Re: rlm_passwd core dumps with 1.0.2

Tue, 29 Mar 2005 10:11:44 -0800 

* Jason Ornstein <[EMAIL PROTECTED]> [2005-03-25 17:11:57 -0700]:

>     Fri Mar 25 09:01:45 2005 : Debug: auth: type Crypt
>     Segmentation Fault - core dumped
>     radiusd
> 
>     (gdb) where
>     #0  0xff257590 in DES_ncbc_encrypt () from /usr/local/ssl/lib/libcrypto.so
>     #1  0xff259b4c in _des_crypt () from /usr/local/ssl/lib/libcrypto.so
>     #2  0xff33fcb4 in lrad_crypt_check (key=0xffbeda00 "",
>         crypted=0x1a5024 "encryptedpassword") at crypt.c:60

Looking at this again on a new day something is jumping out at me as
being wrong.  This is the call in lrad_crypt_check

        passwd = crypt(key, crypted);

Doing some reading on the Internet this works because key should be the
unencrypted password and crypted should be the encrypted password and
only the salt part of the encrypted password gets used.  Okay, now I
have to figure out why they key doesn't have my plaintext password.

Thinking that maybe this was a fluke, I made a slight change to my
radiusd.conf file.  I forced PAP authentication

        passwd admins {
                filename = ${raddbdir}/passwords/admins
                format = "*User-Name:Crypt-Password"
                hashsize = 100
                delimiter = ":"
                authtype = PAP
        }

with the additionof of 'authtype = PAP' as it wasn't doing this before.
And this time the debug looks something like this

        rlm_passwd: Added Crypt-Password: 'encryptedpw' to config_items
        rlm_passwd: Adding "Auth-Type = PAP"
          modcall[authorize]: module "admins" returns ok for request 0
            users: Matched entry DEFAULT at line 11
          modcall[authorize]: module "files" returns ok for request 0
        modcall: group authorize returns ok for request 0
          rad_check_password:  Found Auth-Type PAP
        auth: type "PAP"
          Processing the authenticate section of radiusd.conf
        modcall: entering group Auth-Type for request 0
        rlm_pap: login attempt by "jornstei" with password cleartextpw 
        rlm_pap: Using password "encryptedpw" for user jornstei
        authentication.
        rlm_pap: Using CRYPT encryption.
        Segmentation Fault - core dumped
        radiusd

and looking at the core dump shows the same issue as using CRYPT
authentication 

        #0  0xff257590 in DES_ncbc_encrypt () from
        /usr/local/ssl/lib/libcrypto.so
        #1  0xff259b4c in _des_crypt () from /usr/local/ssl/lib/libcrypto.so
        #2  0xff33fcb4 in lrad_crypt_check (key=0xffbed5e8 "",
            crypted=0x1a55cc "encryptedpw") at crypt.c:60

Would there be something in my setup that would be causing the plaintext
password not to be in the pointer pointed to by key?

-jason

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to