Dear all,I am a beginner about FreeRadius, and was learnning implement the
WPA EAP-TLS by FreeRadius. I refer to the document named "WPA Authentication
for Windows XP Clients with RADIUS HOWTO". I meet the problem: the trace
stoped with error "Segmentation fault" after "rlm_eap: processing type tls".
The log is attached, I wonder if you know what's wrong with it. I will really
appreciate your helping me! Thanks a lot in advance!Gao [EMAIL PROTECTED]:~#
freeradius -XStarting - reading configuration files ...reread_config: reading
radiusd.confConfig: including file: /etc/freeradius/proxy.confConfig:
including file: /etc/freeradius/clients.confConfig: including file:
/etc/freeradius/snmp.confConfig: including file:
/etc/freeradius/eap.confConfig: including file: /etc/freeradius/sql.conf
main: prefix = "/usr" main: localstatedir = "/var" main: logdir =
"/var/log/freeradius" main: libdir = "/usr/lib/freeradius" main: radacctdir =
"/var/log/freeradius/radacct" m!
ain: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5
main: max_requests = 1600 main: delete_blocked_requests = 0 main: port = 0
main: allow_core_dumps = no main: log_stripped_names = no main: log_file =
"/var/log/freeradius/radius.log" main: log_auth = no main: log_auth_badpass =
no main: log_auth_goodpass = no main: pidfile =
"/var/run/freeradius/freeradius.pid" main: user = "freerad" main: group =
"freerad" main: usercollide = no main: lower_user = "no" main: lower_pass =
"no" main: nospace_user = "no" main: nospace_pass = "no" main: checkrad =
"/usr/sbin/checkrad" main: proxy_requests = yes proxy: retry_delay = 5 proxy:
retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy:
dead_time = 120 proxy: post_proxy_authorize = no proxy: wake_all_if_all_dead =
no security: max_attributes = 200 security: reject_delay = 1 security:
status_server = no main: debug_level = 0read_config_files: reading
dictionaryread_config_files: readin!
g naslistUsing deprecated naslist file. Support for this will go away
soon.read_config_files: reading clientsread_config_files: reading
realmsradiusd: entering modules setupModule: Library search path is
/usr/lib/freeradiusModule: Loaded exec exec: wait = yes exec: program =
"(null)" exec: input_pairs = "request" exec: output_pairs = "(null)" exec:
packet_type = "(null)"rlm_exec: Wait=yes but no output defined. Did you mean
output=none?Module: Instantiated exec (exec) Module: Loaded expr Module:
Instantiated expr (expr) Module: Loaded PAP pap: encryption_scheme =
"crypt"Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated
chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap:
require_encryption = no mschap: require_strong = no mschap: with_ntdomain_hack
= no mschap: passwd = "(null)" mschap: ntlm_auth = "(null)"Module: Instantiated
mschap (mschap) Module: Loaded eap eap: default_eap_type = "peap" eap:
timer_expire = 60 eap: ignore_unknown_eap_types = no eap:
cisco_accounting_username_bug = norlm_eap: Loade!
d and initialized type md5rlm_eap: Loaded and initialized type leap gtc:
challenge = "Password: " gtc: auth_type = "PAP"rlm_eap: Loaded and initialized
type gtc tls: rsa_key_exchange = no tls: dh_key_exchange = yes tls:
rsa_key_length = 512 tls: dh_key_length = 512 tls: verify_depth = 0 tls:
CA_path = "(null)" tls: pem_file_type = yes tls: private_key_file =
"/etc/wireless-auth/pem/RADIUS.pem" tls: certificate_file =
"/etc/wireless-auth/pem/RADIUS.pem" tls: CA_file =
"/etc/wireless-auth/pem/root.pem" tls: private_key_password = "password" tls:
dh_file = "/etc/wireless-auth/dh" tls: random_file =
"/etc/wireless-auth/random" tls: fragment_size = 1600 tls: include_length = yes
tls: check_crl = no tls: check_cert_cn = "(null)"rlm_eap: Loaded and
initialized type tls peap: default_eap_type = "mschapv2" peap:
copy_request_to_tunnel = no peap: use_tunneled_reply = no peap:
proxy_tunneled_request_as_eap = yesrlm_eap: Loaded and initialized type peap
mschapv2: with_ntdomain_hack = n!
