 16:47:11 2024 : Debug: # Creating Autz-Type = New-TLS-Connection
Thu Feb 15 16:47:11 2024 : Debug: # Creating Auth-Type = MS-CHAP
Thu Feb 15 16:47:11 2024 : Debug: radiusd: #### Instantiating modules ####
Thu Feb 15 16:47:11 2024 : Debug: modules {
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_always, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_always
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "reject" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always reject {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "reject"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "fail" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always fail {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "fail"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "ok" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always ok {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "ok"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "handled" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always handled {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "handled"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "invalid" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always invalid {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "invalid"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "userlock" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always userlock {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "userlock"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "notfound" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always notfound {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "notfound"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "noop" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always noop {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "noop"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "updated" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: always updated {
Thu Feb 15 16:47:11 2024 : Debug: rcode = "updated"
Thu Feb 15 16:47:11 2024 : Debug: simulcount = 0
Thu Feb 15 16:47:11 2024 : Debug: mpp = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_attr_filter, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_attr_filter
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "attr_filter.post-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: attr_filter attr_filter.post-proxy {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/post-proxy"
Thu Feb 15 16:47:11 2024 : Debug: key = "%{Realm}"
Thu Feb 15 16:47:11 2024 : Debug: relaxed = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "attr_filter.pre-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: attr_filter attr_filter.pre-proxy {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/pre-proxy"
Thu Feb 15 16:47:11 2024 : Debug: key = "%{Realm}"
Thu Feb 15 16:47:11 2024 : Debug: relaxed = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "attr_filter.access_reject" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: attr_filter attr_filter.access_reject {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/access_reject"
Thu Feb 15 16:47:11 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:47:11 2024 : Debug: relaxed = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "attr_filter.access_challenge" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: attr_filter attr_filter.access_challenge {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/access_challenge"
Thu Feb 15 16:47:11 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:47:11 2024 : Debug: relaxed = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "attr_filter.accounting_response" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: attr_filter attr_filter.accounting_response {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/accounting_response"
Thu Feb 15 16:47:11 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:47:11 2024 : Debug: relaxed = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "attr_filter.coa" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: attr_filter attr_filter.coa {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/coa"
Thu Feb 15 16:47:11 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:47:11 2024 : Debug: relaxed = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_date, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_date
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "date" from file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:47:11 2024 : Debug: date {
Thu Feb 15 16:47:11 2024 : Debug: format = "%b %e %Y %H:%M:%S %Z"
Thu Feb 15 16:47:11 2024 : Debug: utc = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "wispr2date" from file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:47:11 2024 : Debug: date wispr2date {
Thu Feb 15 16:47:11 2024 : Debug: format = "%Y-%m-%dT%H:%M:%S"
Thu Feb 15 16:47:11 2024 : Debug: utc = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_detail, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_detail
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "detail" from file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:47:11 2024 : Debug: detail {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"
Thu Feb 15 16:47:11 2024 : Debug: header = "%t"
Thu Feb 15 16:47:11 2024 : Debug: permissions = 384
Thu Feb 15 16:47:11 2024 : Debug: locking = no
Thu Feb 15 16:47:11 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:47:11 2024 : Debug: escape_filenames = no
Thu Feb 15 16:47:11 2024 : Debug: log_packet_header = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "auth_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: detail auth_log {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/auth-detail-%Y%m%d"
Thu Feb 15 16:47:11 2024 : Debug: header = "%t"
Thu Feb 15 16:47:11 2024 : Debug: permissions = 384
Thu Feb 15 16:47:11 2024 : Debug: locking = no
Thu Feb 15 16:47:11 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:47:11 2024 : Debug: escape_filenames = no
Thu Feb 15 16:47:11 2024 : Debug: log_packet_header = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "reply_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: detail reply_log {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/reply-detail-%Y%m%d"
Thu Feb 15 16:47:11 2024 : Debug: header = "%t"
Thu Feb 15 16:47:11 2024 : Debug: permissions = 384
Thu Feb 15 16:47:11 2024 : Debug: locking = no
Thu Feb 15 16:47:11 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:47:11 2024 : Debug: escape_filenames = no
Thu Feb 15 16:47:11 2024 : Debug: log_packet_header = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "pre_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: detail pre_proxy_log {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/pre-proxy-detail-%Y%m%d"
Thu Feb 15 16:47:11 2024 : Debug: header = "%t"
Thu Feb 15 16:47:11 2024 : Debug: permissions = 384
Thu Feb 15 16:47:11 2024 : Debug: locking = no
Thu Feb 15 16:47:11 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:47:11 2024 : Debug: escape_filenames = no
Thu Feb 15 16:47:11 2024 : Debug: log_packet_header = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "post_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: detail post_proxy_log {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/post-proxy-detail-%Y%m%d"
Thu Feb 15 16:47:11 2024 : Debug: header = "%t"
Thu Feb 15 16:47:11 2024 : Debug: permissions = 384
Thu Feb 15 16:47:11 2024 : Debug: locking = no
Thu Feb 15 16:47:11 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:47:11 2024 : Debug: escape_filenames = no
Thu Feb 15 16:47:11 2024 : Debug: log_packet_header = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_eap, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_eap
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "eap" from file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:47:11 2024 : Debug: eap {
Thu Feb 15 16:47:11 2024 : Debug: default_eap_type = "md5"
Thu Feb 15 16:47:11 2024 : Debug: timer_expire = 60
Thu Feb 15 16:47:11 2024 : Debug: max_eap_type = 52
Thu Feb 15 16:47:11 2024 : Debug: ignore_unknown_eap_types = no
Thu Feb 15 16:47:11 2024 : Debug: cisco_accounting_username_bug = no
Thu Feb 15 16:47:11 2024 : Debug: max_sessions = 16384
Thu Feb 15 16:47:11 2024 : Debug: dedup_key = ""
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_pap, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_pap
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "pap" from file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:47:11 2024 : Debug: pap {
Thu Feb 15 16:47:11 2024 : Debug: normalise = yes
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_exec, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_exec
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "echo" from file /usr/local/etc/raddb/mods-available/echo
Thu Feb 15 16:47:11 2024 : Debug: exec echo {
Thu Feb 15 16:47:11 2024 : Debug: wait = yes
Thu Feb 15 16:47:11 2024 : Debug: program = "/bin/echo %{User-Name}"
Thu Feb 15 16:47:11 2024 : Debug: input_pairs = "request"
Thu Feb 15 16:47:11 2024 : Debug: output_pairs = "reply"
Thu Feb 15 16:47:11 2024 : Debug: shell_escape = yes
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "exec" from file /usr/local/etc/raddb/mods-available/exec
Thu Feb 15 16:47:11 2024 : Debug: exec {
Thu Feb 15 16:47:11 2024 : Debug: wait = no
Thu Feb 15 16:47:11 2024 : Debug: input_pairs = "request"
Thu Feb 15 16:47:11 2024 : Debug: shell_escape = yes
Thu Feb 15 16:47:11 2024 : Debug: timeout = 10
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_expiration, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_expiration
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "expiration" from file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_expr, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_expr
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "expr" from file /usr/local/etc/raddb/mods-available/expr
Thu Feb 15 16:47:11 2024 : Debug: expr {
Thu Feb 15 16:47:11 2024 : Debug: safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /äéöüàâæçèéêëîïôœùûüaÿÄÉÖÜßÀÂÆÇÈÉÊËÎÏÔŒÙÛÜŸ"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_logintime, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_logintime
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "logintime" from file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:47:11 2024 : Debug: logintime {
Thu Feb 15 16:47:11 2024 : Debug: minimum_timeout = 60
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_preprocess, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_preprocess
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "preprocess" from file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:47:11 2024 : Debug: preprocess {
Thu Feb 15 16:47:11 2024 : Debug: huntgroups = "/usr/local/etc/raddb/mods-config/preprocess/huntgroups"
Thu Feb 15 16:47:11 2024 : Debug: hints = "/usr/local/etc/raddb/mods-config/preprocess/hints"
Thu Feb 15 16:47:11 2024 : Debug: with_ascend_hack = no
Thu Feb 15 16:47:11 2024 : Debug: ascend_channels_per_line = 23
Thu Feb 15 16:47:11 2024 : Debug: with_ntdomain_hack = no
Thu Feb 15 16:47:11 2024 : Debug: with_specialix_jetstream_hack = no
Thu Feb 15 16:47:11 2024 : Debug: with_cisco_vsa_hack = no
Thu Feb 15 16:47:11 2024 : Debug: with_alvarion_vsa_hack = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_unix, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_unix
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "unix" from file /usr/local/etc/raddb/mods-available/unix
Thu Feb 15 16:47:11 2024 : Debug: unix {
Thu Feb 15 16:47:11 2024 : Debug: radwtmp = "/usr/local/var/log/radius/radwtmp"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Creating attribute Unix-Group
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_utf8, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_utf8
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "utf8" from file /usr/local/etc/raddb/mods-available/utf8
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_linelog, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_linelog
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "linelog" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:47:11 2024 : Debug: linelog {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/var/log/radius/linelog"
Thu Feb 15 16:47:11 2024 : Debug: escape_filenames = no
Thu Feb 15 16:47:11 2024 : Debug: syslog_severity = "info"
Thu Feb 15 16:47:11 2024 : Debug: permissions = 384
Thu Feb 15 16:47:11 2024 : Debug: format = "This is a log message for %{User-Name}"
Thu Feb 15 16:47:11 2024 : Debug: reference = "messages.%{%{reply:Packet-Type}:-default}"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "log_accounting" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:47:11 2024 : Debug: linelog log_accounting {
Thu Feb 15 16:47:11 2024 : Debug: filename = "/usr/local/var/log/radius/linelog-accounting"
Thu Feb 15 16:47:11 2024 : Debug: escape_filenames = no
Thu Feb 15 16:47:11 2024 : Debug: syslog_severity = "info"
Thu Feb 15 16:47:11 2024 : Debug: permissions = 384
Thu Feb 15 16:47:11 2024 : Debug: format = ""
Thu Feb 15 16:47:11 2024 : Debug: reference = "Accounting-Request.%{%{Acct-Status-Type}:-unknown}"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_python3, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_python3
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "python3" from file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:47:11 2024 : Debug: python3 {
Thu Feb 15 16:47:11 2024 : Debug: cext_compat = yes
Thu Feb 15 16:47:11 2024 : Debug: pass_all_vps = no
Thu Feb 15 16:47:11 2024 : Debug: pass_all_vps_dict = no
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/mods-available/python3[18]: The item 'module' is defined, but is unused by the configuration
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Loaded rlm_mschap, checking if it's valid
Thu Feb 15 16:47:11 2024 : Debug: # Loaded module rlm_mschap
Thu Feb 15 16:47:11 2024 : Debug: # Loading module "mschap" from file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:47:11 2024 : Debug: mschap {
Thu Feb 15 16:47:11 2024 : Debug: use_mppe = yes
Thu Feb 15 16:47:11 2024 : Debug: require_encryption = no
Thu Feb 15 16:47:11 2024 : Debug: require_strong = no
Thu Feb 15 16:47:11 2024 : Debug: with_ntdomain_hack = yes
Thu Feb 15 16:47:11 2024 : Debug: passchange {
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: allow_retry = yes
Thu Feb 15 16:47:11 2024 : Debug: winbind_retry_with_normalised_username = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: instantiate {
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "reject" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "fail" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "ok" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "handled" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "invalid" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "userlock" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "notfound" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "noop" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "updated" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "attr_filter.post-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/post-proxy
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "attr_filter.pre-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/pre-proxy
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "attr_filter.access_reject" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/access_reject
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "attr_filter.access_challenge" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/access_challenge
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "attr_filter.accounting_response" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/accounting_response
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "attr_filter.coa" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:47:11 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/coa
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "detail" from file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "auth_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: rlm_detail (auth_log): 'User-Password' suppressed, will not appear in detail output
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "reply_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "pre_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "post_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "eap" from file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:47:11 2024 : Debug: # Linked to sub-module rlm_eap_md5
Thu Feb 15 16:47:11 2024 : Debug: # Linked to sub-module rlm_eap_tls
Thu Feb 15 16:47:11 2024 : Debug: tls {
Thu Feb 15 16:47:11 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: tls-config tls-common {
Thu Feb 15 16:47:11 2024 : Debug: verify_depth = 0
Thu Feb 15 16:47:11 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:47:11 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:47:11 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:47:11 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:47:11 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:47:11 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:47:11 2024 : Debug: fragment_size = 1024
Thu Feb 15 16:47:11 2024 : Debug: include_length = yes
Thu Feb 15 16:47:11 2024 : Debug: auto_chain = yes
Thu Feb 15 16:47:11 2024 : Debug: check_crl = no
Thu Feb 15 16:47:11 2024 : Debug: check_all_crl = no
Thu Feb 15 16:47:11 2024 : Debug: ca_path_reload_interval = 0
Thu Feb 15 16:47:11 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:47:11 2024 : Debug: cipher_server_preference = no
Thu Feb 15 16:47:11 2024 : Debug: reject_unknown_intermediate_ca = no
Thu Feb 15 16:47:11 2024 : Debug: ecdh_curve = ""
Thu Feb 15 16:47:11 2024 : Debug: tls_max_version = "1.2"
Thu Feb 15 16:47:11 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:47:11 2024 : Debug: cache {
Thu Feb 15 16:47:11 2024 : Debug: enable = no
Thu Feb 15 16:47:11 2024 : Debug: lifetime = 24
Thu Feb 15 16:47:11 2024 : Debug: max_entries = 255
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: verify {
Thu Feb 15 16:47:11 2024 : Debug: skip_if_ocsp_ok = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: ocsp {
Thu Feb 15 16:47:11 2024 : Debug: enable = no
Thu Feb 15 16:47:11 2024 : Debug: override_cert_url = yes
Thu Feb 15 16:47:11 2024 : Debug: url = "http://127.0.0.1/ocsp/"
Thu Feb 15 16:47:11 2024 : Debug: use_nonce = yes
Thu Feb 15 16:47:11 2024 : Debug: timeout = 0
Thu Feb 15 16:47:11 2024 : Debug: softfail = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Linked to sub-module rlm_eap_ttls
Thu Feb 15 16:47:11 2024 : Debug: ttls {
Thu Feb 15 16:47:11 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:47:11 2024 : Debug: default_eap_type = "md5"
Thu Feb 15 16:47:11 2024 : Debug: copy_request_to_tunnel = no
Thu Feb 15 16:47:11 2024 : Debug: use_tunneled_reply = no
Thu Feb 15 16:47:11 2024 : Debug: virtual_server = "inner-tunnel"
Thu Feb 15 16:47:11 2024 : Debug: include_length = yes
Thu Feb 15 16:47:11 2024 : Debug: require_client_cert = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: tls: Using cached TLS configuration from previous invocation
Thu Feb 15 16:47:11 2024 : Debug: # Linked to sub-module rlm_eap_peap
Thu Feb 15 16:47:11 2024 : Debug: peap {
Thu Feb 15 16:47:11 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:47:11 2024 : Debug: default_eap_type = "mschapv2"
Thu Feb 15 16:47:11 2024 : Debug: copy_request_to_tunnel = no
Thu Feb 15 16:47:11 2024 : Debug: use_tunneled_reply = no
Thu Feb 15 16:47:11 2024 : Debug: proxy_tunneled_request_as_eap = yes
Thu Feb 15 16:47:11 2024 : Debug: virtual_server = "inner-tunnel"
Thu Feb 15 16:47:11 2024 : Debug: soh = no
Thu Feb 15 16:47:11 2024 : Debug: require_client_cert = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: tls: Using cached TLS configuration from previous invocation
Thu Feb 15 16:47:11 2024 : Debug: # Linked to sub-module rlm_eap_mschapv2
Thu Feb 15 16:47:11 2024 : Debug: mschapv2 {
Thu Feb 15 16:47:11 2024 : Debug: with_ntdomain_hack = no
Thu Feb 15 16:47:11 2024 : Debug: send_error = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "pap" from file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "expiration" from file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "logintime" from file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "preprocess" from file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:47:11 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/preprocess/huntgroups
Thu Feb 15 16:47:11 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/preprocess/hints
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "linelog" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "log_accounting" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "python3" from file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:47:11 2024 : Info: Python version: 3.10.12 (main, Nov 20 2023, 15:14:05) [GCC 11.4.0]
Thu Feb 15 16:47:11 2024 : Debug: # Instantiating module "mschap" from file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:47:11 2024 : Debug: rlm_mschap (mschap): using internal authentication
Thu Feb 15 16:47:11 2024 : Debug: } # modules
Thu Feb 15 16:47:11 2024 : Debug: radiusd: #### Loading Virtual Servers ####
Thu Feb 15 16:47:11 2024 : Debug: server { # from file /usr/local/etc/raddb/radiusd.conf
Thu Feb 15 16:47:11 2024 : Debug: } # server
Thu Feb 15 16:47:11 2024 : Debug: server default { # from file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:47:11 2024 : Debug: # Loading authenticate {...}
Thu Feb 15 16:47:11 2024 : Debug: Compiling Auth-Type eap for attr Auth-Type
Thu Feb 15 16:47:11 2024 : Debug: # Loading authorize {...}
Thu Feb 15 16:47:11 2024 : Debug: eap
Thu Feb 15 16:47:11 2024 : Debug: auth_log
Thu Feb 15 16:47:11 2024 : Debug: Compiling Autz-Type New-TLS-Connection for attr Autz-Type
Thu Feb 15 16:47:11 2024 : Debug: # Loading preacct {...}
Thu Feb 15 16:47:11 2024 : Debug: preprocess
Thu Feb 15 16:47:11 2024 : Debug: policy acct_unique {
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &Tmp-String-9 := "ai:"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: if ("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/ && "%{string:&Class}" =~ /^ai:([0-9a-f]{32})/) {
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &Acct-Unique-Session-Id := "%{md5:%{1},%{Acct-Session-ID}}"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: else {
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &Acct-Unique-Session-Id := "%{md5:%{User-Name},%{Acct-Session-ID},%{%{NAS-IPv6-Address}:-%{NAS-IP-Address}},%{NAS-Identifier},%{NAS-Port-ID},%{NAS-Port}}"
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &Tmp-String-9 !* ANY
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: # Loading accounting {...}
Thu Feb 15 16:47:11 2024 : Debug: detail
Thu Feb 15 16:47:11 2024 : Debug: unix
Thu Feb 15 16:47:11 2024 : Debug: exec
Thu Feb 15 16:47:11 2024 : Debug: # Loading post-proxy {...}
Thu Feb 15 16:47:11 2024 : Debug: eap
Thu Feb 15 16:47:11 2024 : Debug: # Loading post-auth {...}
Thu Feb 15 16:47:11 2024 : Debug: if (&EAP-Type == TLS) {
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &TLS-OCSP-Cert-Valid := &session-state:TLS-OCSP-Cert-Valid
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: python3
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &reply:[*] += &session-state:[*]
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: auth_log
Thu Feb 15 16:47:11 2024 : Debug: exec
Thu Feb 15 16:47:11 2024 : Debug: policy remove_reply_message_if_eap {
Thu Feb 15 16:47:11 2024 : Debug: if (&reply:EAP-Message && &reply:Reply-Message) {
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &reply:Reply-Message !* ANY
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: else {
Thu Feb 15 16:47:11 2024 : Debug: noop
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Compiling Post-Auth-Type REJECT for attr Post-Auth-Type
Thu Feb 15 16:47:11 2024 : Debug: Compiling Post-Auth-Type Challenge for attr Post-Auth-Type
Thu Feb 15 16:47:11 2024 : Debug: } # server default
Thu Feb 15 16:47:11 2024 : Debug: server inner-tunnel { # from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
Thu Feb 15 16:47:11 2024 : Debug: # Loading authenticate {...}
Thu Feb 15 16:47:11 2024 : Debug: Compiling Auth-Type MS-CHAP for attr Auth-Type
Thu Feb 15 16:47:11 2024 : Debug: Compiling Auth-Type eap for attr Auth-Type
Thu Feb 15 16:47:11 2024 : Debug: # Loading authorize {...}
Thu Feb 15 16:47:11 2024 : Debug: python3
Thu Feb 15 16:47:11 2024 : Debug: expiration
Thu Feb 15 16:47:11 2024 : Debug: logintime
Thu Feb 15 16:47:11 2024 : Debug: # Loading post-proxy {...}
Thu Feb 15 16:47:11 2024 : Debug: eap
Thu Feb 15 16:47:11 2024 : Debug: # Loading post-auth {...}
Thu Feb 15 16:47:11 2024 : Debug: python3
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/sites-enabled/inner-tunnel[46]: Please change attribute reference to '&User-Name := ...'
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &outer.request:User-Name := &User-Name
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Warning: /usr/local/etc/raddb/sites-enabled/inner-tunnel[49]: Please change attribute reference to '&User-Name := ...'
Thu Feb 15 16:47:11 2024 : Debug: update {
Thu Feb 15 16:47:11 2024 : Debug: &outer.reply:User-Name := &User-Name
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Compiling Post-Auth-Type REJECT for attr Post-Auth-Type
Thu Feb 15 16:47:11 2024 : Debug: } # server inner-tunnel
Thu Feb 15 16:47:11 2024 : Debug: thread pool {
Thu Feb 15 16:47:11 2024 : Debug: start_servers = 5
Thu Feb 15 16:47:11 2024 : Debug: max_servers = 32
Thu Feb 15 16:47:11 2024 : Debug: min_spare_servers = 3
Thu Feb 15 16:47:11 2024 : Debug: max_spare_servers = 10
Thu Feb 15 16:47:11 2024 : Debug: max_requests_per_server = 0
Thu Feb 15 16:47:11 2024 : Debug: cleanup_delay = 5
Thu Feb 15 16:47:11 2024 : Debug: max_queue_size = 65536
Thu Feb 15 16:47:11 2024 : Debug: auto_limit_acct = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Thread spawned new child 1. Total threads in pool: 1
Thu Feb 15 16:47:11 2024 : Debug: Thread spawned new child 2. Total threads in pool: 2
Thu Feb 15 16:47:11 2024 : Debug: Thread 1 waiting to be assigned a request
Thu Feb 15 16:47:11 2024 : Debug: Thread 2 waiting to be assigned a request
Thu Feb 15 16:47:11 2024 : Debug: Thread spawned new child 3. Total threads in pool: 3
Thu Feb 15 16:47:11 2024 : Debug: Thread 3 waiting to be assigned a request
Thu Feb 15 16:47:11 2024 : Debug: Thread spawned new child 4. Total threads in pool: 4
Thu Feb 15 16:47:11 2024 : Debug: Thread spawned new child 5. Total threads in pool: 5
Thu Feb 15 16:47:11 2024 : Debug: Thread pool initialized
Thu Feb 15 16:47:11 2024 : Debug: Thread 4 waiting to be assigned a request
Thu Feb 15 16:47:11 2024 : Debug: radiusd: #### Opening IP addresses and Ports ####
Thu Feb 15 16:47:11 2024 : Debug: Thread 5 waiting to be assigned a request
Thu Feb 15 16:47:11 2024 : Debug: listen {
Thu Feb 15 16:47:11 2024 : Debug: type = "auth+acct"
Thu Feb 15 16:47:11 2024 : Debug: virtual_server = "default"
Thu Feb 15 16:47:11 2024 : Debug: ipaddr = *
Thu Feb 15 16:47:11 2024 : Debug: port = 2083
Thu Feb 15 16:47:11 2024 : Debug: proto = "tcp"
Thu Feb 15 16:47:11 2024 : Debug: tls {
Thu Feb 15 16:47:11 2024 : Debug: verify_depth = 0
Thu Feb 15 16:47:11 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:47:11 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:47:11 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:47:11 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:47:11 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:47:11 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:47:11 2024 : Debug: fragment_size = 8192
Thu Feb 15 16:47:11 2024 : Debug: include_length = yes
Thu Feb 15 16:47:11 2024 : Debug: auto_chain = yes
Thu Feb 15 16:47:11 2024 : Debug: check_crl = no
Thu Feb 15 16:47:11 2024 : Debug: check_all_crl = no
Thu Feb 15 16:47:11 2024 : Debug: ca_path_reload_interval = 3600
Thu Feb 15 16:47:11 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:47:11 2024 : Debug: cipher_server_preference = no
Thu Feb 15 16:47:11 2024 : Debug: require_client_cert = yes
Thu Feb 15 16:47:11 2024 : Debug: reject_unknown_intermediate_ca = no
Thu Feb 15 16:47:11 2024 : Debug: ecdh_curve = "prime256v1"
Thu Feb 15 16:47:11 2024 : Debug: tls_max_version = "1.2"
Thu Feb 15 16:47:11 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:47:11 2024 : Debug: cache {
Thu Feb 15 16:47:11 2024 : Debug: enable = no
Thu Feb 15 16:47:11 2024 : Debug: lifetime = 24
Thu Feb 15 16:47:11 2024 : Debug: max_entries = 255
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: verify {
Thu Feb 15 16:47:11 2024 : Debug: skip_if_ocsp_ok = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: ocsp {
Thu Feb 15 16:47:11 2024 : Debug: enable = no
Thu Feb 15 16:47:11 2024 : Debug: override_cert_url = no
Thu Feb 15 16:47:11 2024 : Debug: use_nonce = yes
Thu Feb 15 16:47:11 2024 : Debug: timeout = 0
Thu Feb 15 16:47:11 2024 : Debug: softfail = no
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: check_client_connections = yes
Thu Feb 15 16:47:11 2024 : Debug: limit {
Thu Feb 15 16:47:11 2024 : Debug: max_connections = 16
Thu Feb 15 16:47:11 2024 : Debug: lifetime = 0
Thu Feb 15 16:47:11 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: clients = "radsec"
Thu Feb 15 16:47:11 2024 : Debug: client 127.0.0.1 {
Thu Feb 15 16:47:11 2024 : Debug: ipaddr = *
Thu Feb 15 16:47:11 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:47:11 2024 : Debug: secret = "radsec"
Thu Feb 15 16:47:11 2024 : Debug: proto = "tls"
Thu Feb 15 16:47:11 2024 : Debug: limit {
Thu Feb 15 16:47:11 2024 : Debug: max_connections = 16
Thu Feb 15 16:47:11 2024 : Debug: lifetime = 0
Thu Feb 15 16:47:11 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Adding client 0.0.0.0/0 (0.0.0.0) to prefix tree 0
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: listen {
Thu Feb 15 16:47:11 2024 : Debug: type = "auth"
Thu Feb 15 16:47:11 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:47:11 2024 : Debug: port = 18120
Thu Feb 15 16:47:11 2024 : Debug: }
Thu Feb 15 16:47:11 2024 : Debug: Listening on auth+acct proto tcp address * port 2083 (TLS) bound to server default
Thu Feb 15 16:47:11 2024 : Debug: Listening on auth address 127.0.0.1 port 18120 bound to server inner-tunnel
Thu Feb 15 16:47:11 2024 : Debug: Opened new proxy socket 'proxy address * port 45630'
Thu Feb 15 16:47:11 2024 : Debug: Listening on proxy address * port 45630
Thu Feb 15 16:47:11 2024 : Info: Ready to process requests
Thu Feb 15 16:47:15 2024 : Debug: ... new connection request on TCP socket
Thu Feb 15 16:47:15 2024 : Debug: Listening on auth+acct from client (192.168.215.1, 62876) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:47:15 2024 : Debug: Waking up in 0.8 seconds.
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS -Initiating new session
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Setting verify mode to require certificate from client
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 188
00: 16 03 01 00 b7 01 00 00 b3 03 03 18 38 2c df e8
10: 72 9a b6 e6 af 4b 96 3d 23 83 9a d8 52 1e 1e 2f
20: 47 43 d1 71 4a f1 8d 67 88 bf 94 00 00 38 c0 2c
30: c0 30 00 9f cc a9 cc a8 cc aa c0 2b c0 2f 00 9e
40: c0 24 c0 28 00 6b c0 23 c0 27 00 67 c0 0a c0 14
50: 00 39 c0 09 c0 13 00 33 00 9d 00 9c 00 3d 00 3c
60: 00 35 00 2f 00 ff 01 00 00 52 00 0b 00 04 03 00
70: 01 02 00 0a 00 0c 00 0a 00 1d 00 17 00 1e 00 19
80: 00 18 00 23 00 00 00 16 00 00 00 17 00 00 00 0d
90: 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08 09
a0: 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01
b0: 03 03 03 01 03 02 04 02 05 02 06 02
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - before SSL initialization (0)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:47:15 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [0] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [1] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [2] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [5] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [8] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES256-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES128-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES256-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES128-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [21] AES256-GCM-SHA384
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [22] AES128-GCM-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [23] AES256-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [24] AES128-SHA256
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [25] AES256-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) [26] AES128-SHA
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHello
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Certificate
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSC] - Server SSLv3/TLS write certificate (23)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerKeyExchange
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSKE] - Server SSLv3/TLS write key exchange (24)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, CertificateRequest
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCR] - Server SSLv3/TLS write certificate request (25)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHelloDone
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: SSLv3/TLS write server done
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS- got 3034 bytes of data
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:47:15 2024 : Debug: Waking up in 0.8 seconds.
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 2030
00: 16 03 03 05 5e 0b 00 05 5a 00 05 57 00 05 54 30
10: 82 05 50 30 82 03 38 a0 03 02 01 02 02 10 2a ef
20: 75 f0 ea 7f 49 c6 8b 28 78 1d 7a 6a 2f f9 30 0d
30: 06 09 2a 86 48 86 f7 0d 01 01 0b 05 00 30 1e 31
40: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
50: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 1e 17
60: 0d 32 34 30 32 30 38 31 30 34 35 35 39 5a 17 0d
70: 33 34 30 32 30 38 31 30 35 35 35 39 5a 30 1e 31
80: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
90: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 82 02
a0: 22 30 0d 06 09 2a 86 48 86 f7 0d 01 01 01 05 00
b0: 03 82 02 0f 00 30 82 02 0a 02 82 02 01 00 c9 92
c0: 48 b1 3d 5d 30 70 c9 15 61 5c 81 28 94 1d 24 5d
d0: ea 39 e5 ed 7b 5f 74 78 67 8d 10 8c 33 71 e5 e1
e0: 09 40 6b 01 fa a3 3b 42 9d 3c 6e 17 07 c7 63 52
f0: 4c 03 b4 24 8f 56 3e be 91 4f 11 0f 59 39 ff 33
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Certificate
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Creating attributes from client certificate
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-Serial := "2aef75f0ea7f49c68b28781d7a6a2ff9"
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-Expiration := "340208105559Z"
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-Valid-Since := "240208104559Z"
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-Subject := "/CN=BoilerPlate"
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-Issuer := "/CN=BoilerPlate"
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-Common-Name := "BoilerPlate"
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-Subject-Alt-Name-Dns := "radius.BoilerPlate.net"
Thu Feb 15 16:47:15 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Key-Usage += 'Digital Signature, Key Encipherment, Certificate Sign'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-X509v3-Basic-Constraints += "CA:FALSE"
Thu Feb 15 16:47:15 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Subject-Alternative-Name += 'DNS:radius.BoilerPlate.net'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-X509v3-Authority-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Client-Cert-X509v3-Subject-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:47:15 2024 : Warning: Certificate chain - 0 intermediate CA cert(s) untrusted
Thu Feb 15 16:47:15 2024 : Warning: To forbid these certificates see 'reject_unknown_intermediate_ca'
Thu Feb 15 16:47:15 2024 : Warning: (TLS) untrusted certificate with depth [0] subject name /CN=BoilerPlate
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) chain-depth : 0
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) error : 0
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) common name : BoilerPlate
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) subject : /CN=BoilerPlate
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) issuer : /CN=BoilerPlate
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) verify return : 1
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCC] - Server SSLv3/TLS read client certificate (27)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, ClientKeyExchange
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCKE] - Server SSLv3/TLS read client key exchange (28)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, CertificateVerify
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCV] - Server SSLv3/TLS read certificate verify (29)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCCS] - Server SSLv3/TLS read change cipher spec (31)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Finished
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRFIN] - Server SSLv3/TLS read finished (32)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 ChangeCipherSpec
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCCS] - Server SSLv3/TLS write change cipher spec (35)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Finished
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWFIN] - Server SSLv3/TLS write finished (36)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [SSLOK] - SSL negotiation finished successfully (1)
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS - Connection Established
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Session-Cipher-Suite = "ECDHE-RSA-AES256-GCM-SHA384"
Thu Feb 15 16:47:15 2024 : Debug: (0) TLS-Session-Version = "TLS 1.2"
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) RADIUS/TLS- got 51 bytes of data
Thu Feb 15 16:47:15 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:47:15 2024 : Debug: Waking up in 0.8 seconds.
Thu Feb 15 16:47:16 2024 : Debug: Waking up in 29.4 seconds.
Thu Feb 15 16:47:16 2024 : Debug: (0) (TLS) Reading from socket 11
Thu Feb 15 16:47:16 2024 : Debug: (0) (TLS) Client has closed the TCP connection
Thu Feb 15 16:47:16 2024 : Debug: (TLS) Closing socket from client port 62876
Thu Feb 15 16:47:16 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Alert, warning close_notify
Thu Feb 15 16:47:16 2024 : Debug: (TLS) Closing connection
Thu Feb 15 16:47:16 2024 : Info: ... shutting down socket auth+acct from client (192.168.215.1, 62876) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:47:16 2024 : Debug: ... cleaning up socket auth+acct from client (192.168.215.1, 62876) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:47:16 2024 : Info: Ready to process requests
EXIT(2) CALLED src/main/radiusd.c[779]. Last error was: Unknown name "TLS-Client-Cert-X509v3-Subject-Alternative-Name"
```
TLS 1.3 log
```
Thu Feb 15 16:48:16 2024 : Debug: Server was built with:
Thu Feb 15 16:48:16 2024 : Debug: accounting : yes
Thu Feb 15 16:48:16 2024 : Debug: authentication : yes
Thu Feb 15 16:48:16 2024 : Debug: ascend-binary-attributes : yes
Thu Feb 15 16:48:16 2024 : Debug: coa : yes
Thu Feb 15 16:48:16 2024 : Debug: recv-coa-from-home-server : no
Thu Feb 15 16:48:16 2024 : Debug: control-socket : yes
Thu Feb 15 16:48:16 2024 : Debug: detail : yes
Thu Feb 15 16:48:16 2024 : Debug: dhcp : yes
Thu Feb 15 16:48:16 2024 : Debug: dynamic-clients : yes
Thu Feb 15 16:48:16 2024 : Debug: osfc2 : no
Thu Feb 15 16:48:16 2024 : Debug: proxy : yes
Thu Feb 15 16:48:16 2024 : Debug: regex-pcre : no
Thu Feb 15 16:48:16 2024 : Debug: regex-posix : yes
Thu Feb 15 16:48:16 2024 : Debug: regex-posix-extended : yes
Thu Feb 15 16:48:16 2024 : Debug: session-management : yes
Thu Feb 15 16:48:16 2024 : Debug: stats : yes
Thu Feb 15 16:48:16 2024 : Debug: systemd : no
Thu Feb 15 16:48:16 2024 : Debug: tcp : yes
Thu Feb 15 16:48:16 2024 : Debug: threads : yes
Thu Feb 15 16:48:16 2024 : Debug: tls : yes
Thu Feb 15 16:48:16 2024 : Debug: unlang : yes
Thu Feb 15 16:48:16 2024 : Debug: vmps : yes
Thu Feb 15 16:48:16 2024 : Debug: developer : yes
Thu Feb 15 16:48:16 2024 : Debug: Server core libs:
Thu Feb 15 16:48:16 2024 : Debug: freeradius-server : 3.2.4
Thu Feb 15 16:48:16 2024 : Debug: talloc : 2.3.*
Thu Feb 15 16:48:16 2024 : Debug: ssl : 3.0.0b dev
Thu Feb 15 16:48:16 2024 : Debug: Endianness:
Thu Feb 15 16:48:16 2024 : Debug: little
Thu Feb 15 16:48:16 2024 : Debug: Compilation flags:
Thu Feb 15 16:48:16 2024 : Debug: cppflags :
Thu Feb 15 16:48:16 2024 : Debug: cflags : -I. -Isrc -include src/freeradius-devel/autoconf.h -include src/freeradius-devel/build.h -include src/freeradius-devel/features.h -include src/freeradius-devel/radpaths.h -fno-strict-aliasing -Wno-date-time -g3 -Wall -std=c99 -D_GNU_SOURCE -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wshadow -Wpointer-arith -Wcast-qual -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -W -Wredundant-decls -Wundef -Wformat-y2k -Wno-format-extra-args -Wno-format-zero-length -Wno-cast-align -Wformat-nonliteral -Wformat-security -Wformat=2 -DWITH_VERIFY_PTR=1 -DIS_MODULE=1
Thu Feb 15 16:48:16 2024 : Debug: ldflags :
Thu Feb 15 16:48:16 2024 : Debug: libs : -lcrypto -lssl -ltalloc -latomic -lnsl -lresolv -ldl -lpthread
Thu Feb 15 16:48:16 2024 : Debug:
Thu Feb 15 16:48:16 2024 : Info: FreeRADIUS Version 3.2.4
Thu Feb 15 16:48:16 2024 : Info: Copyright (C) 1999-2023 The FreeRADIUS server project and contributors
Thu Feb 15 16:48:16 2024 : Info: There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
Thu Feb 15 16:48:16 2024 : Info: PARTICULAR PURPOSE
Thu Feb 15 16:48:16 2024 : Info: You may redistribute copies of FreeRADIUS under the terms of the
Thu Feb 15 16:48:16 2024 : Info: GNU General Public License
Thu Feb 15 16:48:16 2024 : Info: For more information about these matters, see the file named COPYRIGHT
Thu Feb 15 16:48:16 2024 : Info: Starting - reading configuration files ...
