radsecproxy July 2017

radsecproxy@lists.nordu.net

3 participants
2 discussions

by Ralf Hildebrandt

current git checkout crashes during peak time: ============================================== Core was generated by /usr/local/sbin/radsecproxy'. Program terminated with signal SIGSEGV, Segmentation fault. (gdb) set print pretty (gdb) bt full #0 0x00007fcca3c4f518 in __regexec (preg=preg@entry=0xf25fe8, string=string@entry=0x7fcc9801c4c0 "anonymous(a)charite.de", nmatch=nmatch@entry=0, pmatch=pmatch@entry=0x0, eflags=eflags@entry=0) at regexec.c:243 err = <optimized out> start = 0 length = 20 dfa = <optimized out> #1 0x00000000004057e7 in id2realm (realmlist=<optimized out>, id=id@entry=0x7fcc9801c4c0 "anonymous(a)charite.de") at radsecproxy.c:689 entry = 0xf27370 realm = 0xf25fd0 subrealm = <optimized out> #2 0x00000000004084d1 in findserver (realm=realm@entry=0x7fcca4c15ed8, username=username@entry=0x7fcc9800a410, acc=<optimized out>) at radsecproxy.c:1289 srvconf = <optimized out> subrealm = <optimized out> server = 0x0 id = 0x7fcc9801c4c0 "anonymous(a)charite.de" #3 0x00000000004088e4 in radsrv (rq=rq@entry=0x7fcc98023fc0) at radsecproxy.c:1453 msg = 0x7fcc98000a10 attr = 0x7fcc9800a410 userascii = 0x7fcc980216a0 "anonymous(a)charite.de" realm = 0x0 to = 0x0 from = 0x7fcc98010ba0 ttlres = -1 __func__ = "radsrv" #4 0x000000000040fd04 in udpserverrd (arg=0xf273f0) at udp.c:282 rq = 0x7fcc98023fc0 sp = 0xf273f0 #5 0x00007fcca3f386ba in start_thread (arg=0x7fcca4c16700) at pthread_create.c:333 __res = <optimized out> pd = 0x7fcca4c16700 now = <optimized out> unwind_buf = { cancel_jmp_buf = {{ jmp_buf = {140516914194176, 3582087618930932556, 0, 140731320876959, 140516914194880, 0, -3589535791242282164, -3589537871384937652}, mask_was_saved = 0 }}, priv = { pad = {0x0, 0x0, 0x0, 0x0}, data = { prev = 0x0, cleanup = 0x0, canceltype = 0 } } } not_first_call = <optimized out> pagesize_m1 = <optimized out> sp = <optimized out> freesize = <optimized out> __PRETTY_FUNCTION__ = "start_thread" #6 0x00007fcca3c6e3dd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:109 No locals. -- Ralf Hildebrandt Charite Universitätsmedizin Berlin ralf.hildebrandt(a)charite.de Campus Benjamin Franklin https://www.charite.de Hindenburgdamm 30, 12203 Berlin Geschäftsbereich IT, Abt. Netzwerk fon: +49-30-450.570.155

7 years, 8 months

General questions about debugging and operation

by Ralf Hildebrandt

Hi! I'm using yesterday's git checkout. Routing of the requests to our own RADIUS and germany's DFN Radius server is working OK! Questions: ========== * Currently, radsecproxy is running as root. Is that necessary? It's not binding to any privileged ports. * Can radsecproxy run chrooted? * during our 2 days of operation, it crashed three times - which is why I compiled the lasted version manually instead of using Ubuntu's packages: Jul 5 14:51:43 radius-ext kernel: [5611.904760] radsecproxy[2710]: segfault at d8 ip 00007f0717424518 sp 00007f07183e4e20 error 6 in libc-2.23.so[7f071733c000+1c0000] Jul 6 09:28:46 radius-ext kernel: [72633.333687] radsecproxy[21034]: segfault at d8 ip 00007f5c647d8518 sp 00007f5c65798e30 error 6 in libc-2.23.so[7f5c646f0000+1c0000] Jul 6 12:15:19 radius-ext kernel: [82626.748886] radsecproxy[120425]: segfault at d8 ip 00007f1267ec5518 sp 00007f1268e3bd50 error 6 in libc-2.23.so[7f1267ddd000+1c0000] How do I debug this; is it dumping cores even when running as root? -- Ralf Hildebrandt Charite Universitätsmedizin Berlin ralf.hildebrandt(a)charite.de Campus Benjamin Franklin https://www.charite.de Hindenburgdamm 30, 12203 Berlin Geschäftsbereich IT, Abt. Netzwerk fon: +49-30-450.570.155

7 years, 8 months

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

radsecproxy July 2017