orlm_eap: Loaded and initialized type mschapv2Module: Instantiated eap
(eap) Module: Loaded preprocess preprocess: huntgroups =
"/etc/freeradius/huntgroups" preprocess: hints = "/etc/freeradius/hints"
preprocess: with_ascend_hack = no preprocess: ascend_channels_per_line = 23
preprocess: with_ntdomain_hack = no preprocess: with_specialix_jetstream_hack =
no preprocess: with_cisco_vsa_hack = no preprocess: with_alvarion_vsa_hack =
noModule: Instantiated preprocess (preprocess) Module: Loaded realm realm:
format = "suffix" realm: delimiter = "@" realm: ignore_default = no realm:
ignore_null = noModule: Instantiated realm (suffix) Module: Loaded files
files: usersfile = "/etc/freeradius/users" files: acctusersfile =
"/etc/freeradius/acct_users" files: preproxy_usersfile =
"/etc/freeradius/preproxy_users" files: compat = "no"Module: Instantiated files
(files) Module: Loaded Acct-Unique-Session-Id acct_unique: key = "User-Name,
Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"Module:
Instantiated acct_unique (acct_unique) Module: Lo!
aded detail detail: detailfile =
"/var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d" detail:
detailperm = 384 detail: dirperm = 493 detail: locking = noModule: Instantiated
detail (detail) Module: Loaded radutmp radutmp: filename =
"/var/log/freeradius/radutmp" radutmp: username = "%{User-Name}" radutmp:
case_sensitive = yes radutmp: check_with_nas = yes radutmp: perm = 384 radutmp:
callerid = yesModule: Instantiated radutmp (radutmp) Listening on
authentication *:1812Listening on accounting *:1813Ready to process
requests.rad_recv: Access-Request packet from host 192.168.1.1:1024, id=0,
length=175 User-Name = "host/cn1ndr2c.cn001.siemens.net"
NAS-IP-Address = 192.168.1.1 Called-Station-Id = "001a704e2a1b"
Calling-Station-Id = "000cf15c5443" NAS-Identifier = "001a704e2a1b"
NAS-Port = 11 Framed-MTU = 1400 NAS-Port-Type = Wireless-802.11
EAP-Message = 0x0200002401686f73742f636e316e647232632e636e3030!
312e7369656d656e732e6e6574 Message-Authenticator = 0x4cfed09a13
0593c598c4930aca9b01da Processing the authorize section of
radiusd.confmodcall: entering group authorize for request 0
modcall[authorize]: module "preprocess" returns ok for request 0
modcall[authorize]: module "chap" returns noop for request 0
modcall[authorize]: module "mschap" returns noop for request 0 rlm_realm: No
'@' in User-Name = "host/cn1ndr2c.cn001.siemens.net", looking up realm NULL
rlm_realm: No such realm "NULL" modcall[authorize]: module "suffix" returns
noop for request 0 rlm_eap: EAP packet type response id 0 length 36 rlm_eap:
No EAP Start, assuming it's an on-going EAP conversation modcall[authorize]:
module "eap" returns updated for request 0 users: Matched entry
host/cn1ndr2c.cn001.siemens.net at line 218 modcall[authorize]: module "files"
returns ok for request 0modcall: leaving group authorize (returns updated) for
request 0 rad_check_password: Found Auth-Type EAPauth: type "EAP" Processing
the authenticate section of radiusd.confm!
odcall: entering group authenticate for request 0 rlm_eap: EAP Identity
rlm_eap: processing type tlsSegmentation fault
_________________________________________________________________
探索 Windows Vista 的世界
http://search.live.com/results.aspx?q=windows+vista&mkt=zh-cn&FORM=LIVSOP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html