'freeradius-20010421 and fastusers; FreeBSD 4.2'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    freeradius-20010421 and fastusers; FreeBSD 4.2
From:       Jamyn <jshanley () wt ! net>
Date:       2001-04-22 6:47:49
[Download RAW message or body]

Hi,

I was curious if anyone else is having problems with the ''fastusers' 
module, on FreeBSD 4.2.
I tried the version in the FreeBSD ports tree (3-10-2001), and things seem 
to be working well enough.  I was using the user file for authentication, 
and started reading about the 'fast users' module, so I gave it a 
try.  Fired it up, and it ran very nicely - until it was time for it to 
reload the fast_users file.  I had it set to reload at the default 10 
minute interval.

It appears to get in a continuous loop after the reload.  Prior to the 
reload it behaves; after the reload, it continuously does a "Reloading 
Fastusers Hash".  In the below example, fastusers does its first 'reload' 
at the ten minute mark (20:51:24 2001) and then goes into its loop.

Is anyone else experiencing problems with the fast_user module? Perhaps the 
problem is specific to FreeBSD.

./configure  --without-threads --localstatedir=/var 
'--with-static-modules=acct_unique \
	always attr_filter detail dictionary  files mschap ns_mta_md5 pam preprocess \
	radutmp realm unix' --disable-ltdl-install --prefix=/usr/local 
i386--freebsd4.2 \
	--enable-ltdl-convenience

--- radiusd.conf snippets: --------
         fastusers {
                 usersfile = ${confdir}/users_fast
                 hashsize = 3500
                 compat = no
                 hash_reload = 600
         }

authorize {
         preprocess
         #counter
         #attr_filter
         suffix
         fastusers
         #files
}

Module: Loaded fastusers
  fastusers: usersfile = "/usr/local/etc/raddb/users_fast"
  fastusers: acctusersfile = "/usr/local/etc/raddb/acct_users"
  fastusers: hashsize = 3500
  fastusers: stats = no
  fastusers: compat = "no"
  fastusers: hash_reload = 600
  fastusers:  Reading /usr/local/etc/raddb/acct_users
  fastusers:  Reading /usr/local/etc/raddb/users_fast
  auth_type_fixup: Auth-Type [1000]
  auth_type_fixup: Password [2]

<snip about 3 million repetitions of the auth_type messages,
which are probably my fault and due to something I messed up =(>

rlm_fastusers:  Loaded 2099 users and 1 defaults
Module: Instantiated fastusers (fastusers)

---- logfile:
Sat Apr 21 20:41:21 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/acct_users
Sat Apr 21 20:41:21 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/users_fast
Sat Apr 21 20:41:21 2001 : Info: rlm_fastusers:  Loaded 2099 users and 1 
defaults
Sat Apr 21 20:41:21 2001 : Info: Listening on IP address *, ports 1645/udp 
and 1646/udp, with proxy on 1647/udp.
Sat Apr 21 20:41:21 2001 : Info: Ready to process requests.

Sat Apr 21 20:50:42 2001 : Auth: Login OK: [xxxxxx] (from nas 
xx.xx.xxx-max1 port 26 cli xxxxxxxxxx)
Sat Apr 21 20:50:43 2001 : Auth: Login OK: [xxxxxx] (from nas 
xx.xx.xxx-max1 port 40 cli xxxxxxxxxx)
Sat Apr 21 20:51:01 2001 : Auth: Login OK: [xxxxxx] (from nas 
xx.xx.xxx-max3 port 0 cli xxxxxxxxxx)
Sat Apr 21 20:51:12 2001 : Auth: Login incorrect: [xxxxxxxxxx/Ascend-CLID] 
(from nas xx.xx.xxx-max1 port 12 cli xxxxxxxxxx)
Sat Apr 21 20:51:14 2001 : Auth: Login incorrect: [xxxxxxxxxx/Ascend-CLID] 
(from nas xx.xx.xxx-max3 port 15 cli xxxxxxxxxx)
Sat Apr 21 20:51:24 2001 : Info: rlm_fastusers:  Reloading fastusers hash
Sat Apr 21 20:51:24 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/acct_users
Sat Apr 21 20:51:24 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/users_fast
Sat Apr 21 20:51:24 2001 : Info: rlm_fastusers:  Loaded 2099 users and 1 
defaults
Sat Apr 21 20:51:24 2001 : Auth: Login OK: [xxxxxx] (from nas 
xx.xx.xxx-max3 port 18)
Sat Apr 21 20:51:36 2001 : Info: rlm_fastusers:  Reloading fastusers hash
Sat Apr 21 20:51:36 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/acct_users
Sat Apr 21 20:51:36 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/users_fast
Sat Apr 21 20:51:36 2001 : Info: rlm_fastusers:  Loaded 2099 users and 1 
defaults
Sat Apr 21 20:51:36 2001 : Auth: Login OK: [xxxxxx] (from nas 
xx.xx.xxx-max1 port 12 cli xxxxxxxxxx)
Sat Apr 21 20:51:49 2001 : Info: rlm_fastusers:  Reloading fastusers hash
Sat Apr 21 20:51:49 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/acct_users
Sat Apr 21 20:51:49 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/users_fast
Sat Apr 21 20:51:49 2001 : Info: rlm_fastusers:  Loaded 2099 users and 1 
defaults
Sat Apr 21 20:51:49 2001 : Auth: Login incorrect: [xxxxxxxxxx/Ascend-CLID] 
(from nas xx.xx.xxx-max1 port 18 cli xxxxxxxxxx)
Sat Apr 21 20:51:53 2001 : Info: rlm_fastusers:  Reloading fastusers hash
Sat Apr 21 20:51:53 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/acct_users
Sat Apr 21 20:51:53 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/users_fast
Sat Apr 21 20:51:53 2001 : Info: rlm_fastusers:  Loaded 2099 users and 1 
defaults
Sat Apr 21 20:51:53 2001 : Auth: Login incorrect: [xxxxxxxxxx/Ascend-CLID] 
(from nas xx.xx.xxx-max1 port 57 cli xxxxxxxxxx)
Sat Apr 21 20:52:14 2001 : Info: rlm_fastusers:  Reloading fastusers hash
Sat Apr 21 20:52:14 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/acct_users
Sat Apr 21 20:52:14 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/users_fast
Sat Apr 21 20:52:14 2001 : Info: rlm_fastusers:  Loaded 2099 users and 1 
defaults
Sat Apr 21 20:52:14 2001 : Auth: Login OK: [xxxxxx] (from nas 
xx.xx.xxx-max4 port 37 cli xxxxxxxxxx)
Sat Apr 21 20:52:15 2001 : Info: rlm_fastusers:  Reloading fastusers hash
Sat Apr 21 20:52:15 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/acct_users
Sat Apr 21 20:52:15 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/users_fast
Sat Apr 21 20:52:15 2001 : Info: rlm_fastusers:  Loaded 2099 users and 1 
defaults
Sat Apr 21 20:52:15 2001 : Auth: Login OK: [xxxxxx] (from nas 
xx.xx.xxx-max1 port 18 cli xxxxxxxxxx)
Sat Apr 21 20:52:26 2001 : Info: rlm_fastusers:  Reloading fastusers hash
Sat Apr 21 20:52:26 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/acct_users
Sat Apr 21 20:52:26 2001 : Info:  fastusers:  Reading 
/usr/local/etc/raddb/users_fast
Sat Apr 21 20:52:26 2001 : Info: rlm_fastusers:  Loaded 2099 users and 1 
defaults
Sat Apr 21 20:52:26 2001 : Auth: Login incorrect: [xxxxxx/xxxxxx] (from nas 
xx.xx.xx.xx.xxx-max1 port 57 cli xxxxxxxxxx)
Sat Apr 21 20:52:28 2001 : Info: rlm_fastusers:  Reloading fastusers hash