Thu Feb 15 16:48:16 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary
Thu Feb 15 16:48:16 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary.dhcp
Thu Feb 15 16:48:16 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary.vqp
Thu Feb 15 16:48:16 2024 : Debug: including dictionary file /usr/local/etc/raddb/dictionary
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/radiusd.conf
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/proxy.conf
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/clients.conf
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/echo
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/exec
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/expr
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/unix
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/utf8
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:48:16 2024 : Debug: including files in directory /usr/local/etc/raddb/policy.d/
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/abfab-tr
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/accounting
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/canonicalization
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/control
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/cui
Thu Feb 15 16:48:16 2024 : Debug: OPTIMIZING (${policy.cui_require_operator_name} == yes) --> FALSE
Thu Feb 15 16:48:16 2024 : Debug: OPTIMIZING (no == yes) --> FALSE
Thu Feb 15 16:48:16 2024 : Debug: OPTIMIZING (${policy.cui_require_operator_name} == yes) --> FALSE
Thu Feb 15 16:48:16 2024 : Debug: OPTIMIZING (no == yes) --> FALSE
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/debug
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/dhcp
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/eap
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/filter
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/moonshot-targeted-ids
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/operator-name
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/rfc7542
Thu Feb 15 16:48:16 2024 : Debug: including files in directory /usr/local/etc/raddb/sites-enabled/
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/tls
Thu Feb 15 16:48:16 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/inner-tunnel
Thu Feb 15 16:48:16 2024 : Debug: main {
Thu Feb 15 16:48:16 2024 : Debug: security {
Thu Feb 15 16:48:16 2024 : Debug: allow_core_dumps = no
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[567]: The item 'max_attributes' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[584]: The item 'reject_delay' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[604]: The item 'status_server' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[614]: The item 'allow_vulnerable_openssl' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: name = "radiusd"
Thu Feb 15 16:48:16 2024 : Debug: prefix = "/usr/local"
Thu Feb 15 16:48:16 2024 : Debug: localstatedir = "/usr/local/var"
Thu Feb 15 16:48:16 2024 : Debug: logdir = "/usr/local/var/log/radius"
Thu Feb 15 16:48:16 2024 : Debug: run_dir = "/usr/local/var/run/radiusd"
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[97]: The item 'confdir' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[104]: The item 'db_dir' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[138]: The item 'libdir' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[149]: The item 'pidfile' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[203]: The item 'max_request_time' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[222]: The item 'cleanup_delay' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[259]: The item 'hostname_lookups' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[413]: The item 'checkrad' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[633]: The item 'proxy_requests' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: main {
Thu Feb 15 16:48:16 2024 : Debug: name = "radiusd"
Thu Feb 15 16:48:16 2024 : Debug: prefix = "/usr/local"
Thu Feb 15 16:48:16 2024 : Debug: localstatedir = "/usr/local/var"
Thu Feb 15 16:48:16 2024 : Debug: sbindir = "/usr/local/sbin"
Thu Feb 15 16:48:16 2024 : Debug: logdir = "/usr/local/var/log/radius"
Thu Feb 15 16:48:16 2024 : Debug: run_dir = "/usr/local/var/run/radiusd"
Thu Feb 15 16:48:16 2024 : Debug: libdir = "/usr/local/lib"
Thu Feb 15 16:48:16 2024 : Debug: radacctdir = "/usr/local/var/log/radius/radacct"
Thu Feb 15 16:48:16 2024 : Debug: hostname_lookups = no
Thu Feb 15 16:48:16 2024 : Debug: max_request_time = 30
Thu Feb 15 16:48:16 2024 : Debug: proxy_dedup_window = 1
Thu Feb 15 16:48:16 2024 : Debug: cleanup_delay = 5
Thu Feb 15 16:48:16 2024 : Debug: max_requests = 16384
Thu Feb 15 16:48:16 2024 : Debug: postauth_client_lost = no
Thu Feb 15 16:48:16 2024 : Debug: pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
Thu Feb 15 16:48:16 2024 : Debug: checkrad = "/usr/local/sbin/checkrad"
Thu Feb 15 16:48:16 2024 : Debug: debug_level = 0
Thu Feb 15 16:48:16 2024 : Debug: proxy_requests = yes
Thu Feb 15 16:48:16 2024 : Debug: log {
Thu Feb 15 16:48:16 2024 : Debug: stripped_names = no
Thu Feb 15 16:48:16 2024 : Debug: auth = no
Thu Feb 15 16:48:16 2024 : Debug: auth_badpass = no
Thu Feb 15 16:48:16 2024 : Debug: auth_goodpass = no
Thu Feb 15 16:48:16 2024 : Debug: colourise = yes
Thu Feb 15 16:48:16 2024 : Debug: msg_denied = "You are already logged in - access denied"
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[309]: The item 'destination' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[326]: The item 'file' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[334]: The item 'syslog_facility' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: resources {
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: security {
Thu Feb 15 16:48:16 2024 : Debug: max_attributes = 200
Thu Feb 15 16:48:16 2024 : Debug: reject_delay = 1.000000
Thu Feb 15 16:48:16 2024 : Debug: status_server = yes
Thu Feb 15 16:48:16 2024 : Debug: allow_vulnerable_openssl = "no"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[97]: The item 'confdir' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[104]: The item 'db_dir' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: radiusd: #### Loading Realms and Home Servers ####
Thu Feb 15 16:48:16 2024 : Debug: proxy server {
Thu Feb 15 16:48:16 2024 : Debug: retry_delay = 5
Thu Feb 15 16:48:16 2024 : Debug: retry_count = 3
Thu Feb 15 16:48:16 2024 : Debug: default_fallback = no
Thu Feb 15 16:48:16 2024 : Debug: dead_time = 120
Thu Feb 15 16:48:16 2024 : Debug: wake_all_if_all_dead = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: home_server localhost {
Thu Feb 15 16:48:16 2024 : Debug: nonblock = no
Thu Feb 15 16:48:16 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:48:16 2024 : Debug: port = 1812
Thu Feb 15 16:48:16 2024 : Debug: type = "auth"
Thu Feb 15 16:48:16 2024 : Debug: secret = "testing123"
Thu Feb 15 16:48:16 2024 : Debug: response_window = 20.000000
Thu Feb 15 16:48:16 2024 : Debug: response_timeouts = 1
Thu Feb 15 16:48:16 2024 : Debug: max_outstanding = 65536
Thu Feb 15 16:48:16 2024 : Debug: zombie_period = 40
Thu Feb 15 16:48:16 2024 : Debug: status_check = "status-server"
Thu Feb 15 16:48:16 2024 : Debug: ping_interval = 30
Thu Feb 15 16:48:16 2024 : Debug: check_interval = 30
Thu Feb 15 16:48:16 2024 : Debug: check_timeout = 4
Thu Feb 15 16:48:16 2024 : Debug: num_answers_to_alive = 3
Thu Feb 15 16:48:16 2024 : Debug: revive_interval = 120
Thu Feb 15 16:48:16 2024 : Debug: limit {
Thu Feb 15 16:48:16 2024 : Debug: max_connections = 16
Thu Feb 15 16:48:16 2024 : Debug: max_requests = 0
Thu Feb 15 16:48:16 2024 : Debug: lifetime = 0
Thu Feb 15 16:48:16 2024 : Debug: idle_timeout = 0
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: coa {
Thu Feb 15 16:48:16 2024 : Debug: irt = 2
Thu Feb 15 16:48:16 2024 : Debug: mrt = 16
Thu Feb 15 16:48:16 2024 : Debug: mrc = 5
Thu Feb 15 16:48:16 2024 : Debug: mrd = 30
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: home_server tls {
Thu Feb 15 16:48:16 2024 : Debug: nonblock = no
Thu Feb 15 16:48:16 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:48:16 2024 : Debug: port = 2083
Thu Feb 15 16:48:16 2024 : Debug: type = "auth"
Thu Feb 15 16:48:16 2024 : Debug: proto = "tcp"
Thu Feb 15 16:48:16 2024 : Debug: secret = "radsec"
Thu Feb 15 16:48:16 2024 : Debug: response_window = 30.000000
Thu Feb 15 16:48:16 2024 : Debug: response_timeouts = 1
Thu Feb 15 16:48:16 2024 : Debug: max_outstanding = 65536
Thu Feb 15 16:48:16 2024 : Debug: zombie_period = 40
Thu Feb 15 16:48:16 2024 : Debug: status_check = "none"
Thu Feb 15 16:48:16 2024 : Debug: ping_interval = 30
Thu Feb 15 16:48:16 2024 : Debug: check_timeout = 4
Thu Feb 15 16:48:16 2024 : Debug: num_answers_to_alive = 3
Thu Feb 15 16:48:16 2024 : Debug: revive_interval = 300
Thu Feb 15 16:48:16 2024 : Debug: limit {
Thu Feb 15 16:48:16 2024 : Debug: max_connections = 16
Thu Feb 15 16:48:16 2024 : Debug: max_requests = 0
Thu Feb 15 16:48:16 2024 : Debug: lifetime = 0
Thu Feb 15 16:48:16 2024 : Debug: idle_timeout = 0
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: coa {
Thu Feb 15 16:48:16 2024 : Debug: irt = 2
Thu Feb 15 16:48:16 2024 : Debug: mrt = 16
Thu Feb 15 16:48:16 2024 : Debug: mrc = 5
Thu Feb 15 16:48:16 2024 : Debug: mrd = 30
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: tls {
Thu Feb 15 16:48:16 2024 : Debug: verify_depth = 0
Thu Feb 15 16:48:16 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:48:16 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:48:16 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/client.pem"
Thu Feb 15 16:48:16 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/client.pem"
Thu Feb 15 16:48:16 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:48:16 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:48:16 2024 : Debug: fragment_size = 8192
Thu Feb 15 16:48:16 2024 : Debug: include_length = yes
Thu Feb 15 16:48:16 2024 : Debug: check_crl = no
Thu Feb 15 16:48:16 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:48:16 2024 : Debug: ca_path_reload_interval = 0
Thu Feb 15 16:48:16 2024 : Debug: ecdh_curve = "prime256v1"
Thu Feb 15 16:48:16 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/sites-enabled/tls[720]: The item 'connect_timeout' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: connect_timeout = 30
Thu Feb 15 16:48:16 2024 : Debug: home_server_pool my_auth_failover {
Thu Feb 15 16:48:16 2024 : Debug: type = fail-over
Thu Feb 15 16:48:16 2024 : Debug: home_server = localhost
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: realm example.com {
Thu Feb 15 16:48:16 2024 : Debug: auth_pool = my_auth_failover
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: realm LOCAL {
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: home_server_pool tls {
Thu Feb 15 16:48:16 2024 : Debug: type = fail-over
Thu Feb 15 16:48:16 2024 : Debug: home_server = tls
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: realm tls {
Thu Feb 15 16:48:16 2024 : Debug: auth_pool = tls
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: radiusd: #### Loading Clients ####
Thu Feb 15 16:48:16 2024 : Debug: client localhost {
Thu Feb 15 16:48:16 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:48:16 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:48:16 2024 : Debug: secret = "testing123"
Thu Feb 15 16:48:16 2024 : Debug: nas_type = "other"
Thu Feb 15 16:48:16 2024 : Debug: proto = "*"
Thu Feb 15 16:48:16 2024 : Debug: limit {
Thu Feb 15 16:48:16 2024 : Debug: max_connections = 16
Thu Feb 15 16:48:16 2024 : Debug: lifetime = 0
Thu Feb 15 16:48:16 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Adding client 127.0.0.1/32 (127.0.0.1) to prefix tree 32
Thu Feb 15 16:48:16 2024 : Debug: client localhost_ipv6 {
Thu Feb 15 16:48:16 2024 : Debug: ipv6addr = ::1
Thu Feb 15 16:48:16 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:48:16 2024 : Debug: secret = "testing123"
Thu Feb 15 16:48:16 2024 : Debug: limit {
Thu Feb 15 16:48:16 2024 : Debug: max_connections = 16
Thu Feb 15 16:48:16 2024 : Debug: lifetime = 0
Thu Feb 15 16:48:16 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Adding client ::1/128 (::1) to prefix tree 128
Thu Feb 15 16:48:16 2024 : Info: Debugger not attached
Thu Feb 15 16:48:16 2024 : Debug: # Creating Auth-Type = eap
Thu Feb 15 16:48:16 2024 : Debug: # Creating Autz-Type = New-TLS-Connection
Thu Feb 15 16:48:16 2024 : Debug: # Creating Auth-Type = MS-CHAP
Thu Feb 15 16:48:16 2024 : Debug: radiusd: #### Instantiating modules ####
Thu Feb 15 16:48:16 2024 : Debug: modules {
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_always, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_always
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "reject" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always reject {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "reject"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "fail" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always fail {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "fail"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "ok" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always ok {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "ok"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "handled" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always handled {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "handled"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "invalid" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always invalid {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "invalid"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "userlock" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always userlock {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "userlock"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "notfound" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always notfound {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "notfound"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "noop" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always noop {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "noop"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "updated" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: always updated {
Thu Feb 15 16:48:16 2024 : Debug: rcode = "updated"
Thu Feb 15 16:48:16 2024 : Debug: simulcount = 0
Thu Feb 15 16:48:16 2024 : Debug: mpp = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_attr_filter, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_attr_filter
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "attr_filter.post-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: attr_filter attr_filter.post-proxy {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/post-proxy"
Thu Feb 15 16:48:16 2024 : Debug: key = "%{Realm}"
Thu Feb 15 16:48:16 2024 : Debug: relaxed = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "attr_filter.pre-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: attr_filter attr_filter.pre-proxy {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/pre-proxy"
Thu Feb 15 16:48:16 2024 : Debug: key = "%{Realm}"
Thu Feb 15 16:48:16 2024 : Debug: relaxed = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "attr_filter.access_reject" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: attr_filter attr_filter.access_reject {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/access_reject"
Thu Feb 15 16:48:16 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:48:16 2024 : Debug: relaxed = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "attr_filter.access_challenge" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: attr_filter attr_filter.access_challenge {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/access_challenge"
Thu Feb 15 16:48:16 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:48:16 2024 : Debug: relaxed = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "attr_filter.accounting_response" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: attr_filter attr_filter.accounting_response {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/accounting_response"
Thu Feb 15 16:48:16 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:48:16 2024 : Debug: relaxed = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "attr_filter.coa" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: attr_filter attr_filter.coa {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/coa"
Thu Feb 15 16:48:16 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:48:16 2024 : Debug: relaxed = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_date, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_date
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "date" from file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:48:16 2024 : Debug: date {
Thu Feb 15 16:48:16 2024 : Debug: format = "%b %e %Y %H:%M:%S %Z"
Thu Feb 15 16:48:16 2024 : Debug: utc = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "wispr2date" from file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:48:16 2024 : Debug: date wispr2date {
Thu Feb 15 16:48:16 2024 : Debug: format = "%Y-%m-%dT%H:%M:%S"
Thu Feb 15 16:48:16 2024 : Debug: utc = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_detail, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_detail
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "detail" from file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:48:16 2024 : Debug: detail {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"
Thu Feb 15 16:48:16 2024 : Debug: header = "%t"
Thu Feb 15 16:48:16 2024 : Debug: permissions = 384
Thu Feb 15 16:48:16 2024 : Debug: locking = no
Thu Feb 15 16:48:16 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:48:16 2024 : Debug: escape_filenames = no
Thu Feb 15 16:48:16 2024 : Debug: log_packet_header = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "auth_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: detail auth_log {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/auth-detail-%Y%m%d"
Thu Feb 15 16:48:16 2024 : Debug: header = "%t"
Thu Feb 15 16:48:16 2024 : Debug: permissions = 384
Thu Feb 15 16:48:16 2024 : Debug: locking = no
Thu Feb 15 16:48:16 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:48:16 2024 : Debug: escape_filenames = no
Thu Feb 15 16:48:16 2024 : Debug: log_packet_header = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "reply_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: detail reply_log {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/reply-detail-%Y%m%d"
Thu Feb 15 16:48:16 2024 : Debug: header = "%t"
Thu Feb 15 16:48:16 2024 : Debug: permissions = 384
Thu Feb 15 16:48:16 2024 : Debug: locking = no
Thu Feb 15 16:48:16 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:48:16 2024 : Debug: escape_filenames = no
Thu Feb 15 16:48:16 2024 : Debug: log_packet_header = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "pre_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: detail pre_proxy_log {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/pre-proxy-detail-%Y%m%d"
Thu Feb 15 16:48:16 2024 : Debug: header = "%t"
Thu Feb 15 16:48:16 2024 : Debug: permissions = 384
Thu Feb 15 16:48:16 2024 : Debug: locking = no
Thu Feb 15 16:48:16 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:48:16 2024 : Debug: escape_filenames = no
Thu Feb 15 16:48:16 2024 : Debug: log_packet_header = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "post_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: detail post_proxy_log {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/post-proxy-detail-%Y%m%d"
Thu Feb 15 16:48:16 2024 : Debug: header = "%t"
Thu Feb 15 16:48:16 2024 : Debug: permissions = 384
Thu Feb 15 16:48:16 2024 : Debug: locking = no
Thu Feb 15 16:48:16 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:48:16 2024 : Debug: escape_filenames = no
Thu Feb 15 16:48:16 2024 : Debug: log_packet_header = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_eap, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_eap
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "eap" from file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:48:16 2024 : Debug: eap {
Thu Feb 15 16:48:16 2024 : Debug: default_eap_type = "md5"
Thu Feb 15 16:48:16 2024 : Debug: timer_expire = 60
Thu Feb 15 16:48:16 2024 : Debug: max_eap_type = 52
Thu Feb 15 16:48:16 2024 : Debug: ignore_unknown_eap_types = no
Thu Feb 15 16:48:16 2024 : Debug: cisco_accounting_username_bug = no
Thu Feb 15 16:48:16 2024 : Debug: max_sessions = 16384
Thu Feb 15 16:48:16 2024 : Debug: dedup_key = ""
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_pap, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_pap
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "pap" from file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:48:16 2024 : Debug: pap {
Thu Feb 15 16:48:16 2024 : Debug: normalise = yes
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_exec, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_exec
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "echo" from file /usr/local/etc/raddb/mods-available/echo
Thu Feb 15 16:48:16 2024 : Debug: exec echo {
Thu Feb 15 16:48:16 2024 : Debug: wait = yes
Thu Feb 15 16:48:16 2024 : Debug: program = "/bin/echo %{User-Name}"
Thu Feb 15 16:48:16 2024 : Debug: input_pairs = "request"
Thu Feb 15 16:48:16 2024 : Debug: output_pairs = "reply"
Thu Feb 15 16:48:16 2024 : Debug: shell_escape = yes
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "exec" from file /usr/local/etc/raddb/mods-available/exec
Thu Feb 15 16:48:16 2024 : Debug: exec {
Thu Feb 15 16:48:16 2024 : Debug: wait = no
Thu Feb 15 16:48:16 2024 : Debug: input_pairs = "request"
Thu Feb 15 16:48:16 2024 : Debug: shell_escape = yes
Thu Feb 15 16:48:16 2024 : Debug: timeout = 10
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_expiration, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_expiration
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "expiration" from file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_expr, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_expr
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "expr" from file /usr/local/etc/raddb/mods-available/expr
Thu Feb 15 16:48:16 2024 : Debug: expr {
Thu Feb 15 16:48:16 2024 : Debug: safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /äéöüàâæçèéêëîïôœùûüaÿÄÉÖÜßÀÂÆÇÈÉÊËÎÏÔŒÙÛÜŸ"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_logintime, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_logintime
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "logintime" from file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:48:16 2024 : Debug: logintime {
Thu Feb 15 16:48:16 2024 : Debug: minimum_timeout = 60
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_preprocess, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_preprocess
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "preprocess" from file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:48:16 2024 : Debug: preprocess {
Thu Feb 15 16:48:16 2024 : Debug: huntgroups = "/usr/local/etc/raddb/mods-config/preprocess/huntgroups"
Thu Feb 15 16:48:16 2024 : Debug: hints = "/usr/local/etc/raddb/mods-config/preprocess/hints"
Thu Feb 15 16:48:16 2024 : Debug: with_ascend_hack = no
Thu Feb 15 16:48:16 2024 : Debug: ascend_channels_per_line = 23
Thu Feb 15 16:48:16 2024 : Debug: with_ntdomain_hack = no
Thu Feb 15 16:48:16 2024 : Debug: with_specialix_jetstream_hack = no
Thu Feb 15 16:48:16 2024 : Debug: with_cisco_vsa_hack = no
Thu Feb 15 16:48:16 2024 : Debug: with_alvarion_vsa_hack = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_unix, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_unix
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "unix" from file /usr/local/etc/raddb/mods-available/unix
Thu Feb 15 16:48:16 2024 : Debug: unix {
Thu Feb 15 16:48:16 2024 : Debug: radwtmp = "/usr/local/var/log/radius/radwtmp"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Creating attribute Unix-Group
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_utf8, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_utf8
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "utf8" from file /usr/local/etc/raddb/mods-available/utf8
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_linelog, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_linelog
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "linelog" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:48:16 2024 : Debug: linelog {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/var/log/radius/linelog"
Thu Feb 15 16:48:16 2024 : Debug: escape_filenames = no
Thu Feb 15 16:48:16 2024 : Debug: syslog_severity = "info"
Thu Feb 15 16:48:16 2024 : Debug: permissions = 384
Thu Feb 15 16:48:16 2024 : Debug: format = "This is a log message for %{User-Name}"
Thu Feb 15 16:48:16 2024 : Debug: reference = "messages.%{%{reply:Packet-Type}:-default}"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "log_accounting" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:48:16 2024 : Debug: linelog log_accounting {
Thu Feb 15 16:48:16 2024 : Debug: filename = "/usr/local/var/log/radius/linelog-accounting"
Thu Feb 15 16:48:16 2024 : Debug: escape_filenames = no
Thu Feb 15 16:48:16 2024 : Debug: syslog_severity = "info"
Thu Feb 15 16:48:16 2024 : Debug: permissions = 384
Thu Feb 15 16:48:16 2024 : Debug: format = ""
Thu Feb 15 16:48:16 2024 : Debug: reference = "Accounting-Request.%{%{Acct-Status-Type}:-unknown}"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_python3, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_python3
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "python3" from file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:48:16 2024 : Debug: python3 {
Thu Feb 15 16:48:16 2024 : Debug: cext_compat = yes
Thu Feb 15 16:48:16 2024 : Debug: pass_all_vps = no
Thu Feb 15 16:48:16 2024 : Debug: pass_all_vps_dict = no
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/mods-available/python3[18]: The item 'module' is defined, but is unused by the configuration
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Loaded rlm_mschap, checking if it's valid
Thu Feb 15 16:48:16 2024 : Debug: # Loaded module rlm_mschap
Thu Feb 15 16:48:16 2024 : Debug: # Loading module "mschap" from file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:48:16 2024 : Debug: mschap {
Thu Feb 15 16:48:16 2024 : Debug: use_mppe = yes
Thu Feb 15 16:48:16 2024 : Debug: require_encryption = no
Thu Feb 15 16:48:16 2024 : Debug: require_strong = no
Thu Feb 15 16:48:16 2024 : Debug: with_ntdomain_hack = yes
Thu Feb 15 16:48:16 2024 : Debug: passchange {
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: allow_retry = yes
Thu Feb 15 16:48:16 2024 : Debug: winbind_retry_with_normalised_username = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: instantiate {
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "reject" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "fail" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "ok" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "handled" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "invalid" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "userlock" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "notfound" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "noop" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "updated" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "attr_filter.post-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/post-proxy
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "attr_filter.pre-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/pre-proxy
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "attr_filter.access_reject" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/access_reject
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "attr_filter.access_challenge" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/access_challenge
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "attr_filter.accounting_response" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/accounting_response
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "attr_filter.coa" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:48:16 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/coa
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "detail" from file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "auth_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: rlm_detail (auth_log): 'User-Password' suppressed, will not appear in detail output
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "reply_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "pre_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "post_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "eap" from file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:48:16 2024 : Debug: # Linked to sub-module rlm_eap_md5
Thu Feb 15 16:48:16 2024 : Debug: # Linked to sub-module rlm_eap_tls
Thu Feb 15 16:48:16 2024 : Debug: tls {
Thu Feb 15 16:48:16 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: tls-config tls-common {
Thu Feb 15 16:48:16 2024 : Debug: verify_depth = 0
Thu Feb 15 16:48:16 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:48:16 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:48:16 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:48:16 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:48:16 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:48:16 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:48:16 2024 : Debug: fragment_size = 1024
Thu Feb 15 16:48:16 2024 : Debug: include_length = yes
Thu Feb 15 16:48:16 2024 : Debug: auto_chain = yes
Thu Feb 15 16:48:16 2024 : Debug: check_crl = no
Thu Feb 15 16:48:16 2024 : Debug: check_all_crl = no
Thu Feb 15 16:48:16 2024 : Debug: ca_path_reload_interval = 0
Thu Feb 15 16:48:16 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:48:16 2024 : Debug: cipher_server_preference = no
Thu Feb 15 16:48:16 2024 : Debug: reject_unknown_intermediate_ca = no
Thu Feb 15 16:48:16 2024 : Debug: ecdh_curve = ""
Thu Feb 15 16:48:16 2024 : Debug: tls_max_version = "1.2"
Thu Feb 15 16:48:16 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:48:16 2024 : Debug: cache {
Thu Feb 15 16:48:16 2024 : Debug: enable = no
Thu Feb 15 16:48:16 2024 : Debug: lifetime = 24
Thu Feb 15 16:48:16 2024 : Debug: max_entries = 255
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: verify {
Thu Feb 15 16:48:16 2024 : Debug: skip_if_ocsp_ok = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: ocsp {
Thu Feb 15 16:48:16 2024 : Debug: enable = no
Thu Feb 15 16:48:16 2024 : Debug: override_cert_url = yes
Thu Feb 15 16:48:16 2024 : Debug: url = "http://127.0.0.1/ocsp/"
Thu Feb 15 16:48:16 2024 : Debug: use_nonce = yes
Thu Feb 15 16:48:16 2024 : Debug: timeout = 0
Thu Feb 15 16:48:16 2024 : Debug: softfail = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Linked to sub-module rlm_eap_ttls
Thu Feb 15 16:48:16 2024 : Debug: ttls {
Thu Feb 15 16:48:16 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:48:16 2024 : Debug: default_eap_type = "md5"
Thu Feb 15 16:48:16 2024 : Debug: copy_request_to_tunnel = no
Thu Feb 15 16:48:16 2024 : Debug: use_tunneled_reply = no
Thu Feb 15 16:48:16 2024 : Debug: virtual_server = "inner-tunnel"
Thu Feb 15 16:48:16 2024 : Debug: include_length = yes
Thu Feb 15 16:48:16 2024 : Debug: require_client_cert = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: tls: Using cached TLS configuration from previous invocation
Thu Feb 15 16:48:16 2024 : Debug: # Linked to sub-module rlm_eap_peap
Thu Feb 15 16:48:16 2024 : Debug: peap {
Thu Feb 15 16:48:16 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:48:16 2024 : Debug: default_eap_type = "mschapv2"
Thu Feb 15 16:48:16 2024 : Debug: copy_request_to_tunnel = no
Thu Feb 15 16:48:16 2024 : Debug: use_tunneled_reply = no
Thu Feb 15 16:48:16 2024 : Debug: proxy_tunneled_request_as_eap = yes
Thu Feb 15 16:48:16 2024 : Debug: virtual_server = "inner-tunnel"
Thu Feb 15 16:48:16 2024 : Debug: soh = no
Thu Feb 15 16:48:16 2024 : Debug: require_client_cert = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: tls: Using cached TLS configuration from previous invocation
Thu Feb 15 16:48:16 2024 : Debug: # Linked to sub-module rlm_eap_mschapv2
Thu Feb 15 16:48:16 2024 : Debug: mschapv2 {
Thu Feb 15 16:48:16 2024 : Debug: with_ntdomain_hack = no
Thu Feb 15 16:48:16 2024 : Debug: send_error = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "pap" from file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "expiration" from file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "logintime" from file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "preprocess" from file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:48:16 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/preprocess/huntgroups
Thu Feb 15 16:48:16 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/preprocess/hints
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "linelog" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "log_accounting" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "python3" from file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:48:16 2024 : Info: Python version: 3.10.12 (main, Nov 20 2023, 15:14:05) [GCC 11.4.0]
Thu Feb 15 16:48:16 2024 : Debug: # Instantiating module "mschap" from file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:48:16 2024 : Debug: rlm_mschap (mschap): using internal authentication
Thu Feb 15 16:48:16 2024 : Debug: } # modules
Thu Feb 15 16:48:16 2024 : Debug: radiusd: #### Loading Virtual Servers ####
Thu Feb 15 16:48:16 2024 : Debug: server { # from file /usr/local/etc/raddb/radiusd.conf
Thu Feb 15 16:48:16 2024 : Debug: } # server
Thu Feb 15 16:48:16 2024 : Debug: server default { # from file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:48:16 2024 : Debug: # Loading authenticate {...}
Thu Feb 15 16:48:16 2024 : Debug: Compiling Auth-Type eap for attr Auth-Type
Thu Feb 15 16:48:16 2024 : Debug: # Loading authorize {...}
Thu Feb 15 16:48:16 2024 : Debug: eap
Thu Feb 15 16:48:16 2024 : Debug: auth_log
Thu Feb 15 16:48:16 2024 : Debug: Compiling Autz-Type New-TLS-Connection for attr Autz-Type
Thu Feb 15 16:48:16 2024 : Debug: # Loading preacct {...}
Thu Feb 15 16:48:16 2024 : Debug: preprocess
Thu Feb 15 16:48:16 2024 : Debug: policy acct_unique {
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &Tmp-String-9 := "ai:"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: if ("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/ && "%{string:&Class}" =~ /^ai:([0-9a-f]{32})/) {
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &Acct-Unique-Session-Id := "%{md5:%{1},%{Acct-Session-ID}}"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: else {
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &Acct-Unique-Session-Id := "%{md5:%{User-Name},%{Acct-Session-ID},%{%{NAS-IPv6-Address}:-%{NAS-IP-Address}},%{NAS-Identifier},%{NAS-Port-ID},%{NAS-Port}}"
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &Tmp-String-9 !* ANY
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: # Loading accounting {...}
Thu Feb 15 16:48:16 2024 : Debug: detail
Thu Feb 15 16:48:16 2024 : Debug: unix
Thu Feb 15 16:48:16 2024 : Debug: exec
Thu Feb 15 16:48:16 2024 : Debug: # Loading post-proxy {...}
Thu Feb 15 16:48:16 2024 : Debug: eap
Thu Feb 15 16:48:16 2024 : Debug: # Loading post-auth {...}
Thu Feb 15 16:48:16 2024 : Debug: if (&EAP-Type == TLS) {
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &TLS-OCSP-Cert-Valid := &session-state:TLS-OCSP-Cert-Valid
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: python3
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &reply:[*] += &session-state:[*]
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: auth_log
Thu Feb 15 16:48:16 2024 : Debug: exec
Thu Feb 15 16:48:16 2024 : Debug: policy remove_reply_message_if_eap {
Thu Feb 15 16:48:16 2024 : Debug: if (&reply:EAP-Message && &reply:Reply-Message) {
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &reply:Reply-Message !* ANY
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: else {
Thu Feb 15 16:48:16 2024 : Debug: noop
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Compiling Post-Auth-Type REJECT for attr Post-Auth-Type
Thu Feb 15 16:48:16 2024 : Debug: Compiling Post-Auth-Type Challenge for attr Post-Auth-Type
Thu Feb 15 16:48:16 2024 : Debug: } # server default
Thu Feb 15 16:48:16 2024 : Debug: server inner-tunnel { # from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
Thu Feb 15 16:48:16 2024 : Debug: # Loading authenticate {...}
Thu Feb 15 16:48:16 2024 : Debug: Compiling Auth-Type MS-CHAP for attr Auth-Type
Thu Feb 15 16:48:16 2024 : Debug: Compiling Auth-Type eap for attr Auth-Type
Thu Feb 15 16:48:16 2024 : Debug: # Loading authorize {...}
Thu Feb 15 16:48:16 2024 : Debug: python3
Thu Feb 15 16:48:16 2024 : Debug: expiration
Thu Feb 15 16:48:16 2024 : Debug: logintime
Thu Feb 15 16:48:16 2024 : Debug: # Loading post-proxy {...}
Thu Feb 15 16:48:16 2024 : Debug: eap
Thu Feb 15 16:48:16 2024 : Debug: # Loading post-auth {...}
Thu Feb 15 16:48:16 2024 : Debug: python3
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/sites-enabled/inner-tunnel[46]: Please change attribute reference to '&User-Name := ...'
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &outer.request:User-Name := &User-Name
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Warning: /usr/local/etc/raddb/sites-enabled/inner-tunnel[49]: Please change attribute reference to '&User-Name := ...'
