Opened 7 years ago
Last modified 7 months ago
#858 reopened Bug / Defect
radiusplugin: The server stop responding (std::out_of_range)
| Reported by: | pkopchk | Owned by: | |
|---|---|---|---|
| Priority: | minor | Milestone: | |
| Component: | Generic / unclassified | Version: | OpenVPN 2.4.0 (Community Ed) |
| Severity: | Not set (select this one, unless your'e a OpenVPN developer) | Keywords: | |
| Cc: | valdikss |
Description
Hello,
I try to use OpenVPN 2.4.0 on CentOS 6.8 i686
(OpenVPN 2.4.0 i686-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Mar 17 2017)
And i have this error:
terminate called after throwing an instance of 'std::out_of_range' what(): basic_string::replace
openvpn server start:
Wed Mar 22 14:43:30 2017 us=423214 Current Parameter Settings: Wed Mar 22 14:43:30 2017 us=423267 config = 'server-tun.conf' Wed Mar 22 14:43:30 2017 us=423275 mode = 1 Wed Mar 22 14:43:30 2017 us=423281 persist_config = DISABLED Wed Mar 22 14:43:30 2017 us=423275 mode = 1 Wed Mar 22 14:43:30 2017 us=423281 persist_config = DISABLED Wed Mar 22 14:43:30 2017 us=423286 persist_mode = 1 Wed Mar 22 14:43:30 2017 us=423291 show_ciphers = DISABLED Wed Mar 22 14:43:30 2017 us=423295 show_digests = DISABLED Wed Mar 22 14:43:30 2017 us=423295 show_digests = DISABLED Wed Mar 22 14:43:30 2017 us=423317 show_engines = DISABLED Wed Mar 22 14:43:30 2017 us=423322 genkey = DISABLED Wed Mar 22 14:43:30 2017 us=423327 key_pass_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423334 show_tls_ciphers = DISABLED Wed Mar 22 14:43:30 2017 us=423334 show_tls_ciphers = DISABLED Wed Mar 22 14:43:30 2017 us=423339 connect_retry_max = 0 Wed Mar 22 14:43:30 2017 us=423344 Connection profiles [0]: Wed Mar 22 14:43:30 2017 us=423351 proto = tcp-server Wed Mar 22 14:43:30 2017 us=423351 proto = tcp-server Wed Mar 22 14:43:30 2017 us=423356 local = '213.25.35.131' Wed Mar 22 14:43:30 2017 us=423356 local = '213.25.35.131' Wed Mar 22 14:43:30 2017 us=423361 local_port = '443' Wed Mar 22 14:43:30 2017 us=423361 local_port = '443' Wed Mar 22 14:43:30 2017 us=423366 remote = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423371 remote_port = '443' Wed Mar 22 14:43:30 2017 us=423377 remote_float = DISABLED Wed Mar 22 14:43:30 2017 us=423377 remote_float = DISABLED Wed Mar 22 14:43:30 2017 us=423382 bind_defined = DISABLED Wed Mar 22 14:43:30 2017 us=423386 bind_local = ENABLED Wed Mar 22 14:43:30 2017 us=423394 bind_ipv6_only = DISABLED Wed Mar 22 14:43:30 2017 us=423394 bind_ipv6_only = DISABLED Wed Mar 22 14:43:30 2017 us=423399 connect_retry_seconds = 5 Wed Mar 22 14:43:30 2017 us=423399 connect_retry_seconds = 5 Wed Mar 22 14:43:30 2017 us=423404 connect_timeout = 120 Wed Mar 22 14:43:30 2017 us=423404 connect_timeout = 120 Wed Mar 22 14:43:30 2017 us=423409 socks_proxy_server = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423409 socks_proxy_server = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423414 socks_proxy_port = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423414 socks_proxy_port = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423418 tun_mtu = 1500 Wed Mar 22 14:43:30 2017 us=423418 tun_mtu = 1500 Wed Mar 22 14:43:30 2017 us=423423 tun_mtu_defined = ENABLED Wed Mar 22 14:43:30 2017 us=423423 tun_mtu_defined = ENABLED Wed Mar 22 14:43:30 2017 us=423428 link_mtu = 1500 Wed Mar 22 14:43:30 2017 us=423428 link_mtu = 1500 Wed Mar 22 14:43:30 2017 us=423433 link_mtu_defined = DISABLED Wed Mar 22 14:43:30 2017 us=423433 link_mtu_defined = DISABLED Wed Mar 22 14:43:30 2017 us=423438 tun_mtu_extra = 0 Wed Mar 22 14:43:30 2017 us=423442 tun_mtu_extra_defined = DISABLED Wed Mar 22 14:43:30 2017 us=423449 mtu_discover_type = -1 Wed Mar 22 14:43:30 2017 us=423454 fragment = 0 Wed Mar 22 14:43:30 