--

I went into debug mode to see if it would tell me anything more, and waited 
the 10 minutes for the reload to occour:

Nothing to do.  Sleeping until we see a request.
rad_recv: Access-Request packet from host xx.xxx.xxx.x:1025, id=172, length=106
         User-Name = "xxxxxxx085"
         Password = "\xxx\xxxx,\xxxm\xxx\xxx\xxx;\xxx\xxx"
         NAS-IP-Address = xx.xxx.xxx.x
         NAS-Port = 20107
         NAS-Port-Type = Async
         Service-Type = Outbound-User
         State = 0x
         Calling-Station-Id = "xxxxxxx085"
         Called-Station-Id = "xxxxxxx"
         Acct-Session-Id = "333839836"
modcall[autz]: Entering group at line 149
modcall[autz]: Module at line 149 returns ok
modcall[autz]: action for ok is 3
modcall[autz]: Module at line 152 returns ok
modcall[autz]: action for ok is 3
rlm_fastusers:  Reloading fastusers hash
  fastusers:  Reading /usr/local/etc/raddb/acct_users
  fastusers:  Reading /usr/local/etc/raddb/users_fast
   auth_type_fixup: Auth-Type [1000]
   auth_type_fixup: Password [2]
   auth_type_fixup: Auth-Type [1000]
   auth_type_fixup: Password [2]
   auth_type_fixup: Auth-Type [1000]

<snip a LOT of these, probably twice as many as usual>

   auth_type_fixup: Simultaneous-Use [1034]
   auth_type_fixup: Auth-Type [1000]
   auth_type_fixup: Password [2]
   auth_type_fixup: Simultaneous-Use [1034]
   auth_type_fixup: Auth-Type [1000]

rlm_fastusers:  Loaded 2099 users and 1 defaults
rlm_fastusers:  checking defaults
rlm_fastusers:  user not found
modcall[autz]: Module at line 153 returns notfound
modcall[autz]: action for notfound is 1
modcall[autz]: Group at line 149 returns ok
   auth: Local
   auth: Failed to validate the user.
Login incorrect: [xxxxxxxxxx/Ascend-CLID] (from nas xx.xx.xxx-max2 port 6 
cli xxxxxxxxxx)
Sending Access-Reject of id 172 to xx.xxx.xxx.x:1025
Finished request 6
Going to the next request
--- Walking the entire request list ---
Cleaning up request 6 ID 172 with timestamp 3ae2505c
Nothing to do.  Sleeping until we see a request.


If theres more information I need to provide, I'll be happy to. I am 
obviously pretty new to FreeRadius (and radius in general), so forgive me 
if I have (probably) overlooked something.  I dont understand the 
"auth_type_fixup".  Perhaps if I understood what was happening I could 
narrow down what I was doing to cause this.  On the upside, the fast users 
module works great if I just disable the 'reload' function (hash_reload = 0)

Thanks to all who put work into FreeRadius.  The features it provides are 
amazing, and I really do appreciate it.

Thank you,

- Jamyn



[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic