[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-devel
Subject:    Re: Does freeradius-client library support CHAP protocol?
From:       Alan DeKok <aland () deployingradius ! com>
Date:       2009-04-21 4:58:15
Message-ID: 49ED5267.2000405 () deployingradius ! com
[Download RAW message or body]

Tarkshya wrote:
> I tried to enable CHAP protocol support in the freeradius-client
> library by uncommenting the CHAP code in sendserver.c file. (It is the
> code which was blocked using #if 0 macro) However, when I send a chap
> password, the server rejects the request saying that
> 
> Found Auth-Type = CHAP
> +- entering group CHAP {...}
> [chap] rlm_chap: password supplied has wrong length
> 
> What could be wrong here?

  What part of that message is unclear?

> Also, apparently the radclient testing tools which comes with
> freeradius SERVER can successfully authenticate using CHAP passwords.
> Its only the client tool (radiusclient) that gives problem. I noticed
> that the logic of encoding CHAP passwords is different in freeradius
> client and free radius server code.

  Well... that would seem to be the problem.

> Can somebody give me the exact algorithm for encoding and sending CHAP
> passwords in radius packets.

  You could read the FreeRADIUS server source code to see what works.
The code *is* publicly available.  Or, you could read the specification
(RFC 2865).  That's publicly available, too.

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/devel.html
[prev in list] [next in list] [prev in thread] [next in thread]