Thu Feb 15 16:48:16 2024 : Debug: update {
Thu Feb 15 16:48:16 2024 : Debug: &outer.reply:User-Name := &User-Name
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Compiling Post-Auth-Type REJECT for attr Post-Auth-Type
Thu Feb 15 16:48:16 2024 : Debug: } # server inner-tunnel
Thu Feb 15 16:48:16 2024 : Debug: thread pool {
Thu Feb 15 16:48:16 2024 : Debug: start_servers = 5
Thu Feb 15 16:48:16 2024 : Debug: max_servers = 32
Thu Feb 15 16:48:16 2024 : Debug: min_spare_servers = 3
Thu Feb 15 16:48:16 2024 : Debug: max_spare_servers = 10
Thu Feb 15 16:48:16 2024 : Debug: max_requests_per_server = 0
Thu Feb 15 16:48:16 2024 : Debug: cleanup_delay = 5
Thu Feb 15 16:48:16 2024 : Debug: max_queue_size = 65536
Thu Feb 15 16:48:16 2024 : Debug: auto_limit_acct = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Thread spawned new child 1. Total threads in pool: 1
Thu Feb 15 16:48:16 2024 : Debug: Thread 1 waiting to be assigned a request
Thu Feb 15 16:48:16 2024 : Debug: Thread spawned new child 2. Total threads in pool: 2
Thu Feb 15 16:48:16 2024 : Debug: Thread 2 waiting to be assigned a request
Thu Feb 15 16:48:16 2024 : Debug: Thread spawned new child 3. Total threads in pool: 3
Thu Feb 15 16:48:16 2024 : Debug: Thread 3 waiting to be assigned a request
Thu Feb 15 16:48:16 2024 : Debug: Thread spawned new child 4. Total threads in pool: 4
Thu Feb 15 16:48:16 2024 : Debug: Thread 4 waiting to be assigned a request
Thu Feb 15 16:48:16 2024 : Debug: Thread spawned new child 5. Total threads in pool: 5
Thu Feb 15 16:48:16 2024 : Debug: Thread pool initialized
Thu Feb 15 16:48:16 2024 : Debug: Thread 5 waiting to be assigned a request
Thu Feb 15 16:48:16 2024 : Debug: radiusd: #### Opening IP addresses and Ports ####
Thu Feb 15 16:48:16 2024 : Debug: listen {
Thu Feb 15 16:48:16 2024 : Debug: type = "auth+acct"
Thu Feb 15 16:48:16 2024 : Debug: virtual_server = "default"
Thu Feb 15 16:48:16 2024 : Debug: ipaddr = *
Thu Feb 15 16:48:16 2024 : Debug: port = 2083
Thu Feb 15 16:48:16 2024 : Debug: proto = "tcp"
Thu Feb 15 16:48:16 2024 : Debug: tls {
Thu Feb 15 16:48:16 2024 : Debug: verify_depth = 0
Thu Feb 15 16:48:16 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:48:16 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:48:16 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:48:16 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:48:16 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:48:16 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:48:16 2024 : Debug: fragment_size = 8192
Thu Feb 15 16:48:16 2024 : Debug: include_length = yes
Thu Feb 15 16:48:16 2024 : Debug: auto_chain = yes
Thu Feb 15 16:48:16 2024 : Debug: check_crl = no
Thu Feb 15 16:48:16 2024 : Debug: check_all_crl = no
Thu Feb 15 16:48:16 2024 : Debug: ca_path_reload_interval = 3600
Thu Feb 15 16:48:16 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:48:16 2024 : Debug: cipher_server_preference = no
Thu Feb 15 16:48:16 2024 : Debug: require_client_cert = yes
Thu Feb 15 16:48:16 2024 : Debug: reject_unknown_intermediate_ca = no
Thu Feb 15 16:48:16 2024 : Debug: ecdh_curve = "prime256v1"
Thu Feb 15 16:48:16 2024 : Debug: tls_max_version = "1.3"
Thu Feb 15 16:48:16 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:48:16 2024 : Debug: cache {
Thu Feb 15 16:48:16 2024 : Debug: enable = no
Thu Feb 15 16:48:16 2024 : Debug: lifetime = 24
Thu Feb 15 16:48:16 2024 : Debug: max_entries = 255
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: verify {
Thu Feb 15 16:48:16 2024 : Debug: skip_if_ocsp_ok = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: ocsp {
Thu Feb 15 16:48:16 2024 : Debug: enable = no
Thu Feb 15 16:48:16 2024 : Debug: override_cert_url = no
Thu Feb 15 16:48:16 2024 : Debug: use_nonce = yes
Thu Feb 15 16:48:16 2024 : Debug: timeout = 0
Thu Feb 15 16:48:16 2024 : Debug: softfail = no
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: check_client_connections = yes
Thu Feb 15 16:48:16 2024 : Debug: limit {
Thu Feb 15 16:48:16 2024 : Debug: max_connections = 16
Thu Feb 15 16:48:16 2024 : Debug: lifetime = 0
Thu Feb 15 16:48:16 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: clients = "radsec"
Thu Feb 15 16:48:16 2024 : Debug: client 127.0.0.1 {
Thu Feb 15 16:48:16 2024 : Debug: ipaddr = *
Thu Feb 15 16:48:16 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:48:16 2024 : Debug: secret = "radsec"
Thu Feb 15 16:48:16 2024 : Debug: proto = "tls"
Thu Feb 15 16:48:16 2024 : Debug: limit {
Thu Feb 15 16:48:16 2024 : Debug: max_connections = 16
Thu Feb 15 16:48:16 2024 : Debug: lifetime = 0
Thu Feb 15 16:48:16 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Adding client 0.0.0.0/0 (0.0.0.0) to prefix tree 0
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: listen {
Thu Feb 15 16:48:16 2024 : Debug: type = "auth"
Thu Feb 15 16:48:16 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:48:16 2024 : Debug: port = 18120
Thu Feb 15 16:48:16 2024 : Debug: }
Thu Feb 15 16:48:16 2024 : Debug: Listening on auth+acct proto tcp address * port 2083 (TLS) bound to server default
Thu Feb 15 16:48:16 2024 : Debug: Listening on auth address 127.0.0.1 port 18120 bound to server inner-tunnel
Thu Feb 15 16:48:16 2024 : Debug: Opened new proxy socket 'proxy address * port 42355'
Thu Feb 15 16:48:16 2024 : Debug: Listening on proxy address * port 42355
Thu Feb 15 16:48:16 2024 : Info: Ready to process requests
Thu Feb 15 16:48:25 2024 : Debug: ... new connection request on TCP socket
Thu Feb 15 16:48:25 2024 : Debug: Listening on auth+acct from client (192.168.215.1, 62881) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:48:25 2024 : Debug: Waking up in 0.6 seconds.
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS -Initiating new session
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Setting verify mode to require certificate from client
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 188
00: 16 03 01 00 b7 01 00 00 b3 03 03 01 00 26 b4 e3
10: e6 a5 cb b6 3d 01 3a 50 89 25 c1 1a be 01 62 b0
20: ce 51 4d f0 88 c5 2d dd a8 0c 9d 00 00 38 c0 2c
30: c0 30 00 9f cc a9 cc a8 cc aa c0 2b c0 2f 00 9e
40: c0 24 c0 28 00 6b c0 23 c0 27 00 67 c0 0a c0 14
50: 00 39 c0 09 c0 13 00 33 00 9d 00 9c 00 3d 00 3c
60: 00 35 00 2f 00 ff 01 00 00 52 00 0b 00 04 03 00
70: 01 02 00 0a 00 0c 00 0a 00 1d 00 17 00 1e 00 19
80: 00 18 00 23 00 00 00 16 00 00 00 17 00 00 00 0d
90: 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08 09
a0: 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01
b0: 03 03 03 01 03 02 04 02 05 02 06 02
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - before SSL initialization (0)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:48:25 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [0] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [1] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [2] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [5] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [8] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES256-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES128-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES256-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES128-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [21] AES256-GCM-SHA384
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [22] AES128-GCM-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [23] AES256-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [24] AES128-SHA256
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [25] AES256-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) [26] AES128-SHA
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHello
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Certificate
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSC] - Server SSLv3/TLS write certificate (23)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerKeyExchange
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSKE] - Server SSLv3/TLS write key exchange (24)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, CertificateRequest
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCR] - Server SSLv3/TLS write certificate request (25)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, ServerHelloDone
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: SSLv3/TLS write server done
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS- got 3034 bytes of data
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:48:25 2024 : Debug: Waking up in 0.6 seconds.
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 2030
00: 16 03 03 05 5e 0b 00 05 5a 00 05 57 00 05 54 30
10: 82 05 50 30 82 03 38 a0 03 02 01 02 02 10 2a ef
20: 75 f0 ea 7f 49 c6 8b 28 78 1d 7a 6a 2f f9 30 0d
30: 06 09 2a 86 48 86 f7 0d 01 01 0b 05 00 30 1e 31
40: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
50: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 1e 17
60: 0d 32 34 30 32 30 38 31 30 34 35 35 39 5a 17 0d
70: 33 34 30 32 30 38 31 30 35 35 35 39 5a 30 1e 31
80: 1c 30 1a 06 03 55 04 03 13 13 42 6f 69 6c 65 72
90: 50 6c 61 74 65 43 75 73 74 6f 6d 65 72 30 82 02
a0: 22 30 0d 06 09 2a 86 48 86 f7 0d 01 01 01 05 00
b0: 03 82 02 0f 00 30 82 02 0a 02 82 02 01 00 c9 92
c0: 48 b1 3d 5d 30 70 c9 15 61 5c 81 28 94 1d 24 5d
d0: ea 39 e5 ed 7b 5f 74 78 67 8d 10 8c 33 71 e5 e1
e0: 09 40 6b 01 fa a3 3b 42 9d 3c 6e 17 07 c7 63 52
f0: 4c 03 b4 24 8f 56 3e be 91 4f 11 0f 59 39 ff 33
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSD] - Server SSLv3/TLS write server done (26)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Certificate
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Creating attributes from client certificate
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-Serial := "2aef75f0ea7f49c68b28781d7a6a2ff9"
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-Expiration := "340208105559Z"
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-Valid-Since := "240208104559Z"
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-Subject := "/CN=BoilerPlate"
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-Issuer := "/CN=BoilerPlate"
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-Common-Name := "BoilerPlate"
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-Subject-Alt-Name-Dns := "radius.BoilerPlate.net"
Thu Feb 15 16:48:25 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Key-Usage += 'Digital Signature, Key Encipherment, Certificate Sign'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-X509v3-Basic-Constraints += "CA:FALSE"
Thu Feb 15 16:48:25 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Subject-Alternative-Name += 'DNS:radius.BoilerPlate.net'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-X509v3-Authority-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Client-Cert-X509v3-Subject-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:48:25 2024 : Warning: Certificate chain - 0 intermediate CA cert(s) untrusted
Thu Feb 15 16:48:25 2024 : Warning: To forbid these certificates see 'reject_unknown_intermediate_ca'
Thu Feb 15 16:48:25 2024 : Warning: (TLS) untrusted certificate with depth [0] subject name /CN=BoilerPlate
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) chain-depth : 0
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) error : 0
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) common name : BoilerPlate
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) subject : /CN=BoilerPlate
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) issuer : /CN=BoilerPlate
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) verify return : 1
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCC] - Server SSLv3/TLS read client certificate (27)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, ClientKeyExchange
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCKE] - Server SSLv3/TLS read client key exchange (28)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, CertificateVerify
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCV] - Server SSLv3/TLS read certificate verify (29)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCCS] - Server SSLv3/TLS read change cipher spec (31)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.2 Handshake, Finished
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRFIN] - Server SSLv3/TLS read finished (32)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 ChangeCipherSpec
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCCS] - Server SSLv3/TLS write change cipher spec (35)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.2 Handshake, Finished
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWFIN] - Server SSLv3/TLS write finished (36)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [SSLOK] - SSL negotiation finished successfully (1)
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS - Connection Established
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Session-Cipher-Suite = "ECDHE-RSA-AES256-GCM-SHA384"
Thu Feb 15 16:48:25 2024 : Debug: (0) TLS-Session-Version = "TLS 1.2"
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) RADIUS/TLS- got 51 bytes of data
Thu Feb 15 16:48:25 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:48:25 2024 : Debug: Waking up in 0.6 seconds.
Thu Feb 15 16:48:26 2024 : Debug: Waking up in 29.4 seconds.
EXIT(2) CALLED src/main/radiusd.c[779]. Last error was: Unknown name "TLS-Client-Cert-X509v3-Subject-Alternative-Name"
Thu Feb 15 16:50:06 2024 : Debug: Server was built with:
Thu Feb 15 16:50:06 2024 : Debug: accounting : yes
Thu Feb 15 16:50:06 2024 : Debug: authentication : yes
Thu Feb 15 16:50:06 2024 : Debug: ascend-binary-attributes : yes
Thu Feb 15 16:50:06 2024 : Debug: coa : yes
Thu Feb 15 16:50:06 2024 : Debug: recv-coa-from-home-server : no
Thu Feb 15 16:50:06 2024 : Debug: control-socket : yes
Thu Feb 15 16:50:06 2024 : Debug: detail : yes
Thu Feb 15 16:50:06 2024 : Debug: dhcp : yes
Thu Feb 15 16:50:06 2024 : Debug: dynamic-clients : yes
Thu Feb 15 16:50:06 2024 : Debug: osfc2 : no
Thu Feb 15 16:50:06 2024 : Debug: proxy : yes
Thu Feb 15 16:50:06 2024 : Debug: regex-pcre : no
Thu Feb 15 16:50:06 2024 : Debug: regex-posix : yes
Thu Feb 15 16:50:06 2024 : Debug: regex-posix-extended : yes
Thu Feb 15 16:50:06 2024 : Debug: session-management : yes
Thu Feb 15 16:50:06 2024 : Debug: stats : yes
Thu Feb 15 16:50:06 2024 : Debug: systemd : no
Thu Feb 15 16:50:06 2024 : Debug: tcp : yes
Thu Feb 15 16:50:06 2024 : Debug: threads : yes
Thu Feb 15 16:50:06 2024 : Debug: tls : yes
Thu Feb 15 16:50:06 2024 : Debug: unlang : yes
Thu Feb 15 16:50:06 2024 : Debug: vmps : yes
Thu Feb 15 16:50:06 2024 : Debug: developer : yes
Thu Feb 15 16:50:06 2024 : Debug: Server core libs:
Thu Feb 15 16:50:06 2024 : Debug: freeradius-server : 3.2.4
Thu Feb 15 16:50:06 2024 : Debug: talloc : 2.3.*
Thu Feb 15 16:50:06 2024 : Debug: ssl : 3.0.0b dev
Thu Feb 15 16:50:06 2024 : Debug: Endianness:
Thu Feb 15 16:50:06 2024 : Debug: little
Thu Feb 15 16:50:06 2024 : Debug: Compilation flags:
Thu Feb 15 16:50:06 2024 : Debug: cppflags :
Thu Feb 15 16:50:06 2024 : Debug: cflags : -I. -Isrc -include src/freeradius-devel/autoconf.h -include src/freeradius-devel/build.h -include src/freeradius-devel/features.h -include src/freeradius-devel/radpaths.h -fno-strict-aliasing -Wno-date-time -g3 -Wall -std=c99 -D_GNU_SOURCE -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wshadow -Wpointer-arith -Wcast-qual -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -W -Wredundant-decls -Wundef -Wformat-y2k -Wno-format-extra-args -Wno-format-zero-length -Wno-cast-align -Wformat-nonliteral -Wformat-security -Wformat=2 -DWITH_VERIFY_PTR=1 -DIS_MODULE=1
Thu Feb 15 16:50:06 2024 : Debug: ldflags :
Thu Feb 15 16:50:06 2024 : Debug: libs : -lcrypto -lssl -ltalloc -latomic -lnsl -lresolv -ldl -lpthread
Thu Feb 15 16:50:06 2024 : Debug:
Thu Feb 15 16:50:06 2024 : Info: FreeRADIUS Version 3.2.4
Thu Feb 15 16:50:06 2024 : Info: Copyright (C) 1999-2023 The FreeRADIUS server project and contributors
Thu Feb 15 16:50:06 2024 : Info: There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
Thu Feb 15 16:50:06 2024 : Info: PARTICULAR PURPOSE
Thu Feb 15 16:50:06 2024 : Info: You may redistribute copies of FreeRADIUS under the terms of the
Thu Feb 15 16:50:06 2024 : Info: GNU General Public License
Thu Feb 15 16:50:06 2024 : Info: For more information about these matters, see the file named COPYRIGHT
Thu Feb 15 16:50:06 2024 : Info: Starting - reading configuration files ...
Thu Feb 15 16:50:06 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary
Thu Feb 15 16:50:06 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary.dhcp
Thu Feb 15 16:50:06 2024 : Debug: including dictionary file /usr/local/share/freeradius/dictionary.vqp
Thu Feb 15 16:50:06 2024 : Debug: including dictionary file /usr/local/etc/raddb/dictionary
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/radiusd.conf
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/proxy.conf
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/clients.conf
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/echo
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/exec
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/expr
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/unix
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/utf8
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:50:06 2024 : Debug: including files in directory /usr/local/etc/raddb/policy.d/
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/abfab-tr
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/accounting
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/canonicalization
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/control
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/cui
Thu Feb 15 16:50:06 2024 : Debug: OPTIMIZING (${policy.cui_require_operator_name} == yes) --> FALSE
Thu Feb 15 16:50:06 2024 : Debug: OPTIMIZING (no == yes) --> FALSE
Thu Feb 15 16:50:06 2024 : Debug: OPTIMIZING (${policy.cui_require_operator_name} == yes) --> FALSE
Thu Feb 15 16:50:06 2024 : Debug: OPTIMIZING (no == yes) --> FALSE
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/debug
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/dhcp
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/eap
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/filter
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/moonshot-targeted-ids
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/operator-name
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/policy.d/rfc7542
Thu Feb 15 16:50:06 2024 : Debug: including files in directory /usr/local/etc/raddb/sites-enabled/
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/tls
Thu Feb 15 16:50:06 2024 : Debug: including configuration file /usr/local/etc/raddb/sites-enabled/inner-tunnel
Thu Feb 15 16:50:06 2024 : Debug: main {
Thu Feb 15 16:50:06 2024 : Debug: security {
Thu Feb 15 16:50:06 2024 : Debug: allow_core_dumps = no
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[567]: The item 'max_attributes' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[584]: The item 'reject_delay' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[604]: The item 'status_server' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[614]: The item 'allow_vulnerable_openssl' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: name = "radiusd"
Thu Feb 15 16:50:06 2024 : Debug: prefix = "/usr/local"
Thu Feb 15 16:50:06 2024 : Debug: localstatedir = "/usr/local/var"
Thu Feb 15 16:50:06 2024 : Debug: logdir = "/usr/local/var/log/radius"
Thu Feb 15 16:50:06 2024 : Debug: run_dir = "/usr/local/var/run/radiusd"
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[97]: The item 'confdir' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[104]: The item 'db_dir' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[138]: The item 'libdir' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[149]: The item 'pidfile' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[203]: The item 'max_request_time' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[222]: The item 'cleanup_delay' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[259]: The item 'hostname_lookups' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[413]: The item 'checkrad' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[633]: The item 'proxy_requests' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: main {
Thu Feb 15 16:50:06 2024 : Debug: name = "radiusd"
Thu Feb 15 16:50:06 2024 : Debug: prefix = "/usr/local"
Thu Feb 15 16:50:06 2024 : Debug: localstatedir = "/usr/local/var"
Thu Feb 15 16:50:06 2024 : Debug: sbindir = "/usr/local/sbin"
Thu Feb 15 16:50:06 2024 : Debug: logdir = "/usr/local/var/log/radius"
Thu Feb 15 16:50:06 2024 : Debug: run_dir = "/usr/local/var/run/radiusd"
Thu Feb 15 16:50:06 2024 : Debug: libdir = "/usr/local/lib"
Thu Feb 15 16:50:06 2024 : Debug: radacctdir = "/usr/local/var/log/radius/radacct"
Thu Feb 15 16:50:06 2024 : Debug: hostname_lookups = no
Thu Feb 15 16:50:06 2024 : Debug: max_request_time = 30
Thu Feb 15 16:50:06 2024 : Debug: proxy_dedup_window = 1
Thu Feb 15 16:50:06 2024 : Debug: cleanup_delay = 5
Thu Feb 15 16:50:06 2024 : Debug: max_requests = 16384
Thu Feb 15 16:50:06 2024 : Debug: postauth_client_lost = no
Thu Feb 15 16:50:06 2024 : Debug: pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
Thu Feb 15 16:50:06 2024 : Debug: checkrad = "/usr/local/sbin/checkrad"
Thu Feb 15 16:50:06 2024 : Debug: debug_level = 0
Thu Feb 15 16:50:06 2024 : Debug: proxy_requests = yes
Thu Feb 15 16:50:06 2024 : Debug: log {
Thu Feb 15 16:50:06 2024 : Debug: stripped_names = no
Thu Feb 15 16:50:06 2024 : Debug: auth = no
Thu Feb 15 16:50:06 2024 : Debug: auth_badpass = no
Thu Feb 15 16:50:06 2024 : Debug: auth_goodpass = no
Thu Feb 15 16:50:06 2024 : Debug: colourise = yes
Thu Feb 15 16:50:06 2024 : Debug: msg_denied = "You are already logged in - access denied"
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[309]: The item 'destination' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[326]: The item 'file' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[334]: The item 'syslog_facility' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: resources {
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: security {
Thu Feb 15 16:50:06 2024 : Debug: max_attributes = 200
Thu Feb 15 16:50:06 2024 : Debug: reject_delay = 1.000000
Thu Feb 15 16:50:06 2024 : Debug: status_server = yes
Thu Feb 15 16:50:06 2024 : Debug: allow_vulnerable_openssl = "no"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[97]: The item 'confdir' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/radiusd.conf[104]: The item 'db_dir' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: radiusd: #### Loading Realms and Home Servers ####
Thu Feb 15 16:50:06 2024 : Debug: proxy server {
Thu Feb 15 16:50:06 2024 : Debug: retry_delay = 5
Thu Feb 15 16:50:06 2024 : Debug: retry_count = 3
Thu Feb 15 16:50:06 2024 : Debug: default_fallback = no
Thu Feb 15 16:50:06 2024 : Debug: dead_time = 120
Thu Feb 15 16:50:06 2024 : Debug: wake_all_if_all_dead = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: home_server localhost {
Thu Feb 15 16:50:06 2024 : Debug: nonblock = no
Thu Feb 15 16:50:06 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:50:06 2024 : Debug: port = 1812
Thu Feb 15 16:50:06 2024 : Debug: type = "auth"
Thu Feb 15 16:50:06 2024 : Debug: secret = "testing123"
Thu Feb 15 16:50:06 2024 : Debug: response_window = 20.000000
Thu Feb 15 16:50:06 2024 : Debug: response_timeouts = 1
Thu Feb 15 16:50:06 2024 : Debug: max_outstanding = 65536
Thu Feb 15 16:50:06 2024 : Debug: zombie_period = 40
Thu Feb 15 16:50:06 2024 : Debug: status_check = "status-server"
Thu Feb 15 16:50:06 2024 : Debug: ping_interval = 30
Thu Feb 15 16:50:06 2024 : Debug: check_interval = 30
Thu Feb 15 16:50:06 2024 : Debug: check_timeout = 4
Thu Feb 15 16:50:06 2024 : Debug: num_answers_to_alive = 3
Thu Feb 15 16:50:06 2024 : Debug: revive_interval = 120
Thu Feb 15 16:50:06 2024 : Debug: limit {
Thu Feb 15 16:50:06 2024 : Debug: max_connections = 16
Thu Feb 15 16:50:06 2024 : Debug: max_requests = 0
Thu Feb 15 16:50:06 2024 : Debug: lifetime = 0
Thu Feb 15 16:50:06 2024 : Debug: idle_timeout = 0
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: coa {
Thu Feb 15 16:50:06 2024 : Debug: irt = 2
Thu Feb 15 16:50:06 2024 : Debug: mrt = 16
Thu Feb 15 16:50:06 2024 : Debug: mrc = 5
Thu Feb 15 16:50:06 2024 : Debug: mrd = 30
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: home_server tls {
Thu Feb 15 16:50:06 2024 : Debug: nonblock = no
Thu Feb 15 16:50:06 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:50:06 2024 : Debug: port = 2083
Thu Feb 15 16:50:06 2024 : Debug: type = "auth"
Thu Feb 15 16:50:06 2024 : Debug: proto = "tcp"
Thu Feb 15 16:50:06 2024 : Debug: secret = "radsec"
Thu Feb 15 16:50:06 2024 : Debug: response_window = 30.000000
Thu Feb 15 16:50:06 2024 : Debug: response_timeouts = 1
Thu Feb 15 16:50:06 2024 : Debug: max_outstanding = 65536
Thu Feb 15 16:50:06 2024 : Debug: zombie_period = 40
Thu Feb 15 16:50:06 2024 : Debug: status_check = "none"
Thu Feb 15 16:50:06 2024 : Debug: ping_interval = 30
Thu Feb 15 16:50:06 2024 : Debug: check_timeout = 4
Thu Feb 15 16:50:06 2024 : Debug: num_answers_to_alive = 3
Thu Feb 15 16:50:06 2024 : Debug: revive_interval = 300
Thu Feb 15 16:50:06 2024 : Debug: limit {
Thu Feb 15 16:50:06 2024 : Debug: max_connections = 16
Thu Feb 15 16:50:06 2024 : Debug: max_requests = 0
Thu Feb 15 16:50:06 2024 : Debug: lifetime = 0
Thu Feb 15 16:50:06 2024 : Debug: idle_timeout = 0
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: coa {
Thu Feb 15 16:50:06 2024 : Debug: irt = 2
Thu Feb 15 16:50:06 2024 : Debug: mrt = 16
Thu Feb 15 16:50:06 2024 : Debug: mrc = 5
Thu Feb 15 16:50:06 2024 : Debug: mrd = 30
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: tls {
Thu Feb 15 16:50:06 2024 : Debug: verify_depth = 0
Thu Feb 15 16:50:06 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:50:06 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:50:06 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/client.pem"
Thu Feb 15 16:50:06 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/client.pem"
Thu Feb 15 16:50:06 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:50:06 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:50:06 2024 : Debug: fragment_size = 8192
Thu Feb 15 16:50:06 2024 : Debug: include_length = yes
Thu Feb 15 16:50:06 2024 : Debug: check_crl = no
Thu Feb 15 16:50:06 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:50:06 2024 : Debug: ca_path_reload_interval = 0
Thu Feb 15 16:50:06 2024 : Debug: ecdh_curve = "prime256v1"
Thu Feb 15 16:50:06 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/sites-enabled/tls[720]: The item 'connect_timeout' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: connect_timeout = 30
Thu Feb 15 16:50:06 2024 : Debug: home_server_pool my_auth_failover {
Thu Feb 15 16:50:06 2024 : Debug: type = fail-over
Thu Feb 15 16:50:06 2024 : Debug: home_server = localhost
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: realm example.com {
Thu Feb 15 16:50:06 2024 : Debug: auth_pool = my_auth_failover
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: realm LOCAL {
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: home_server_pool tls {
Thu Feb 15 16:50:06 2024 : Debug: type = fail-over
Thu Feb 15 16:50:06 2024 : Debug: home_server = tls
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: realm tls {
Thu Feb 15 16:50:06 2024 : Debug: auth_pool = tls
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: radiusd: #### Loading Clients ####
Thu Feb 15 16:50:06 2024 : Debug: client localhost {
Thu Feb 15 16:50:06 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:50:06 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:50:06 2024 : Debug: secret = "testing123"
Thu Feb 15 16:50:06 2024 : Debug: nas_type = "other"
Thu Feb 15 16:50:06 2024 : Debug: proto = "*"
Thu Feb 15 16:50:06 2024 : Debug: limit {
Thu Feb 15 16:50:06 2024 : Debug: max_connections = 16
Thu Feb 15 16:50:06 2024 : Debug: lifetime = 0
Thu Feb 15 16:50:06 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Adding client 127.0.0.1/32 (127.0.0.1) to prefix tree 32
Thu Feb 15 16:50:06 2024 : Debug: client localhost_ipv6 {
Thu Feb 15 16:50:06 2024 : Debug: ipv6addr = ::1
Thu Feb 15 16:50:06 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:50:06 2024 : Debug: secret = "testing123"
Thu Feb 15 16:50:06 2024 : Debug: limit {
Thu Feb 15 16:50:06 2024 : Debug: max_connections = 16
Thu Feb 15 16:50:06 2024 : Debug: lifetime = 0
Thu Feb 15 16:50:06 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Adding client ::1/128 (::1) to prefix tree 128
Thu Feb 15 16:50:06 2024 : Info: Debugger not attached
Thu Feb 15 16:50:06 2024 : Debug: # Creating Auth-Type = eap
Thu Feb 15 16:50:06 2024 : Debug: # Creating Autz-Type = New-TLS-Connection
Thu Feb 15 16:50:06 2024 : Debug: # Creating Auth-Type = MS-CHAP
Thu Feb 15 16:50:06 2024 : Debug: radiusd: #### Instantiating modules ####
Thu Feb 15 16:50:06 2024 : Debug: modules {
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_always, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_always
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "reject" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always reject {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "reject"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "fail" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always fail {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "fail"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "ok" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always ok {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "ok"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "handled" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always handled {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "handled"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "invalid" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always invalid {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "invalid"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "userlock" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always userlock {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "userlock"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "notfound" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always notfound {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "notfound"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "noop" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always noop {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "noop"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "updated" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: always updated {
Thu Feb 15 16:50:06 2024 : Debug: rcode = "updated"
Thu Feb 15 16:50:06 2024 : Debug: simulcount = 0
Thu Feb 15 16:50:06 2024 : Debug: mpp = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_attr_filter, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_attr_filter
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "attr_filter.post-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: attr_filter attr_filter.post-proxy {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/post-proxy"
Thu Feb 15 16:50:06 2024 : Debug: key = "%{Realm}"
Thu Feb 15 16:50:06 2024 : Debug: relaxed = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "attr_filter.pre-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: attr_filter attr_filter.pre-proxy {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/pre-proxy"
Thu Feb 15 16:50:06 2024 : Debug: key = "%{Realm}"
Thu Feb 15 16:50:06 2024 : Debug: relaxed = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "attr_filter.access_reject" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: attr_filter attr_filter.access_reject {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/access_reject"
Thu Feb 15 16:50:06 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:50:06 2024 : Debug: relaxed = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "attr_filter.access_challenge" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: attr_filter attr_filter.access_challenge {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/access_challenge"
Thu Feb 15 16:50:06 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:50:06 2024 : Debug: relaxed = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "attr_filter.accounting_response" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: attr_filter attr_filter.accounting_response {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/accounting_response"
Thu Feb 15 16:50:06 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:50:06 2024 : Debug: relaxed = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "attr_filter.coa" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: attr_filter attr_filter.coa {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/etc/raddb/mods-config/attr_filter/coa"
Thu Feb 15 16:50:06 2024 : Debug: key = "%{User-Name}"
Thu Feb 15 16:50:06 2024 : Debug: relaxed = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_date, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_date
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "date" from file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:50:06 2024 : Debug: date {
Thu Feb 15 16:50:06 2024 : Debug: format = "%b %e %Y %H:%M:%S %Z"
Thu Feb 15 16:50:06 2024 : Debug: utc = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "wispr2date" from file /usr/local/etc/raddb/mods-available/date
Thu Feb 15 16:50:06 2024 : Debug: date wispr2date {
Thu Feb 15 16:50:06 2024 : Debug: format = "%Y-%m-%dT%H:%M:%S"
Thu Feb 15 16:50:06 2024 : Debug: utc = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_detail, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_detail
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "detail" from file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:50:06 2024 : Debug: detail {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"
Thu Feb 15 16:50:06 2024 : Debug: header = "%t"
Thu Feb 15 16:50:06 2024 : Debug: permissions = 384
Thu Feb 15 16:50:06 2024 : Debug: locking = no
Thu Feb 15 16:50:06 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:50:06 2024 : Debug: escape_filenames = no
Thu Feb 15 16:50:06 2024 : Debug: log_packet_header = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "auth_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: detail auth_log {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/auth-detail-%Y%m%d"
Thu Feb 15 16:50:06 2024 : Debug: header = "%t"
Thu Feb 15 16:50:06 2024 : Debug: permissions = 384
Thu Feb 15 16:50:06 2024 : Debug: locking = no
Thu Feb 15 16:50:06 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:50:06 2024 : Debug: escape_filenames = no
Thu Feb 15 16:50:06 2024 : Debug: log_packet_header = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "reply_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: detail reply_log {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/reply-detail-%Y%m%d"
Thu Feb 15 16:50:06 2024 : Debug: header = "%t"
Thu Feb 15 16:50:06 2024 : Debug: permissions = 384
Thu Feb 15 16:50:06 2024 : Debug: locking = no
Thu Feb 15 16:50:06 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:50:06 2024 : Debug: escape_filenames = no
Thu Feb 15 16:50:06 2024 : Debug: log_packet_header = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "pre_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: detail pre_proxy_log {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/pre-proxy-detail-%Y%m%d"
Thu Feb 15 16:50:06 2024 : Debug: header = "%t"
Thu Feb 15 16:50:06 2024 : Debug: permissions = 384
Thu Feb 15 16:50:06 2024 : Debug: locking = no
Thu Feb 15 16:50:06 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:50:06 2024 : Debug: escape_filenames = no
Thu Feb 15 16:50:06 2024 : Debug: log_packet_header = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "post_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: detail post_proxy_log {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/post-proxy-detail-%Y%m%d"
Thu Feb 15 16:50:06 2024 : Debug: header = "%t"
Thu Feb 15 16:50:06 2024 : Debug: permissions = 384
Thu Feb 15 16:50:06 2024 : Debug: locking = no
Thu Feb 15 16:50:06 2024 : Debug: dates_as_integer = no
Thu Feb 15 16:50:06 2024 : Debug: escape_filenames = no
Thu Feb 15 16:50:06 2024 : Debug: log_packet_header = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_eap, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_eap
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "eap" from file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:50:06 2024 : Debug: eap {
Thu Feb 15 16:50:06 2024 : Debug: default_eap_type = "md5"
Thu Feb 15 16:50:06 2024 : Debug: timer_expire = 60
Thu Feb 15 16:50:06 2024 : Debug: max_eap_type = 52
Thu Feb 15 16:50:06 2024 : Debug: ignore_unknown_eap_types = no
Thu Feb 15 16:50:06 2024 : Debug: cisco_accounting_username_bug = no
Thu Feb 15 16:50:06 2024 : Debug: max_sessions = 16384
Thu Feb 15 16:50:06 2024 : Debug: dedup_key = ""
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_pap, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_pap
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "pap" from file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:50:06 2024 : Debug: pap {
Thu Feb 15 16:50:06 2024 : Debug: normalise = yes
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_exec, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_exec
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "echo" from file /usr/local/etc/raddb/mods-available/echo
Thu Feb 15 16:50:06 2024 : Debug: exec echo {
Thu Feb 15 16:50:06 2024 : Debug: wait = yes
Thu Feb 15 16:50:06 2024 : Debug: program = "/bin/echo %{User-Name}"
Thu Feb 15 16:50:06 2024 : Debug: input_pairs = "request"
Thu Feb 15 16:50:06 2024 : Debug: output_pairs = "reply"
Thu Feb 15 16:50:06 2024 : Debug: shell_escape = yes
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "exec" from file /usr/local/etc/raddb/mods-available/exec
Thu Feb 15 16:50:06 2024 : Debug: exec {
Thu Feb 15 16:50:06 2024 : Debug: wait = no
Thu Feb 15 16:50:06 2024 : Debug: input_pairs = "request"
Thu Feb 15 16:50:06 2024 : Debug: shell_escape = yes
Thu Feb 15 16:50:06 2024 : Debug: timeout = 10
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_expiration, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_expiration
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "expiration" from file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_expr, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_expr
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "expr" from file /usr/local/etc/raddb/mods-available/expr
Thu Feb 15 16:50:06 2024 : Debug: expr {
Thu Feb 15 16:50:06 2024 : Debug: safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /äéöüàâæçèéêëîïôœùûüaÿÄÉÖÜßÀÂÆÇÈÉÊËÎÏÔŒÙÛÜŸ"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_logintime, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_logintime
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "logintime" from file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:50:06 2024 : Debug: logintime {
Thu Feb 15 16:50:06 2024 : Debug: minimum_timeout = 60
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_preprocess, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_preprocess
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "preprocess" from file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:50:06 2024 : Debug: preprocess {
Thu Feb 15 16:50:06 2024 : Debug: huntgroups = "/usr/local/etc/raddb/mods-config/preprocess/huntgroups"
Thu Feb 15 16:50:06 2024 : Debug: hints = "/usr/local/etc/raddb/mods-config/preprocess/hints"
Thu Feb 15 16:50:06 2024 : Debug: with_ascend_hack = no
Thu Feb 15 16:50:06 2024 : Debug: ascend_channels_per_line = 23
Thu Feb 15 16:50:06 2024 : Debug: with_ntdomain_hack = no
Thu Feb 15 16:50:06 2024 : Debug: with_specialix_jetstream_hack = no
Thu Feb 15 16:50:06 2024 : Debug: with_cisco_vsa_hack = no
Thu Feb 15 16:50:06 2024 : Debug: with_alvarion_vsa_hack = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_unix, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_unix
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "unix" from file /usr/local/etc/raddb/mods-available/unix
Thu Feb 15 16:50:06 2024 : Debug: unix {
Thu Feb 15 16:50:06 2024 : Debug: radwtmp = "/usr/local/var/log/radius/radwtmp"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Creating attribute Unix-Group
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_utf8, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_utf8
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "utf8" from file /usr/local/etc/raddb/mods-available/utf8
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_linelog, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_linelog
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "linelog" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:50:06 2024 : Debug: linelog {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/var/log/radius/linelog"
Thu Feb 15 16:50:06 2024 : Debug: escape_filenames = no
Thu Feb 15 16:50:06 2024 : Debug: syslog_severity = "info"
Thu Feb 15 16:50:06 2024 : Debug: permissions = 384
Thu Feb 15 16:50:06 2024 : Debug: format = "This is a log message for %{User-Name}"
Thu Feb 15 16:50:06 2024 : Debug: reference = "messages.%{%{reply:Packet-Type}:-default}"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "log_accounting" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:50:06 2024 : Debug: linelog log_accounting {
Thu Feb 15 16:50:06 2024 : Debug: filename = "/usr/local/var/log/radius/linelog-accounting"
Thu Feb 15 16:50:06 2024 : Debug: escape_filenames = no
Thu Feb 15 16:50:06 2024 : Debug: syslog_severity = "info"
Thu Feb 15 16:50:06 2024 : Debug: permissions = 384
Thu Feb 15 16:50:06 2024 : Debug: format = ""
Thu Feb 15 16:50:06 2024 : Debug: reference = "Accounting-Request.%{%{Acct-Status-Type}:-unknown}"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_python3, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_python3
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "python3" from file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:50:06 2024 : Debug: python3 {
Thu Feb 15 16:50:06 2024 : Debug: cext_compat = yes
Thu Feb 15 16:50:06 2024 : Debug: pass_all_vps = no
Thu Feb 15 16:50:06 2024 : Debug: pass_all_vps_dict = no
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/mods-available/python3[18]: The item 'module' is defined, but is unused by the configuration
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Loaded rlm_mschap, checking if it's valid
Thu Feb 15 16:50:06 2024 : Debug: # Loaded module rlm_mschap
Thu Feb 15 16:50:06 2024 : Debug: # Loading module "mschap" from file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:50:06 2024 : Debug: mschap {
Thu Feb 15 16:50:06 2024 : Debug: use_mppe = yes
Thu Feb 15 16:50:06 2024 : Debug: require_encryption = no
Thu Feb 15 16:50:06 2024 : Debug: require_strong = no
Thu Feb 15 16:50:06 2024 : Debug: with_ntdomain_hack = yes
Thu Feb 15 16:50:06 2024 : Debug: passchange {
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: allow_retry = yes
Thu Feb 15 16:50:06 2024 : Debug: winbind_retry_with_normalised_username = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: instantiate {
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "reject" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "fail" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "ok" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "handled" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "invalid" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "userlock" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "notfound" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "noop" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "updated" from file /usr/local/etc/raddb/mods-available/always
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "attr_filter.post-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/post-proxy
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "attr_filter.pre-proxy" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/pre-proxy
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "attr_filter.access_reject" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/access_reject
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "attr_filter.access_challenge" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/access_challenge
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "attr_filter.accounting_response" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/accounting_response
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "attr_filter.coa" from file /usr/local/etc/raddb/mods-available/attr_filter
Thu Feb 15 16:50:06 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/attr_filter/coa
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "detail" from file /usr/local/etc/raddb/mods-available/detail
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "auth_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: rlm_detail (auth_log): 'User-Password' suppressed, will not appear in detail output
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "reply_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "pre_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "post_proxy_log" from file /usr/local/etc/raddb/mods-available/detail.log
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "eap" from file /usr/local/etc/raddb/mods-available/eap
Thu Feb 15 16:50:06 2024 : Debug: # Linked to sub-module rlm_eap_md5
Thu Feb 15 16:50:06 2024 : Debug: # Linked to sub-module rlm_eap_tls
Thu Feb 15 16:50:06 2024 : Debug: tls {
Thu Feb 15 16:50:06 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: tls-config tls-common {
Thu Feb 15 16:50:06 2024 : Debug: verify_depth = 0
Thu Feb 15 16:50:06 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:50:06 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:50:06 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:50:06 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:50:06 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:50:06 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:50:06 2024 : Debug: fragment_size = 1024
Thu Feb 15 16:50:06 2024 : Debug: include_length = yes
Thu Feb 15 16:50:06 2024 : Debug: auto_chain = yes
Thu Feb 15 16:50:06 2024 : Debug: check_crl = no
Thu Feb 15 16:50:06 2024 : Debug: check_all_crl = no
Thu Feb 15 16:50:06 2024 : Debug: ca_path_reload_interval = 0
Thu Feb 15 16:50:06 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:50:06 2024 : Debug: cipher_server_preference = no
Thu Feb 15 16:50:06 2024 : Debug: reject_unknown_intermediate_ca = no
Thu Feb 15 16:50:06 2024 : Debug: ecdh_curve = ""
Thu Feb 15 16:50:06 2024 : Debug: tls_max_version = "1.2"
Thu Feb 15 16:50:06 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:50:06 2024 : Debug: cache {
Thu Feb 15 16:50:06 2024 : Debug: enable = no
Thu Feb 15 16:50:06 2024 : Debug: lifetime = 24
Thu Feb 15 16:50:06 2024 : Debug: max_entries = 255
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: verify {
Thu Feb 15 16:50:06 2024 : Debug: skip_if_ocsp_ok = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: ocsp {
Thu Feb 15 16:50:06 2024 : Debug: enable = no
Thu Feb 15 16:50:06 2024 : Debug: override_cert_url = yes
Thu Feb 15 16:50:06 2024 : Debug: url = "http://127.0.0.1/ocsp/"
Thu Feb 15 16:50:06 2024 : Debug: use_nonce = yes
Thu Feb 15 16:50:06 2024 : Debug: timeout = 0
Thu Feb 15 16:50:06 2024 : Debug: softfail = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Linked to sub-module rlm_eap_ttls
Thu Feb 15 16:50:06 2024 : Debug: ttls {
Thu Feb 15 16:50:06 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:50:06 2024 : Debug: default_eap_type = "md5"
Thu Feb 15 16:50:06 2024 : Debug: copy_request_to_tunnel = no
Thu Feb 15 16:50:06 2024 : Debug: use_tunneled_reply = no
Thu Feb 15 16:50:06 2024 : Debug: virtual_server = "inner-tunnel"
Thu Feb 15 16:50:06 2024 : Debug: include_length = yes
Thu Feb 15 16:50:06 2024 : Debug: require_client_cert = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: tls: Using cached TLS configuration from previous invocation
Thu Feb 15 16:50:06 2024 : Debug: # Linked to sub-module rlm_eap_peap
Thu Feb 15 16:50:06 2024 : Debug: peap {
Thu Feb 15 16:50:06 2024 : Debug: tls = "tls-common"
Thu Feb 15 16:50:06 2024 : Debug: default_eap_type = "mschapv2"
Thu Feb 15 16:50:06 2024 : Debug: copy_request_to_tunnel = no
Thu Feb 15 16:50:06 2024 : Debug: use_tunneled_reply = no
Thu Feb 15 16:50:06 2024 : Debug: proxy_tunneled_request_as_eap = yes
Thu Feb 15 16:50:06 2024 : Debug: virtual_server = "inner-tunnel"
Thu Feb 15 16:50:06 2024 : Debug: soh = no
Thu Feb 15 16:50:06 2024 : Debug: require_client_cert = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: tls: Using cached TLS configuration from previous invocation
Thu Feb 15 16:50:06 2024 : Debug: # Linked to sub-module rlm_eap_mschapv2
Thu Feb 15 16:50:06 2024 : Debug: mschapv2 {
Thu Feb 15 16:50:06 2024 : Debug: with_ntdomain_hack = no
Thu Feb 15 16:50:06 2024 : Debug: send_error = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "pap" from file /usr/local/etc/raddb/mods-available/pap
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "expiration" from file /usr/local/etc/raddb/mods-available/expiration
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "logintime" from file /usr/local/etc/raddb/mods-available/logintime
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "preprocess" from file /usr/local/etc/raddb/mods-available/preprocess
Thu Feb 15 16:50:06 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/preprocess/huntgroups
Thu Feb 15 16:50:06 2024 : Debug: reading pairlist file /usr/local/etc/raddb/mods-config/preprocess/hints
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "linelog" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "log_accounting" from file /usr/local/etc/raddb/mods-available/linelog
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "python3" from file /usr/local/etc/raddb/mods-available/python3
Thu Feb 15 16:50:06 2024 : Info: Python version: 3.10.12 (main, Nov 20 2023, 15:14:05) [GCC 11.4.0]
Thu Feb 15 16:50:06 2024 : Debug: # Instantiating module "mschap" from file /usr/local/etc/raddb/mods-available/mschap
Thu Feb 15 16:50:06 2024 : Debug: rlm_mschap (mschap): using internal authentication
Thu Feb 15 16:50:06 2024 : Debug: } # modules
Thu Feb 15 16:50:06 2024 : Debug: radiusd: #### Loading Virtual Servers ####
Thu Feb 15 16:50:06 2024 : Debug: server { # from file /usr/local/etc/raddb/radiusd.conf
Thu Feb 15 16:50:06 2024 : Debug: } # server
Thu Feb 15 16:50:06 2024 : Debug: server default { # from file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:50:06 2024 : Debug: # Loading authenticate {...}
Thu Feb 15 16:50:06 2024 : Debug: Compiling Auth-Type eap for attr Auth-Type
Thu Feb 15 16:50:06 2024 : Debug: # Loading authorize {...}
Thu Feb 15 16:50:06 2024 : Debug: eap
Thu Feb 15 16:50:06 2024 : Debug: auth_log
Thu Feb 15 16:50:06 2024 : Debug: Compiling Autz-Type New-TLS-Connection for attr Autz-Type
Thu Feb 15 16:50:06 2024 : Debug: # Loading preacct {...}
Thu Feb 15 16:50:06 2024 : Debug: preprocess
Thu Feb 15 16:50:06 2024 : Debug: policy acct_unique {
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &Tmp-String-9 := "ai:"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: if ("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/ && "%{string:&Class}" =~ /^ai:([0-9a-f]{32})/) {
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &Acct-Unique-Session-Id := "%{md5:%{1},%{Acct-Session-ID}}"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: else {
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &Acct-Unique-Session-Id := "%{md5:%{User-Name},%{Acct-Session-ID},%{%{NAS-IPv6-Address}:-%{NAS-IP-Address}},%{NAS-Identifier},%{NAS-Port-ID},%{NAS-Port}}"
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &Tmp-String-9 !* ANY
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: # Loading accounting {...}
Thu Feb 15 16:50:06 2024 : Debug: detail
Thu Feb 15 16:50:06 2024 : Debug: unix
Thu Feb 15 16:50:06 2024 : Debug: exec
Thu Feb 15 16:50:06 2024 : Debug: # Loading post-proxy {...}
Thu Feb 15 16:50:06 2024 : Debug: eap
Thu Feb 15 16:50:06 2024 : Debug: # Loading post-auth {...}
Thu Feb 15 16:50:06 2024 : Debug: if (&EAP-Type == TLS) {
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &TLS-OCSP-Cert-Valid := &session-state:TLS-OCSP-Cert-Valid
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: python3
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &reply:[*] += &session-state:[*]
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: auth_log
Thu Feb 15 16:50:06 2024 : Debug: exec
Thu Feb 15 16:50:06 2024 : Debug: policy remove_reply_message_if_eap {
Thu Feb 15 16:50:06 2024 : Debug: if (&reply:EAP-Message && &reply:Reply-Message) {
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &reply:Reply-Message !* ANY
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: else {
Thu Feb 15 16:50:06 2024 : Debug: noop
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Compiling Post-Auth-Type REJECT for attr Post-Auth-Type
Thu Feb 15 16:50:06 2024 : Debug: Compiling Post-Auth-Type Challenge for attr Post-Auth-Type
Thu Feb 15 16:50:06 2024 : Debug: } # server default
Thu Feb 15 16:50:06 2024 : Debug: server inner-tunnel { # from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
Thu Feb 15 16:50:06 2024 : Debug: # Loading authenticate {...}
Thu Feb 15 16:50:06 2024 : Debug: Compiling Auth-Type MS-CHAP for attr Auth-Type
Thu Feb 15 16:50:06 2024 : Debug: Compiling Auth-Type eap for attr Auth-Type
Thu Feb 15 16:50:06 2024 : Debug: # Loading authorize {...}
Thu Feb 15 16:50:06 2024 : Debug: python3
Thu Feb 15 16:50:06 2024 : Debug: expiration
Thu Feb 15 16:50:06 2024 : Debug: logintime
Thu Feb 15 16:50:06 2024 : Debug: # Loading post-proxy {...}
Thu Feb 15 16:50:06 2024 : Debug: eap
Thu Feb 15 16:50:06 2024 : Debug: # Loading post-auth {...}
Thu Feb 15 16:50:06 2024 : Debug: python3
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/sites-enabled/inner-tunnel[46]: Please change attribute reference to '&User-Name := ...'
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &outer.request:User-Name := &User-Name
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Warning: /usr/local/etc/raddb/sites-enabled/inner-tunnel[49]: Please change attribute reference to '&User-Name := ...'
Thu Feb 15 16:50:06 2024 : Debug: update {
Thu Feb 15 16:50:06 2024 : Debug: &outer.reply:User-Name := &User-Name
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Compiling Post-Auth-Type REJECT for attr Post-Auth-Type
Thu Feb 15 16:50:06 2024 : Debug: } # server inner-tunnel
Thu Feb 15 16:50:06 2024 : Debug: thread pool {
Thu Feb 15 16:50:06 2024 : Debug: start_servers = 5
Thu Feb 15 16:50:06 2024 : Debug: max_servers = 32
Thu Feb 15 16:50:06 2024 : Debug: min_spare_servers = 3
Thu Feb 15 16:50:06 2024 : Debug: max_spare_servers = 10
Thu Feb 15 16:50:06 2024 : Debug: max_requests_per_server = 0
Thu Feb 15 16:50:06 2024 : Debug: cleanup_delay = 5
Thu Feb 15 16:50:06 2024 : Debug: max_queue_size = 65536
Thu Feb 15 16:50:06 2024 : Debug: auto_limit_acct = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Thread spawned new child 1. Total threads in pool: 1
Thu Feb 15 16:50:06 2024 : Debug: Thread 1 waiting to be assigned a request
Thu Feb 15 16:50:06 2024 : Debug: Thread spawned new child 2. Total threads in pool: 2
Thu Feb 15 16:50:06 2024 : Debug: Thread 2 waiting to be assigned a request
Thu Feb 15 16:50:06 2024 : Debug: Thread spawned new child 3. Total threads in pool: 3
Thu Feb 15 16:50:06 2024 : Debug: Thread spawned new child 4. Total threads in pool: 4
Thu Feb 15 16:50:06 2024 : Debug: Thread 3 waiting to be assigned a request
Thu Feb 15 16:50:06 2024 : Debug: Thread 4 waiting to be assigned a request
Thu Feb 15 16:50:06 2024 : Debug: Thread spawned new child 5. Total threads in pool: 5
Thu Feb 15 16:50:06 2024 : Debug: Thread pool initialized
Thu Feb 15 16:50:06 2024 : Debug: radiusd: #### Opening IP addresses and Ports ####
Thu Feb 15 16:50:06 2024 : Debug: Thread 5 waiting to be assigned a request
Thu Feb 15 16:50:06 2024 : Debug: listen {
Thu Feb 15 16:50:06 2024 : Debug: type = "auth+acct"
Thu Feb 15 16:50:06 2024 : Debug: virtual_server = "default"
Thu Feb 15 16:50:06 2024 : Debug: ipaddr = *
Thu Feb 15 16:50:06 2024 : Debug: port = 2083
Thu Feb 15 16:50:06 2024 : Debug: proto = "tcp"
Thu Feb 15 16:50:06 2024 : Debug: tls {
Thu Feb 15 16:50:06 2024 : Debug: verify_depth = 0
Thu Feb 15 16:50:06 2024 : Debug: ca_path = "/usr/local/etc/raddb/certs"
Thu Feb 15 16:50:06 2024 : Debug: pem_file_type = yes
Thu Feb 15 16:50:06 2024 : Debug: private_key_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:50:06 2024 : Debug: certificate_file = "/usr/local/etc/raddb/certs/server.pem"
Thu Feb 15 16:50:06 2024 : Debug: ca_file = "/usr/local/etc/raddb/certs/ca.pem"
Thu Feb 15 16:50:06 2024 : Debug: private_key_password = "whatever"
Thu Feb 15 16:50:06 2024 : Debug: fragment_size = 8192
Thu Feb 15 16:50:06 2024 : Debug: include_length = yes
Thu Feb 15 16:50:06 2024 : Debug: auto_chain = yes
Thu Feb 15 16:50:06 2024 : Debug: check_crl = no
Thu Feb 15 16:50:06 2024 : Debug: check_all_crl = no
Thu Feb 15 16:50:06 2024 : Debug: ca_path_reload_interval = 3600
Thu Feb 15 16:50:06 2024 : Debug: cipher_list = "DEFAULT"
Thu Feb 15 16:50:06 2024 : Debug: cipher_server_preference = no
Thu Feb 15 16:50:06 2024 : Debug: require_client_cert = yes
Thu Feb 15 16:50:06 2024 : Debug: reject_unknown_intermediate_ca = no
Thu Feb 15 16:50:06 2024 : Debug: ecdh_curve = "prime256v1"
Thu Feb 15 16:50:06 2024 : Debug: tls_max_version = "1.3"
Thu Feb 15 16:50:06 2024 : Debug: tls_min_version = "1.2"
Thu Feb 15 16:50:06 2024 : Debug: cache {
Thu Feb 15 16:50:06 2024 : Debug: enable = no
Thu Feb 15 16:50:06 2024 : Debug: lifetime = 24
Thu Feb 15 16:50:06 2024 : Debug: max_entries = 255
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: verify {
Thu Feb 15 16:50:06 2024 : Debug: skip_if_ocsp_ok = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: ocsp {
Thu Feb 15 16:50:06 2024 : Debug: enable = no
Thu Feb 15 16:50:06 2024 : Debug: override_cert_url = no
Thu Feb 15 16:50:06 2024 : Debug: use_nonce = yes
Thu Feb 15 16:50:06 2024 : Debug: timeout = 0
Thu Feb 15 16:50:06 2024 : Debug: softfail = no
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: check_client_connections = yes
Thu Feb 15 16:50:06 2024 : Debug: limit {
Thu Feb 15 16:50:06 2024 : Debug: max_connections = 16
Thu Feb 15 16:50:06 2024 : Debug: lifetime = 0
Thu Feb 15 16:50:06 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: clients = "radsec"
Thu Feb 15 16:50:06 2024 : Debug: client 127.0.0.1 {
Thu Feb 15 16:50:06 2024 : Debug: ipaddr = *
Thu Feb 15 16:50:06 2024 : Debug: require_message_authenticator = no
Thu Feb 15 16:50:06 2024 : Debug: secret = "radsec"
Thu Feb 15 16:50:06 2024 : Debug: proto = "tls"
Thu Feb 15 16:50:06 2024 : Debug: limit {
Thu Feb 15 16:50:06 2024 : Debug: max_connections = 16
Thu Feb 15 16:50:06 2024 : Debug: lifetime = 0
Thu Feb 15 16:50:06 2024 : Debug: idle_timeout = 30
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Adding client 0.0.0.0/0 (0.0.0.0) to prefix tree 0
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: listen {
Thu Feb 15 16:50:06 2024 : Debug: type = "auth"
Thu Feb 15 16:50:06 2024 : Debug: ipaddr = 127.0.0.1
Thu Feb 15 16:50:06 2024 : Debug: port = 18120
Thu Feb 15 16:50:06 2024 : Debug: }
Thu Feb 15 16:50:06 2024 : Debug: Listening on auth+acct proto tcp address * port 2083 (TLS) bound to server default
Thu Feb 15 16:50:06 2024 : Debug: Listening on auth address 127.0.0.1 port 18120 bound to server inner-tunnel
Thu Feb 15 16:50:06 2024 : Debug: Opened new proxy socket 'proxy address * port 55384'
Thu Feb 15 16:50:06 2024 : Debug: Listening on proxy address * port 55384
Thu Feb 15 16:50:06 2024 : Info: Ready to process requests
Thu Feb 15 16:50:09 2024 : Debug: ... new connection request on TCP socket
Thu Feb 15 16:50:09 2024 : Debug: Listening on auth+acct from client (192.168.215.1, 62890) -> (*, 2083, virtual-server=default)
Thu Feb 15 16:50:09 2024 : Debug: Waking up in 0.9 seconds.
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS -Initiating new session
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Setting verify mode to require certificate from client
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 293
00: 16 03 01 01 20 01 00 01 1c 03 03 01 d7 c1 9c e8
10: ff f0 96 93 33 97 c9 de 1c ca 70 d5 3a 54 23 13
20: 4f d4 f9 0c 8c a3 1a 11 e7 a0 05 20 a5 b9 f8 93
30: a4 37 22 4d e0 b6 24 2d de 56 33 db 4d f6 28 49
40: e9 90 65 5e 6e eb 97 a5 f6 eb 13 02 00 3e 13 02
50: 13 03 13 01 c0 2c c0 30 00 9f cc a9 cc a8 cc aa
60: c0 2b c0 2f 00 9e c0 24 c0 28 00 6b c0 23 c0 27
70: 00 67 c0 0a c0 14 00 39 c0 09 c0 13 00 33 00 9d
80: 00 9c 00 3d 00 3c 00 35 00 2f 00 ff 01 00 00 95
90: 00 0b 00 04 03 00 01 02 00 0a 00 16 00 14 00 1d
a0: 00 17 00 1e 00 19 00 18 01 00 01 01 01 02 01 03
b0: 01 04 00 23 00 00 00 16 00 00 00 17 00 00 00 0d
c0: 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08 09
d0: 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06 01
e0: 03 03 03 01 03 02 04 02 05 02 06 02 00 2b 00 05
f0: 04 03 04 03 03 00 2d 00 02 01 01 00 33 00 26 00
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - before SSL initialization (0)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [PINIT] - Server before SSL initialization (0)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:50:09 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [24] AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [25] AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [26] AES256-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [27] AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [28] AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [29] AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.3 Handshake, ServerHello
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.3 ChangeCipherSpec
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCCS] - Server SSLv3/TLS write change cipher spec (35)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TED] - Server TLSv1.3 early data (46)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: TLSv1.3 early data
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS- got 99 bytes of data
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:50:09 2024 : Debug: Waking up in 0.9 seconds.
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 332
00: 14 03 03 00 01 01 16 03 03 01 41 01 00 01 3d 03
10: 03 01 d7 c1 9c e8 ff f0 96 93 33 97 c9 de 1c ca
20: 70 d5 3a 54 23 13 4f d4 f9 0c 8c a3 1a 11 e7 a0
30: 05 20 a5 b9 f8 93 a4 37 22 4d e0 b6 24 2d de 56
40: 33 db 4d f6 28 49 e9 90 65 5e 6e eb 97 a5 f6 eb
50: 13 02 00 3e 13 02 13 03 13 01 c0 2c c0 30 00 9f
60: cc a9 cc a8 cc aa c0 2b c0 2f 00 9e c0 24 c0 28
70: 00 6b c0 23 c0 27 00 67 c0 0a c0 14 00 39 c0 09
80: c0 13 00 33 00 9d 00 9c 00 3d 00 3c 00 35 00 2f
90: 00 ff 01 00 00 b6 00 0b 00 04 03 00 01 02 00 0a
a0: 00 16 00 14 00 1d 00 17 00 1e 00 19 00 18 01 00
b0: 01 01 01 02 01 03 01 04 00 23 00 00 00 16 00 00
c0: 00 17 00 00 00 0d 00 2a 00 28 04 03 05 03 06 03
d0: 08 07 08 08 08 09 08 0a 08 0b 08 04 08 05 08 06
e0: 04 01 05 01 06 01 03 03 03 01 03 02 04 02 05 02
f0: 06 02 00 2b 00 05 04 03 04 03 03 00 2d 00 02 01
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TED] - Server TLSv1.3 early data (46)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, ClientHello
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCH] - Server SSLv3/TLS read client hello (20)
Thu Feb 15 16:50:09 2024 : Debug: (0) Server preferred ciphers (by priority)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [24] RSA-PSK-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [25] DHE-PSK-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [26] RSA-PSK-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [27] DHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [28] ECDHE-PSK-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [29] AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [30] PSK-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [31] PSK-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [32] RSA-PSK-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [33] DHE-PSK-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [34] AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [35] PSK-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [36] AES256-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [37] AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [38] ECDHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [39] ECDHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [40] SRP-RSA-AES-256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [41] SRP-AES-256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [42] RSA-PSK-AES256-CBC-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [43] DHE-PSK-AES256-CBC-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [44] RSA-PSK-AES256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [45] DHE-PSK-AES256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [46] AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [47] PSK-AES256-CBC-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [48] PSK-AES256-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [49] ECDHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [50] ECDHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [51] SRP-RSA-AES-128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [52] SRP-AES-128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [53] RSA-PSK-AES128-CBC-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [54] DHE-PSK-AES128-CBC-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [55] RSA-PSK-AES128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [56] DHE-PSK-AES128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [57] AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [58] PSK-AES128-CBC-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [59] PSK-AES128-CBC-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Client preferred ciphers (by priority)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [0] TLS_AES_256_GCM_SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [1] TLS_CHACHA20_POLY1305_SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [2] TLS_AES_128_GCM_SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [3] ECDHE-ECDSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [4] ECDHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [5] DHE-RSA-AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [6] ECDHE-ECDSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [7] ECDHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [8] DHE-RSA-CHACHA20-POLY1305
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [9] ECDHE-ECDSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [10] ECDHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [11] DHE-RSA-AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [12] ECDHE-ECDSA-AES256-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [13] ECDHE-RSA-AES256-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [14] DHE-RSA-AES256-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [15] ECDHE-ECDSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [16] ECDHE-RSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [17] DHE-RSA-AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [18] ECDHE-ECDSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [19] ECDHE-RSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [20] DHE-RSA-AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [21] ECDHE-ECDSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [22] ECDHE-RSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [23] DHE-RSA-AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [24] AES256-GCM-SHA384
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [25] AES128-GCM-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [26] AES256-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [27] AES128-SHA256
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [28] AES256-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) [29] AES128-SHA
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.3 Handshake, ServerHello
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSH] - Server SSLv3/TLS write server hello (22)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.3 Handshake, EncryptedExtensions
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWEE] - Server TLSv1.3 write encrypted extensions (37)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.3 Handshake, CertificateRequest
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWCR] - Server SSLv3/TLS write certificate request (25)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.3 Handshake, Certificate
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSC] - Server SSLv3/TLS write certificate (23)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.3 Handshake, CertificateVerify
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWSCV] - Server TLSv1.3 write server certificate verify (40)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - send TLS 1.3 Handshake, Finished
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TWFIN] - Server SSLv3/TLS write finished (36)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TED] - Server TLSv1.3 early data (46)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Server : Need to read more data: TLSv1.3 early data
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - In Handshake Phase
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS- got 3207 bytes of data
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) Writing to socket 11
Thu Feb 15 16:50:09 2024 : Debug: Waking up in 0.9 seconds.
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) Reading from socket 11
READ FROM SSL 2015
00: 17 03 03 05 72 cb c4 19 f7 2d 33 a0 75 04 94 1e
10: 6c a6 ad b4 27 f3 9c c7 38 1e 05 8b 6b 87 01 f8
20: ea 74 21 5e e7 09 3b fa 34 5f 5d 53 3c 1f c6 c2
30: 3b 4b 0f 47 cc e4 49 d4 67 95 ee 91 7e 26 87 e9
40: f4 45 47 3a ed 32 92 a5 14 0a c7 49 47 c7 a6 b1
50: b9 ea ec 6f 26 6d b7 0f 63 37 39 54 25 23 14 f9
60: 85 81 a9 01 d7 80 d2 f8 d1 35 2e f1 46 32 9d 6b
70: 0e ef c4 f4 a2 af 7e 8a 3c 75 f0 3d 34 95 5b 34
80: 02 21 bf de 3b 19 50 87 4c 25 81 fe 71 09 71 b8
90: 55 af 77 2f c0 8c 72 5a 70 a0 6e 08 09 77 19 66
a0: 06 12 c6 eb 9e b1 c6 b6 54 f2 9c 8e 5a f6 65 22
b0: 41 1a 81 1f 9d 9e ad e7 ea cb ab 03 b8 b2 70 e1
c0: eb a2 62 a4 dc b1 db 17 8d 1b 8d 7a cc 90 9a 7e
d0: 96 df 9b ad d7 fa 77 2b de 93 b0 cd c7 3f da a5
e0: f0 6e 4f d1 d4 a8 f6 76 d4 e8 e7 e3 d5 c8 2c 9c
f0: 2c ae a7 02 f9 e5 65 af dd 5d 44 03 d4 bc 90 41
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TED] - Server TLSv1.3 early data (46)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, Certificate
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Creating attributes from client certificate
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-Serial := "2aef75f0ea7f49c68b28781d7a6a2ff9"
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-Expiration := "340208105559Z"
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-Valid-Since := "240208104559Z"
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-Subject := "/CN=BoilerPlate"
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-Issuer := "/CN=BoilerPlate"
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-Common-Name := "BoilerPlate"
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-Subject-Alt-Name-Dns := "radius.BoilerPlate.net"
Thu Feb 15 16:50:09 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Key-Usage += 'Digital Signature, Key Encipherment, Certificate Sign'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-X509v3-Basic-Constraints += "CA:FALSE"
Thu Feb 15 16:50:09 2024 : Debug: (0) Skipping TLS-Client-Cert-X509v3-Subject-Alternative-Name += 'DNS:radius.BoilerPlate.net'. Please check that both the attribute and value are defined in the dictionaries
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-X509v3-Authority-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Client-Cert-X509v3-Subject-Key-Identifier += "73:D2:45:9F:1A:5B:BB:04:31:0D:2B:52:A8:66:F9:72:EB:12:D1:54"
Thu Feb 15 16:50:09 2024 : Warning: Certificate chain - 0 intermediate CA cert(s) untrusted
Thu Feb 15 16:50:09 2024 : Warning: To forbid these certificates see 'reject_unknown_intermediate_ca'
Thu Feb 15 16:50:09 2024 : Warning: (TLS) untrusted certificate with depth [0] subject name /CN=BoilerPlate
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) chain-depth : 0
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) error : 0
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) common name : BoilerPlate
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) subject : /CN=BoilerPlate
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) issuer : /CN=BoilerPlate
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) verify return : 1
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCC] - Server SSLv3/TLS read client certificate (27)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, CertificateVerify
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRCV] - Server SSLv3/TLS read certificate verify (29)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - recv TLS 1.3 Handshake, Finished
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [TRFIN] - Server SSLv3/TLS read finished (32)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Handshake state [SSLOK] - SSL negotiation finished successfully (1)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Connection Established
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Session-Cipher-Suite = "TLS_AES_256_GCM_SHA384"
Thu Feb 15 16:50:09 2024 : Debug: (0) TLS-Session-Version = "TLS 1.3"
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) RADIUS/TLS - Application data.
Thu Feb 15 16:50:09 2024 : Debug: Threads: total/active/spare threads = 5/0/5
Thu Feb 15 16:50:09 2024 : Debug: Thread 4 got semaphore
Thu Feb 15 16:50:09 2024 : Debug: Thread 4 handling request 0, (1 handled so far)
Thu Feb 15 16:50:09 2024 : Debug: (0) (TLS) Checking connection to see if it is authorized.
Thu Feb 15 16:50:09 2024 : Debug: (0) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
Thu Feb 15 16:50:09 2024 : Debug: (0) Autz-Type New-TLS-Connection {
Thu Feb 15 16:50:09 2024 : Debug: (0) modsingle[authorize]: calling fail (rlm_always)
Thu Feb 15 16:50:09 2024 : Debug: (0) modsingle[authorize]: returned from fail (rlm_always)
Thu Feb 15 16:50:09 2024 : Debug: (0) [fail] = fail
Thu Feb 15 16:50:09 2024 : Debug: (0) } # Autz-Type New-TLS-Connection = fail
Thu Feb 15 16:50:09 2024 : WARNING: (0) (TLS) Connection is not authorized - closing TCP socket.
Thu Feb 15 16:50:09 2024 : Debug: (0) Sent Access-Reject Id 4294967295 from 0.0.0.0:2083 to 192.168.215.1:62890 length 0
Thu Feb 15 16:50:09 2024 : Debug: (0) Finished request
Thu Feb 15 16:50:09 2024 : Debug: Thread 4 waiting to be assigned a request
Thu Feb 15 16:50:09 2024 : Debug: Waking up in 0.3 seconds.
Thu Feb 15 16:50:09 2024 : Debug: Waking up in 0.6 seconds.
Thu Feb 15 16:50:10 2024 : Debug: Waking up in 4.0 seconds.
EXIT(2) CALLED src/main/radiusd.c[779]. Last error was: Unknown name "TLS-Client-Cert-X509v3-Subject-Alternative-Name"
```
> On 15. Feb 2024, at 17:32, Alan DeKok <aland at deployingradius.com> wrote:
>
> On Feb 15, 2024, at 10:33 AM, nabble at felix.world wrote:
>> As i was not able to find the following in the documentation I assume that it’s a bug but may I have overlooked something.
>
> It should work. :(
>
>> And I can see that the Autz-Type gets complied on server start. But the section will only get called if TLS 1.3 was used. For TLS 1.2 it just doesn’t see or call it.
>
> For this issue, we'll need the debug logs at a higher level (-Xx) for the TLS 1.2 connection. It should print out what it's doing as it goes through the TLS state machine.
>
> That will help us figure out what the problem is, and how to fix it.
>
> Alan DeKok.
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list