2017 us=423459 mssfix = 1450 Wed Mar 22 14:43:30 2017 us=423465 explicit_exit_notification = 0 Wed Mar 22 14:43:30 2017 us=423470 Connection profiles END Wed Mar 22 14:43:30 2017 us=423476 remote_random = DISABLED Wed Mar 22 14:43:30 2017 us=423476 remote_random = DISABLED Wed Mar 22 14:43:30 2017 us=423481 ipchange = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423486 dev = 'tun' Wed Mar 22 14:43:30 2017 us=423491 dev_type = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423497 dev_node = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423497 dev_node = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423502 lladdr = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423502 lladdr = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423507 topology = 3 Wed Mar 22 14:43:30 2017 us=423512 ifconfig_local = '172.16.120.129' Wed Mar 22 14:43:30 2017 us=423519 ifconfig_remote_netmask = '255.255.255.192' Wed Mar 22 14:43:30 2017 us=423519 ifconfig_remote_netmask = '255.255.255.192' Wed Mar 22 14:43:30 2017 us=423524 ifconfig_noexec = DISABLED Wed Mar 22 14:43:30 2017 us=423528 ifconfig_nowarn = DISABLED Wed Mar 22 14:43:30 2017 us=423528 ifconfig_nowarn = DISABLED Wed Mar 22 14:43:30 2017 us=423533 ifconfig_ipv6_local = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423533 ifconfig_ipv6_local = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423538 ifconfig_ipv6_netbits = 0 Wed Mar 22 14:43:30 2017 us=423544 ifconfig_ipv6_remote = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423550 shaper = 0 Wed Mar 22 14:43:30 2017 us=423550 shaper = 0 Wed Mar 22 14:43:30 2017 us=423555 mtu_test = 0 Wed Mar 22 14:43:30 2017 us=423560 mlock = DISABLED Wed Mar 22 14:43:30 2017 us=423566 keepalive_ping = 10 Wed Mar 22 14:43:30 2017 us=423571 keepalive_timeout = 60 Wed Mar 22 14:43:30 2017 us=423579 inactivity_timeout = 0 Wed Mar 22 14:43:30 2017 us=423579 inactivity_timeout = 0 Wed Mar 22 14:43:30 2017 us=423584 ping_send_timeout = 10 Wed Mar 22 14:43:30 2017 us=423584 ping_send_timeout = 10 Wed Mar 22 14:43:30 2017 us=423589 ping_rec_timeout = 120 Wed Mar 22 14:43:30 2017 us=423589 ping_rec_timeout = 120 Wed Mar 22 14:43:30 2017 us=423593 ping_rec_timeout_action = 2 Wed Mar 22 14:43:30 2017 us=423593 ping_rec_timeout_action = 2 Wed Mar 22 14:43:30 2017 us=423598 ping_timer_remote = ENABLED Wed Mar 22 14:43:30 2017 us=423598 ping_timer_remote = ENABLED Wed Mar 22 14:43:30 2017 us=423602 remap_sigusr1 = 0 Wed Mar 22 14:43:30 2017 us=423602 remap_sigusr1 = 0 Wed Mar 22 14:43:30 2017 us=423607 persist_tun = ENABLED Wed Mar 22 14:43:30 2017 us=423607 persist_tun = ENABLED Wed Mar 22 14:43:30 2017 us=423612 persist_local_ip = DISABLED Wed Mar 22 14:43:30 2017 us=423612 persist_local_ip = DISABLED Wed Mar 22 14:43:30 2017 us=423617 persist_remote_ip = DISABLED Wed Mar 22 14:43:30 2017 us=423617 persist_remote_ip = DISABLED Wed Mar 22 14:43:30 2017 us=423622 persist_key = ENABLED Wed Mar 22 14:43:30 2017 us=423626 passtos = DISABLED Wed Mar 22 14:43:30 2017 us=423633 resolve_retry_seconds = 1000000000 Wed Mar 22 14:43:30 2017 us=423633 resolve_retry_seconds = 1000000000 Wed Mar 22 14:43:30 2017 us=423638 resolve_in_advance = DISABLED Wed Mar 22 14:43:30 2017 us=423644 username = 'openvpn' Wed Mar 22 14:43:30 2017 us=423651 groupname = 'openvpn' Wed Mar 22 14:43:30 2017 us=423656 chroot_dir = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423660 cd_dir = '/etc/openvpn' Wed Mar 22 14:43:30 2017 us=423666 writepid = '/var/run/openvpn/server-tun.pid' Wed Mar 22 14:43:30 2017 us=423679 up_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423679 up_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423684 down_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423689 down_pre = DISABLED Wed Mar 22 14:43:30 2017 us=423693 up_restart = DISABLED Wed Mar 22 14:43:30 2017 us=423703 up_delay = DISABLED Wed Mar 22 14:43:30 2017 us=423710 daemon = ENABLED Wed Mar 22 14:43:30 2017 us=423715 inetd = 0 Wed Mar 22 14:43:30 2017 us=423719 log = ENABLED Wed Mar 22 14:43:30 2017 us=423723 suppress_timestamps = DISABLED Wed Mar 22 14:43:30 2017 us=423727 machine_readable_output = DISABLED Wed Mar 22 14:43:30 2017 us=423731 nice = 0 Wed Mar 22 14:43:30 2017 us=423735 verbosity = 4 Wed Mar 22 14:43:30 2017 us=423739 mute = 0 Wed Mar 22 14:43:30 2017 us=423743 gremlin = 0 Wed Mar 22 14:43:30 2017 us=423747 status_file = '/var/log/openvpn/openvpn-status-tun.log' Wed Mar 22 14:43:30 2017 us=423751 status_file_version = 1 Wed Mar 22 14:43:30 2017 us=423755 status_file_update_freq = 1 Wed Mar 22 14:43:30 2017 us=423759 occ = ENABLED Wed Mar 22 14:43:30 2017 us=423763 rcvbuf = 0 Wed Mar 22 14:43:30 2017 us=423767 sndbuf = 0 Wed Mar 22 14:43:30 2017 us=423771 mark = 0 Wed Mar 22 14:43:30 2017 us=423775 sockflags = 0 Wed Mar 22 14:43:30 2017 us=423779 fast_io = DISABLED Wed Mar 22 14:43:30 2017 us=423783 comp.alg = 2 Wed Mar 22 14:43:30 2017 us=423787 comp.flags = 0 Wed Mar 22 14:43:30 2017 us=423791 route_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423795 route_default_gateway = '172.16.120.130' Wed Mar 22 14:43:30 2017 us=423800 route_default_metric = 0 Wed Mar 22 14:43:30 2017 us=423804 route_noexec = DISABLED Wed Mar 22 14:43:30 2017 us=423808 route_delay = 0 Wed Mar 22 14:43:30 2017 us=423812 route_delay_window = 30 Wed Mar 22 14:43:30 2017 us=423816 route_delay_defined = DISABLED Wed Mar 22 14:43:30 2017 us=423820 route_nopull = DISABLED Wed Mar 22 14:43:30 2017 us=423824 route_gateway_via_dhcp = DISABLED Wed Mar 22 14:43:30 2017 us=423828 allow_pull_fqdn = DISABLED Wed Mar 22 14:43:30 2017 us=423832 management_addr = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423836 management_port = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423840 management_user_pass = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423844 management_log_history_cache = 250 Wed Mar 22 14:43:30 2017 us=423849 management_echo_buffer_size = 100 Wed Mar 22 14:43:30 2017 us=423853 management_write_peer_info_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423857 management_client_user = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423861 management_client_group = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423865 management_flags = 0 Wed Mar 22 14:43:30 2017 us=423871 plugin[0] /etc/openvpn/plugin/radiusplugin-wo_acc.so '[/etc/openvpn/plugin/radiusplugin-wo_acc.so] [/etc/openvpn/radiusplugin-tun.cnf]' Wed Mar 22 14:43:30 2017 us=423875 shared_secret_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423880 key_direction = 1 Wed Mar 22 14:43:30 2017 us=423884 ciphername = 'AES-128-CBC' Wed Mar 22 14:43:30 2017 us=423888 ncp_enabled = ENABLED Wed Mar 22 14:43:30 2017 us=423892 ncp_ciphers = 'AES-128-GCM:AES-128-CBC:AES-256-GCM:AES-256-CBC' Wed Mar 22 14:43:30 2017 us=423897 authname = 'SHA1' Wed Mar 22 14:43:30 2017 us=423901 prng_hash = 'SHA1' Wed Mar 22 14:43:30 2017 us=423905 prng_nonce_secret_len = 16 Wed Mar 22 14:43:30 2017 us=423909 keysize = 16 Wed Mar 22 14:43:30 2017 us=423913 engine = DISABLED Wed Mar 22 14:43:30 2017 us=423917 replay = ENABLED Wed Mar 22 14:43:30 2017 us=423921 mute_replay_warnings = DISABLED Wed Mar 22 14:43:30 2017 us=423925 replay_window = 64 Wed Mar 22 14:43:30 2017 us=423930 replay_time = 15 Wed Mar 22 14:43:30 2017 us=423934 packet_id_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423938 use_iv = ENABLED Wed Mar 22 14:43:30 2017 us=423942 test_crypto = DISABLED Wed Mar 22 14:43:30 2017 us=423946 tls_server = ENABLED Wed Mar 22 14:43:30 2017 us=423950 tls_client = DISABLED Wed Mar 22 14:43:30 2017 us=423954 key_method = 2 Wed Mar 22 14:43:30 2017 us=423958 ca_file = '/etc/openvpn/private/cavpn_cert.pem' Wed Mar 22 14:43:30 2017 us=423966 ca_path = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423971 dh_file = '/etc/openvpn/private/dh2048.pem' Wed Mar 22 14:43:30 2017 us=423975 cert_file = '/etc/openvpn/private/server.pem' Wed Mar 22 14:43:30 2017 us=423979 extra_certs_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423983 priv_key_file = '/etc/openvpn/private/server.key' Wed Mar 22 14:43:30 2017 us=423988 pkcs12_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423992 cipher_list = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423996 tls_verify = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424000 tls_export_cert = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424004 verify_x509_type = 0 Wed Mar 22 14:43:30 2017 us=424008 verify_x509_name = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424012 crl_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424016 ns_cert_type = 0 Wed Mar 22 14:43:30 2017 us=424020 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424024 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424028 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424032 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424035 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424039 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424043 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424047 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424051 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424064 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424068 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424072 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424076 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424079 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424083 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424087 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424091 remote_cert_eku = 'TLS Web Client Authentication' Wed Mar 22 14:43:30 2017 us=424095 ssl_flags = 132 Wed Mar 22 14:43:30 2017 us=424099 tls_timeout = 10 Wed Mar 22 14:43:30 2017 us=424104 renegotiate_bytes = -1 Wed Mar 22 14:43:30 2017 us=424108 renegotiate_packets = 0 Wed Mar 22 14:43:30 2017 us=424112 renegotiate_seconds = 1800 Wed Mar 22 14:43:30 2017 us=424116 handshake_window = 60 Wed Mar 22 14:43:30 2017 us=424120 transition_window = 3600 Wed Mar 22 14:43:30 2017 us=424124 single_session = DISABLED Wed Mar 22 14:43:30 2017 us=424128 push_peer_info = DISABLED Wed Mar 22 14:43:30 2017 us=424132 tls_exit = DISABLED Wed Mar 22 14:43:30 2017 us=424136 tls_auth_file = '[[INLINE]]' Wed Mar 22 14:43:30 2017 us=424140 tls_crypt_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424146 server_network = 172.16.120.128 Wed Mar 22 14:43:30 2017 us=424150 server_netmask = 255.255.255.192 Wed Mar 22 14:43:30 2017 us=424156 server_network_ipv6 = :: Wed Mar 22 14:43:30 2017 us=424161 server_netbits_ipv6 = 0 Wed Mar 22 14:43:30 2017 us=424166 server_bridge_ip = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=424170 server_bridge_netmask = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=424175 server_bridge_pool_start = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=424180 server_bridge_pool_end = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=424205 push_entry = 'comp-noadapt' Wed Mar 22 14:43:30 2017 us=424209 push_entry = 'reneg-sec 1800' Wed Mar 22 14:43:30 2017 us=424213 push_entry = 'route-gateway 172.16.120.129' Wed Mar 22 14:43:30 2017 us=424217 push_entry = 'topology subnet' Wed Mar 22 14:43:30 2017 us=424221 push_entry = 'ping 10' Wed Mar 22 14:43:30 2017 us=424225 push_entry = 'ping-restart 60' Wed Mar 22 14:43:30 2017 us=424229 ifconfig_pool_defined = ENABLED Wed Mar 22 14:43:30 2017 us=424238 ifconfig_pool_start = 172.16.120.130 Wed Mar 22 14:43:30 2017 us=424244 ifconfig_pool_end = 172.16.120.189 Wed Mar 22 14:43:30 2017 us=424248 ifconfig_pool_netmask = 255.255.255.192 Wed Mar 22 14:43:30 2017 us=424253 ifconfig_pool_persist_filename = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424257 ifconfig_pool_persist_refresh_freq = 600 Wed Mar 22 14:43:30 2017 us=424261 ifconfig_ipv6_pool_defined = DISABLED Wed Mar 22 14:43:30 2017 us=424266 ifconfig_ipv6_pool_base = :: Wed Mar 22 14:43:30 2017 us=424270 ifconfig_ipv6_pool_netbits = 0 Wed Mar 22 14:43:30 2017 us=424274 n_bcast_buf = 256 Wed Mar 22 14:43:30 2017 us=424278 tcp_queue_limit = 64 Wed Mar 22 14:43:30 2017 us=424282 real_hash_size = 256 Wed Mar 22 14:43:30 2017 us=424286 virtual_hash_size = 256 Wed Mar 22 14:43:30 2017 us=424290 client_connect_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424294 learn_address_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424299 client_disconnect_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424303 client_config_dir = '/etc/openvpn/tun-ccd' Wed Mar 22 14:43:30 2017 us=424307 ccd_exclusive = DISABLED Wed Mar 22 14:43:30 2017 us=423710 daemon = ENABLED Wed Mar 22 14:43:30 2017 us=423715 inetd = 0 Wed Mar 22 14:43:30 2017 us=423719 log = ENABLED Wed Mar 22 14:43:30 2017 us=423723 suppress_timestamps = DISABLED Wed Mar 22 14:43:30 2017 us=423727 machine_readable_output = DISABLED Wed Mar 22 14:43:30 2017 us=423731 nice = 0 Wed Mar 22 14:43:30 2017 us=423735 verbosity = 4 Wed Mar 22 14:43:30 2017 us=423739 mute = 0 Wed Mar 22 14:43:30 2017 us=423743 gremlin = 0 Wed Mar 22 14:43:30 2017 us=423747 status_file = '/var/log/openvpn/openvpn-status-tun.log' Wed Mar 22 14:43:30 2017 us=423751 status_file_version = 1 Wed Mar 22 14:43:30 2017 us=423755 status_file_update_freq = 1 Wed Mar 22 14:43:30 2017 us=423759 occ = ENABLED Wed Mar 22 14:43:30 2017 us=423763 rcvbuf = 0 Wed Mar 22 14:43:30 2017 us=423767 sndbuf = 0 Wed Mar 22 14:43:30 2017 us=423771 mark = 0 Wed Mar 22 14:43:30 2017 us=423775 sockflags = 0 Wed Mar 22 14:43:30 2017 us=423779 fast_io = DISABLED Wed Mar 22 14:43:30 2017 us=423783 comp.alg = 2 Wed Mar 22 14:43:30 2017 us=423787 comp.flags = 0 Wed Mar 22 14:43:30 2017 us=423791 route_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423795 route_default_gateway = '172.16.120.130' Wed Mar 22 14:43:30 2017 us=423800 route_default_metric = 0 Wed Mar 22 14:43:30 2017 us=423804 route_noexec = DISABLED Wed Mar 22 14:43:30 2017 us=423808 route_delay = 0 Wed Mar 22 14:43:30 2017 us=423812 route_delay_window = 30 Wed Mar 22 14:43:30 2017 us=423816 route_delay_defined = DISABLED Wed Mar 22 14:43:30 2017 us=423820 route_nopull = DISABLED Wed Mar 22 14:43:30 2017 us=423824 route_gateway_via_dhcp = DISABLED Wed Mar 22 14:43:30 2017 us=423828 allow_pull_fqdn = DISABLED Wed Mar 22 14:43:30 2017 us=423832 management_addr = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423836 management_port = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423840 management_user_pass = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423844 management_log_history_cache = 250 Wed Mar 22 14:43:30 2017 us=423849 management_echo_buffer_size = 100 Wed Mar 22 14:43:30 2017 us=423853 management_write_peer_info_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423857 management_client_user = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423861 management_client_group = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423865 management_flags = 0 Wed Mar 22 14:43:30 2017 us=423871 plugin[0] /etc/openvpn/plugin/radiusplugin-wo_acc.so '[/etc/openvpn/plugin/radiusplugin-wo_acc.so] [/etc/openvpn/radiusplugin-tun.cnf]' Wed Mar 22 14:43:30 2017 us=423875 shared_secret_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423880 key_direction = 1 Wed Mar 22 14:43:30 2017 us=423884 ciphername = 'AES-128-CBC' Wed Mar 22 14:43:30 2017 us=423888 ncp_enabled = ENABLED Wed Mar 22 14:43:30 2017 us=423892 ncp_ciphers = 'AES-128-GCM:AES-128-CBC:AES-256-GCM:AES-256-CBC' Wed Mar 22 14:43:30 2017 us=423897 authname = 'SHA1' Wed Mar 22 14:43:30 2017 us=423901 prng_hash = 'SHA1' Wed Mar 22 14:43:30 2017 us=423905 prng_nonce_secret_len = 16 Wed Mar 22 14:43:30 2017 us=423909 keysize = 16 Wed Mar 22 14:43:30 2017 us=423913 engine = DISABLED Wed Mar 22 14:43:30 2017 us=423917 replay = ENABLED Wed Mar 22 14:43:30 2017 us=423921 mute_replay_warnings = DISABLED Wed Mar 22 14:43:30 2017 us=423925 replay_window = 64 Wed Mar 22 14:43:30 2017 us=423930 replay_time = 15 Wed Mar 22 14:43:30 2017 us=423934 packet_id_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423938 use_iv = ENABLED Wed Mar 22 14:43:30 2017 us=423942 test_crypto = DISABLED Wed Mar 22 14:43:30 2017 us=423946 tls_server = ENABLED Wed Mar 22 14:43:30 2017 us=423950 tls_client = DISABLED Wed Mar 22 14:43:30 2017 us=423954 key_method = 2 Wed Mar 22 14:43:30 2017 us=423958 ca_file = '/etc/openvpn/private/cavpn_cert.pem' Wed Mar 22 14:43:30 2017 us=423966 ca_path = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423971 dh_file = '/etc/openvpn/private/dh2048.pem' Wed Mar 22 14:43:30 2017 us=423975 cert_file = '/etc/openvpn/private/server.pem' Wed Mar 22 14:43:30 2017 us=423979 extra_certs_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423983 priv_key_file = '/etc/openvpn/private/server.key' Wed Mar 22 14:43:30 2017 us=423988 pkcs12_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423992 cipher_list = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=423996 tls_verify = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424000 tls_export_cert = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424004 verify_x509_type = 0 Wed Mar 22 14:43:30 2017 us=424008 verify_x509_name = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424012 crl_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424016 ns_cert_type = 0 Wed Mar 22 14:43:30 2017 us=424020 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424024 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424028 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424032 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424035 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424039 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424043 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424047 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424051 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424064 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424068 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424072 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424076 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424079 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424083 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424087 remote_cert_ku[i] = 0 Wed Mar 22 14:43:30 2017 us=424091 remote_cert_eku = 'TLS Web Client Authentication' Wed Mar 22 14:43:30 2017 us=424095 ssl_flags = 132 Wed Mar 22 14:43:30 2017 us=424099 tls_timeout = 10 Wed Mar 22 14:43:30 2017 us=424104 renegotiate_bytes = -1 Wed Mar 22 14:43:30 2017 us=424108 renegotiate_packets = 0 Wed Mar 22 14:43:30 2017 us=424112 renegotiate_seconds = 1800 Wed Mar 22 14:43:30 2017 us=424116 handshake_window = 60 Wed Mar 22 14:43:30 2017 us=424120 transition_window = 3600 Wed Mar 22 14:43:30 2017 us=424124 single_session = DISABLED Wed Mar 22 14:43:30 2017 us=424128 push_peer_info = DISABLED Wed Mar 22 14:43:30 2017 us=424132 tls_exit = DISABLED Wed Mar 22 14:43:30 2017 us=424136 tls_auth_file = '[[INLINE]]' Wed Mar 22 14:43:30 2017 us=424140 tls_crypt_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424146 server_network = 172.16.120.128 Wed Mar 22 14:43:30 2017 us=424150 server_netmask = 255.255.255.192 Wed Mar 22 14:43:30 2017 us=424156 server_network_ipv6 = :: Wed Mar 22 14:43:30 2017 us=424161 server_netbits_ipv6 = 0 Wed Mar 22 14:43:30 2017 us=424166 server_bridge_ip = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=424170 server_bridge_netmask = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=424175 server_bridge_pool_start = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=424180 server_bridge_pool_end = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=424205 push_entry = 'comp-noadapt' Wed Mar 22 14:43:30 2017 us=424209 push_entry = 'reneg-sec 1800' Wed Mar 22 14:43:30 2017 us=424213 push_entry = 'route-gateway 172.16.120.129' Wed Mar 22 14:43:30 2017 us=424217 push_entry = 'topology subnet' Wed Mar 22 14:43:30 2017 us=424221 push_entry = 'ping 10' Wed Mar 22 14:43:30 2017 us=424225 push_entry = 'ping-restart 60' Wed Mar 22 14:43:30 2017 us=424229 ifconfig_pool_defined = ENABLED Wed Mar 22 14:43:30 2017 us=424238 ifconfig_pool_start = 172.16.120.130 Wed Mar 22 14:43:30 2017 us=424244 ifconfig_pool_end = 172.16.120.189 Wed Mar 22 14:43:30 2017 us=424248 ifconfig_pool_netmask = 255.255.255.192 Wed Mar 22 14:43:30 2017 us=424253 ifconfig_pool_persist_filename = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424257 ifconfig_pool_persist_refresh_freq = 600 Wed Mar 22 14:43:30 2017 us=424261 ifconfig_ipv6_pool_defined = DISABLED Wed Mar 22 14:43:30 2017 us=424266 ifconfig_ipv6_pool_base = :: Wed Mar 22 14:43:30 2017 us=424270 ifconfig_ipv6_pool_netbits = 0 Wed Mar 22 14:43:30 2017 us=424274 n_bcast_buf = 256 Wed Mar 22 14:43:30 2017 us=424278 tcp_queue_limit = 64 Wed Mar 22 14:43:30 2017 us=424282 real_hash_size = 256 Wed Mar 22 14:43:30 2017 us=424286 virtual_hash_size = 256 Wed Mar 22 14:43:30 2017 us=424290 client_connect_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424294 learn_address_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424299 client_disconnect_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=424303 client_config_dir = '/etc/openvpn/tun-ccd' Wed Mar 22 14:43:30 2017 us=424307 ccd_exclusive = DISABLED Wed Mar 22 14:43:30 2017 us=425161 tmp_dir = '/etc/openvpn/tmp' Wed Mar 22 14:43:30 2017 us=425174 push_ifconfig_defined = DISABLED Wed Mar 22 14:43:30 2017 us=425180 push_ifconfig_local = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=425185 push_ifconfig_remote_netmask = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=425190 push_ifconfig_ipv6_defined = DISABLED Wed Mar 22 14:43:30 2017 us=425195 push_ifconfig_ipv6_local = ::/0 Wed Mar 22 14:43:30 2017 us=425200 push_ifconfig_ipv6_remote = :: Wed Mar 22 14:43:30 2017 us=425204 enable_c2c = ENABLED Wed Mar 22 14:43:30 2017 us=425208 duplicate_cn = DISABLED Wed Mar 22 14:43:30 2017 us=425212 cf_max = 0 Wed Mar 22 14:43:30 2017 us=425217 cf_per = 0 Wed Mar 22 14:43:30 2017 us=425221 max_clients = 60 Wed Mar 22 14:43:30 2017 us=425225 max_routes_per_client = 256 Wed Mar 22 14:43:30 2017 us=425230 auth_user_pass_verify_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=425234 auth_user_pass_verify_script_via_file = DISABLED Wed Mar 22 14:43:30 2017 us=425238 auth_token_generate = DISABLED Wed Mar 22 14:43:30 2017 us=425242 auth_token_lifetime = 0 Wed Mar 22 14:43:30 2017 us=425247 port_share_host = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=425251 