Sorry miscommunication on my part. Below is an example of a request that causes
the segfault. I was also able to get a core dump as well which I pasted at the
bottom.
############################################################
Waking up in 0.1 seconds.
rad_recv: Access-Request packet from host 24.139.16.70 port 1645, id=130,
length=140
Framed-Protocol = PPP
User-Name = "twolitt...@amtelecom.net"
User-Password = "4141"
NAS-Port-Type = Virtual
NAS-Port-Id = "1/0/5/494"
Cisco-AVPair = "client-mac-address=5cd9.985e.ed7d"
Service-Type = Framed-User
NAS-IP-Address = 24.139.16.70
# Executing section authorize from file /etc/raddb/sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[digest] returns noop
[suffix] Looking up realm "amtelecom.net" for User-Name =
"twolitt...@amtelecom.net"
[suffix] Found realm "amtelecom.net"
[suffix] Adding Stripped-User-Name = "twolittles"
[suffix] Adding Realm = "amtelecom.net"
[suffix] Proxying request from user twolittles to realm amtelecom.net
[suffix] Preparing to proxy authentication request to realm "amtelecom.net"
++[suffix] returns updated
++[pap] returns noop
WARNING: Empty pre-proxy section. Using default return values.
>>> Sending proxied request internally to virtual server.
server virtual.amtelecom.net {
# Executing section authorize from file
/etc/raddb/sites-enabled/virtual.amtelecom.net
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
[suffix] Request already proxied. Ignoring.
++[suffix] returns ok
++- entering policy redundant {...}
[amtelecom1] performing user authorization for twolittles
[amtelecom1] expand: %{Stripped-User-Name} -> twolittles
[amtelecom1] expand:
(&(uid=%{%{Stripped-User-Name}:-%{User-Name}})(objectclass=posixAccount)(cn=true))
-> (&(uid=twolittles)(objectclass=posixAccount)(cn=true))
[amtelecom1] expand: ou=radius,o=amtelecom.net,dc=eastlink,dc=ca ->
ou=radius,o=amtelecom.net,dc=eastlink,dc=ca
[amtelecom1] ldap_get_conn: Checking Id: 0
[amtelecom1] ldap_get_conn: Got Id: 0
[amtelecom1] performing search in
ou=radius,o=amtelecom.net,dc=eastlink,dc=ca, with filter
(&(uid=twolittles)(objectclass=posixAccount)(cn=true))
[amtelecom1] checking if remote access for twolittles is allowed by cn
[amtelecom1] Added User-Password =
{SSHA}wD2k0jpAA6JDqNZkdf4UYiT7O89XujNiZGUUeg== in check items
[amtelecom1] looking for check items in directory...
[amtelecom1] userPassword -> Password-With-Header ==
"{SSHA}wD2k0jpAA6JDqNZkdf4UYiT7O89XujNiZGUUeg=="
[amtelecom1] radiusSimultaneousUse -> Simultaneous-Use == 99
[amtelecom1] radiusAuthType -> Auth-Type == PAP
[amtelecom1] looking for reply items in directory...
[amtelecom1] radiusGroupName -> Group-Name = "eastlink_residential_profile"
[amtelecom1] user twolittles authorized to use remote access
[amtelecom1] ldap_release_conn: Release Id: 0
+++[amtelecom1] returns ok
++- policy redundant returns ok
++- entering policy redundant {...}
[sql1.amtelecom.net] expand: %{User-Name}@%{Realm} ->
twolitt...@amtelecom.net
[sql1.amtelecom.net] sql_set_user escaped user --> 'twolitt...@amtelecom.net'
rlm_sql (sql1.amtelecom.net): Reserving sql socket id: 4
[sql1.amtelecom.net] expand: SELECT id, username, attribute, value, op
FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER
BY id -> SELECT id, username, attribute, value, op FROM radcheck
WHERE username = 'twolitt...@amtelecom.net' ORDER BY id
rlm_sql_mysql: query: SELECT id, username, attribute, value, op FROM
radcheck WHERE username = 'twolitt...@amtelecom.net' ORDER
BY id
[sql1.amtelecom.net] expand: SELECT groupname FROM radusergroup
WHERE username = '%{SQL-User-Name}' ORDER BY priority ->
SELECT groupname FROM radusergroup WHERE username =
'twolitt...@amtelecom.net' ORDER BY priority
rlm_sql_mysql: query: SELECT groupname FROM radusergroup
WHERE username = 'twolitt...@amtelecom.net' ORDER BY priority
[sql1.amtelecom.net] expand: SELECT id, groupname, attribute,
Value, op FROM radgroupcheck WHERE groupname =
'%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute,
Value, op FROM radgroupcheck WHERE groupname =
'acl_permit_eastlink_smtp' ORDER BY id
rlm_sql_mysql: query: SELECT id, groupname, attribute, Value, op
FROM radgroupcheck WHERE groupname = 'acl_permit_eastlink_smtp'
ORDER BY id
[sql1.amtelecom.net] User found in group acl_permit_eastlink_smtp
[sql1.amtelecom.net] expand: SELECT id, groupname, attribute,
value, op FROM radgroupreply WHERE groupname =
'%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute,
value, op FROM radgroupreply WHERE groupname =
'acl_permit_eastlink_smtp' ORDER BY id
rlm_sql_mysql: query: SELECT id, groupname, attribute, value, op
FROM radgroupreply WHERE groupname = 'acl_permit_eastlink_smtp'
ORDER BY id
rlm_sql (sql1.amtelecom.net): Released sql socket id: 4
+++[sql1.amtelecom.net] returns ok
++- policy redundant returns ok
[files] users: Matched entry DEFAULT at line 214
++[files] returns ok
[pap] Normalizing SSHA1-Password from base64 encoding
[pap] WARNING: Auth-Type already set. Not setting to PAP
++[pap] returns noop
Found Auth-Type = PAP
# Executing group from file /etc/raddb/sites-enabled/virtual.amtelecom.net
+- entering group PAP {...}
[pap] login attempt with password "4141"
[pap] Using SSHA encryption.
[pap] Normalizing SSHA1-Password from base64 encoding
Segmentation fault
[root@on-radius01 raddb]#
##########################################################
##########################################################
Waking up in 0.4 seconds.
rad_recv: Access-Request packet from host 24.139.16.70 port 1645, id=82,
length=141
Framed-Protocol = PPP
User-Name = "foursist...@amtelecom.net"
User-Password = "bradly"
NAS-Port-Type = Virtual
NAS-Port-Id = "0/0/5/236"
Cisco-AVPair = "client-mac-address=0026.5acf.63d7"
Service-Type = Framed-User
NAS-IP-Address = 24.139.16.70
# Executing section authorize from file /etc/raddb/sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[digest] returns noop
[suffix] Looking up realm "amtelecom.net" for User-Name =
"foursist...@amtelecom.net"
[suffix] Found realm "amtelecom.net"
[suffix] Adding Stripped-User-Name = "foursisters"
[suffix] Adding Realm = "amtelecom.net"
[suffix] Proxying request from user foursisters to realm amtelecom.net
[suffix] Preparing to proxy authentication request to realm "amtelecom.net"
++[suffix] returns updated
++[pap] returns noop
WARNING: Empty pre-proxy section. Using default return values.
>>> Sending proxied request internally to virtual server.
server virtual.amtelecom.net {
# Executing section authorize from file
/etc/raddb/sites-enabled/virtual.amtelecom.net
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
[suffix] Request already proxied. Ignoring.
++[suffix] returns ok
++- entering policy redundant {...}
[amtelecom1] performing user authorization for foursisters
[amtelecom1] expand: %{Stripped-User-Name} -> foursisters
[amtelecom1] expand:
(&(uid=%{%{Stripped-User-Name}:-%{User-Name}})(objectclass=posixAccount)(cn=true))
-> (&(uid=foursisters)(objectclass=posixAccount)(cn=true))
[amtelecom1] expand: ou=radius,o=amtelecom.net,dc=eastlink,dc=ca ->
ou=radius,o=amtelecom.net,dc=eastlink,dc=ca
[amtelecom1] ldap_get_conn: Checking Id: 0
[amtelecom1] ldap_get_conn: Got Id: 0
[amtelecom1] performing search in
ou=radius,o=amtelecom.net,dc=eastlink,dc=ca, with filter
(&(uid=foursisters)(objectclass=posixAccount)(cn=true))
[amtelecom1] checking if remote access for foursisters is allowed by cn
[amtelecom1] Added User-Password =
{SSHA}PW+QjeT/PYNlscpwJ83MgLog/UYlp9/0mCg0mA== in check items
[amtelecom1] looking for check items in directory...
[amtelecom1] userPassword -> Password-With-Header ==
"{SSHA}PW+QjeT/PYNlscpwJ83MgLog/UYlp9/0mCg0mA=="
[amtelecom1] radiusSimultaneousUse -> Simultaneous-Use == 99
[amtelecom1] radiusAuthType -> Auth-Type == PAP
[amtelecom1] looking for reply items in directory...
[amtelecom1] radiusGroupName -> Group-Name = "eastlink_residential_profile"
[amtelecom1] user foursisters authorized to use remote access
[amtelecom1] ldap_release_conn: Release Id: 0
+++[amtelecom1] returns ok
++- policy redundant returns ok
++- entering policy redundant {...}
[sql1.amtelecom.net] expand: %{User-Name}@%{Realm} ->
foursist...@amtelecom.net
[sql1.amtelecom.net] sql_set_user escaped user --> 'foursist...@amtelecom.net'
rlm_sql (sql1.amtelecom.net): Reserving sql socket id: 0
[sql1.amtelecom.net] expand: SELECT id, username, attribute, value, op
FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER
BY id -> SELECT id, username, attribute, value, op FROM radcheck
WHERE username = 'foursist...@amtelecom.net' ORDER BY id
rlm_sql_mysql: query: SELECT id, username, attribute, value, op FROM
radcheck WHERE username = 'foursist...@amtelecom.net' ORDER
BY id
[sql1.amtelecom.net] expand: SELECT groupname FROM radusergroup
WHERE username = '%{SQL-User-Name}' ORDER BY priority ->
SELECT groupname FROM radusergroup WHERE username =
'foursist...@amtelecom.net' ORDER BY priority
rlm_sql_mysql: query: SELECT groupname FROM radusergroup
WHERE username = 'foursist...@amtelecom.net' ORDER BY priority
[sql1.amtelecom.net] expand: SELECT id, groupname, attribute,
Value, op FROM radgroupcheck WHERE groupname =
'%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute,
Value, op FROM radgroupcheck WHERE groupname =
'acl_permit_eastlink_smtp' ORDER BY id
rlm_sql_mysql: query: SELECT id, groupname, attribute, Value, op
FROM radgroupcheck WHERE groupname = 'acl_permit_eastlink_smtp'
ORDER BY id
[sql1.amtelecom.net] User found in group acl_permit_eastlink_smtp
[sql1.amtelecom.net] expand: SELECT id, groupname, attribute,
value, op FROM radgroupreply WHERE groupname =
'%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute,
value, op FROM radgroupreply WHERE groupname =
'acl_permit_eastlink_smtp' ORDER BY id
rlm_sql_mysql: query: SELECT id, groupname, attribute, value, op
FROM radgroupreply WHERE groupname = 'acl_permit_eastlink_smtp'
ORDER BY id
rlm_sql (sql1.amtelecom.net): Released sql socket id: 0
+++[sql1.amtelecom.net] returns ok
++- policy redundant returns ok
[files] users: Matched entry DEFAULT at line 214
++[files] returns ok
[pap] Normalizing SSHA1-Password from base64 encoding
[pap] WARNING: Auth-Type already set. Not setting to PAP
++[pap] returns noop
Found Auth-Type = PAP
# Executing group from file /etc/raddb/sites-enabled/virtual.amtelecom.net
+- entering group PAP {...}
[pap] login attempt with password "bradly"
[pap] Using SSHA encryption.
[pap] Normalizing SSHA1-Password from base64 encoding
Segmentation fault
[root@on-radius01 raddb]#
#################################################################
###################################################################
GNU gdb (GDB) CentOS (7.0.1-45.el5.centos) Copyright (C) 2009 Free Software
Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law. Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-redhat-linux-gnu".
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>...
Reading symbols from /usr/sbin/radiusd...done.
[New Thread 11387]
[New Thread 11386]
[New Thread 11385]
[New Thread 11384]
[New Thread 11383]
[New Thread 11382]
Reading symbols from /usr/local/lib/libfreeradius-radius-2.2.0.so...done.
Loaded symbols for /usr/local/lib/libfreeradius-radius-2.2.0.so
Reading symbols from /lib64/libnsl.so.1...(no debugging symbols found)...done.
Loaded symbols for /lib64/libnsl.so.1
Reading symbols from /lib64/libresolv.so.2...(no debugging symbols
found)...done.
Loaded symbols for /lib64/libresolv.so.2 Reading symbols from
/lib64/libpthread.so.0...(no debugging symbols found)...done.
[Thread debugging using libthread_db enabled] Loaded symbols for
/lib64/libpthread.so.0 Reading symbols from /lib64/libcrypt.so.1...(no
debugging symbols found)...done.
Loaded symbols for /lib64/libcrypt.so.1
Reading symbols from /usr/local/lib/libltdl.so.3...done.
Loaded symbols for /usr/local/lib/libltdl.so.3 Reading symbols from
/lib64/libssl.so.6...(no debugging symbols found)...done.
Loaded symbols for /lib64/libssl.so.6
Reading symbols from /lib64/libcrypto.so.6...(no debugging symbols
found)...done.
Loaded symbols for /lib64/libcrypto.so.6 Reading symbols from
/lib64/libdl.so.2...(no debugging symbols found)...done.
Loaded symbols for /lib64/libdl.so.2
Reading symbols from /lib64/libc.so.6...(no debugging symbols found)...done.
Loaded symbols for /lib64/libc.so.6
Reading symbols from /lib64/ld-linux-x86-64.so.2...(no debugging symbols
found)...done.
Loaded symbols for /lib64/ld-linux-x86-64.so.2 Reading symbols from
/usr/lib64/libgssapi_krb5.so.2...(no debugging symbols found)...done.
Loaded symbols for /usr/lib64/libgssapi_krb5.so.2 Reading symbols from
/usr/lib64/libkrb5.so.3...(no debugging symbols found)...done.
Loaded symbols for /usr/lib64/libkrb5.so.3 Reading symbols from
/lib64/libcom_err.so.2...(no debugging symbols found)...done.
Loaded symbols for /lib64/libcom_err.so.2 Reading symbols from
/usr/lib64/libk5crypto.so.3...(no debugging symbols found)...done.
Loaded symbols for /usr/lib64/libk5crypto.so.3 Reading symbols from
/lib64/libz.so.1...(no debugging symbols found)...done.
Loaded symbols for /lib64/libz.so.1
Reading symbols from /usr/lib64/libkrb5support.so.0...(no debugging symbols
found)...done.
Loaded symbols for /usr/lib64/libkrb5support.so.0 Reading symbols from
/lib64/libkeyutils.so.1...(no debugging symbols found)...done.
Loaded symbols for /lib64/libkeyutils.so.1 Reading symbols from
/lib64/libselinux.so.1...(no debugging symbols found)...done.
Loaded symbols for /lib64/libselinux.so.1 Reading symbols from
/lib64/libsepol.so.1...(no debugging symbols found)...done.
Loaded symbols for /lib64/libsepol.so.1
Reading symbols from /lib64/libnss_files.so.2...(no debugging symbols
found)...done.
Loaded symbols for /lib64/libnss_files.so.2 Reading symbols from
/lib64/libnss_ldap.so.2...(no debugging symbols found)...done.
Loaded symbols for /lib64/libnss_ldap.so.2 Reading symbols from
/usr/local/lib/rlm_exec.so...done.
Loaded symbols for /usr/local/lib/rlm_exec.so Reading symbols from
/usr/local/lib/rlm_expr.so...done.
Loaded symbols for /usr/local/lib/rlm_expr.so Reading symbols from
/usr/local/lib/rlm_expiration.so...done.
Loaded symbols for /usr/local/lib/rlm_expiration.so Reading symbols from
/usr/local/lib/rlm_logintime.so...done.
Loaded symbols for /usr/local/lib/rlm_logintime.so Reading symbols from
/usr/local/lib/rlm_pap.so...done.
Loaded symbols for /usr/local/lib/rlm_pap.so Reading symbols from
/usr/local/lib/rlm_chap.so...done.
Loaded symbols for /usr/local/lib/rlm_chap.so Reading symbols from
/usr/local/lib/rlm_preprocess.so...done.
Loaded symbols for /usr/local/lib/rlm_preprocess.so Reading symbols from
/usr/local/lib/rlm_digest.so...done.
Loaded symbols for /usr/local/lib/rlm_digest.so Reading symbols from
/usr/local/lib/rlm_realm.so...done.
Loaded symbols for /usr/local/lib/rlm_realm.so Reading symbols from
/usr/local/lib/rlm_acct_unique.so...done.
Loaded symbols for /usr/local/lib/rlm_acct_unique.so Reading symbols from
/usr/local/lib/rlm_files.so...done.
Loaded symbols for /usr/local/lib/rlm_files.so Reading symbols from
/usr/local/lib/rlm_detail.so...done.
Loaded symbols for /usr/local/lib/rlm_detail.so Reading symbols from
/usr/local/lib/rlm_unix.so...done.
Loaded symbols for /usr/local/lib/rlm_unix.so Reading symbols from
/usr/local/lib/rlm_radutmp.so...done.
Loaded symbols for /usr/local/lib/rlm_radutmp.so Reading symbols from
/usr/local/lib/rlm_attr_filter.so...done.
Loaded symbols for /usr/local/lib/rlm_attr_filter.so Reading symbols from
/usr/local/lib/rlm_ldap.so...done.
Loaded symbols for /usr/local/lib/rlm_ldap.so Reading symbols from
/usr/lib64/libldap_r-2.3.so.0...(no debugging symbols found)...done.
Loaded symbols for /usr/lib64/libldap_r-2.3.so.0 Reading symbols from
/usr/lib64/liblber-2.3.so.0...(no debugging symbols found)...done.
Loaded symbols for /usr/lib64/liblber-2.3.so.0 Reading symbols from
/usr/lib64/libsasl2.so.2...(no debugging symbols found)...done.
Loaded symbols for /usr/lib64/libsasl2.so.2 Reading symbols from
/usr/local/lib/rlm_sql.so...done.
Loaded symbols for /usr/local/lib/rlm_sql.so Reading symbols from
/usr/local/lib/rlm_sql_mysql.so...done.
Loaded symbols for /usr/local/lib/rlm_sql_mysql.so Reading symbols from
/usr/lib64/mysql/libmysqlclient_r.so.15...(no debugging symbols found)...done.
Loaded symbols for /usr/lib64/mysql/libmysqlclient_r.so.15
Reading symbols from /lib64/libm.so.6...(no debugging symbols found)...done.
Loaded symbols for /lib64/libm.so.6
Reading symbols from /lib64/libgcc_s.so.1...(no debugging symbols found)...done.
Loaded symbols for /lib64/libgcc_s.so.1
Reading symbols from /lib64/libnss_dns.so.2...(no debugging symbols
found)...done.
Loaded symbols for /lib64/libnss_dns.so.2 Reading symbols from
/usr/local/lib/rlm_eap.so...done.
Loaded symbols for /usr/local/lib/rlm_eap.so Reading symbols from
/usr/local/lib/libfreeradius-eap-2.2.0.so...done.
Loaded symbols for /usr/local/lib/libfreeradius-eap-2.2.0.so
Reading symbols from /usr/local/lib/rlm_eap_md5.so...done.
Loaded symbols for /usr/local/lib/rlm_eap_md5.so Reading symbols from
/usr/local/lib/rlm_eap_leap.so...done.
Loaded symbols for /usr/local/lib/rlm_eap_leap.so Reading symbols from
/usr/local/lib/rlm_eap_gtc.so...done.
Loaded symbols for /usr/local/lib/rlm_eap_gtc.so Reading symbols from
/usr/local/lib/rlm_eap_tls.so...done.
Loaded symbols for /usr/local/lib/rlm_eap_tls.so Reading symbols from
/usr/local/lib/rlm_eap_ttls.so...done.
Loaded symbols for /usr/local/lib/rlm_eap_ttls.so Reading symbols from
/usr/local/lib/rlm_eap_peap.so...done.
Loaded symbols for /usr/local/lib/rlm_eap_peap.so Reading symbols from
/usr/local/lib/rlm_eap_mschapv2.so...done.
Loaded symbols for /usr/local/lib/rlm_eap_mschapv2.so
Reading symbols from /usr/local/lib/rlm_always.so...done.
Loaded symbols for /usr/local/lib/rlm_always.so
warning: no loadable sections found in added symbol-file system-supplied DSO at
0x7fff84bfd000 Core was generated by `/usr/sbin/radiusd -d /etc/raddb'.
Program terminated with signal 11, Segmentation fault.
#0 0x0000003c6c07b5bb in memcpy () from /lib64/libc.so.6
###################################################################
Thanks,
Chris
-----Original Message-----
From:
freeradius-users-bounces+chris.taylor=corp.eastlink...@lists.freeradius.org
[mailto:freeradius-users-bounces+chris.taylor=corp.eastlink...@lists.freeradius.org]
On Behalf Of a.l.m.bu...@lboro.ac.uk
Sent: Wednesday, May 01, 2013 6:30 PM
To: FreeRadius users mailing list
Subject: Re: segfault error
hi,
..thats the startup....and when a request comes in (the one that segfaults the
server.....) ?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