port_share_port = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=425255 client = DISABLED Wed Mar 22 14:43:30 2017 us=425259 pull = DISABLED Wed Mar 22 14:43:30 2017 us=425263 auth_user_pass_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=425269 OpenVPN 2.4.0 i686-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Mar 17 2017 Wed Mar 22 14:43:30 2017 us=425277 library versions: OpenSSL 1.0.1e-fips 11 Feb 2013, LZO 2.03 Wed Mar 22 14:43:30 2017 us=425161 tmp_dir = '/etc/openvpn/tmp' Wed Mar 22 14:43:30 2017 us=425174 push_ifconfig_defined = DISABLED Wed Mar 22 14:43:30 2017 us=425180 push_ifconfig_local = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=425185 push_ifconfig_remote_netmask = 0.0.0.0 Wed Mar 22 14:43:30 2017 us=425190 push_ifconfig_ipv6_defined = DISABLED Wed Mar 22 14:43:30 2017 us=425195 push_ifconfig_ipv6_local = ::/0 Wed Mar 22 14:43:30 2017 us=425200 push_ifconfig_ipv6_remote = :: Wed Mar 22 14:43:30 2017 us=425204 enable_c2c = ENABLED Wed Mar 22 14:43:30 2017 us=425208 duplicate_cn = DISABLED Wed Mar 22 14:43:30 2017 us=425212 cf_max = 0 Wed Mar 22 14:43:30 2017 us=425217 cf_per = 0 Wed Mar 22 14:43:30 2017 us=425221 max_clients = 60 Wed Mar 22 14:43:30 2017 us=425225 max_routes_per_client = 256 Wed Mar 22 14:43:30 2017 us=425230 auth_user_pass_verify_script = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=425234 auth_user_pass_verify_script_via_file = DISABLED Wed Mar 22 14:43:30 2017 us=425238 auth_token_generate = DISABLED Wed Mar 22 14:43:30 2017 us=425242 auth_token_lifetime = 0 Wed Mar 22 14:43:30 2017 us=425247 port_share_host = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=425251 port_share_port = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=425255 client = DISABLED Wed Mar 22 14:43:30 2017 us=425259 pull = DISABLED Wed Mar 22 14:43:30 2017 us=425263 auth_user_pass_file = '[UNDEF]' Wed Mar 22 14:43:30 2017 us=425269 OpenVPN 2.4.0 i686-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Mar 17 2017 Wed Mar 22 14:43:30 2017 us=425277 library versions: OpenSSL 1.0.1e-fips 11 Feb 2013, LZO 2.03 Wed Mar 22 14:43:30 2017 RADIUS-PLUGIN: Configfile name: /etc/openvpn/radiusplugin-tun.cnf. Wed Mar 22 14:43:30 2017 us=426814 PLUGIN_INIT: POST /etc/openvpn/plugin/radiusplugin-wo_acc.so '[/etc/openvpn/plugin/radiusplugin-wo_acc.so] [/etc/openvpn/radiusplugin-tun.cnf]' intercepted=PLUGIN_AUTH_USER_PASS_VERIFY Wed Mar 22 14:43:30 2017 us=448436 Diffie-Hellman initialized with 2048 bit key Wed Mar 22 14:43:30 2017 us=448821 Failed to extract curve from certificate (UNDEF), using secp384r1 instead. Wed Mar 22 14:43:30 2017 us=448852 ECDH curve secp384r1 added Wed Mar 22 14:43:30 2017 us=448976 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Wed Mar 22 14:43:30 2017 us=448997 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Wed Mar 22 14:43:30 2017 us=449016 TLS-Auth MTU parms [ L:1624 D:1182 EF:68 EB:0 ET:0 EL:3 ] Wed Mar 22 14:43:30 2017 us=449310 TUN/TAP device tun0 opened Wed Mar 22 14:43:30 2017 us=449336 TUN/TAP TX queue length set to 100 Wed Mar 22 14:43:30 2017 us=449353 do_ifconfig, tt->did_ifconfig_ipv6_setup=0 Wed Mar 22 14:43:30 2017 us=449371 /usr/sbin/ip link set dev tun0 up mtu 1500 Wed Mar 22 14:43:30 2017 us=453412 /usr/sbin/ip addr add dev tun0 172.16.120.129/26 broadcast 172.16.120.191 Wed Mar 22 14:43:30 2017 us=454245 Data Channel MTU parms [ L:1624 D:1450 EF:124 EB:406 ET:0 EL:3 ] Wed Mar 22 14:43:30 2017 us=454429 Could not determine IPv4/IPv6 protocol. Using AF_INET Wed Mar 22 14:43:30 2017 us=454448 Socket Buffers: R=[87380->87380] S=[16384->16384] Wed Mar 22 14:43:30 2017 us=454463 Listening for incoming TCP connection on [AF_INET]213.25.35.131:443 Wed Mar 22 14:43:30 2017 us=454480 TCPv4_SERVER link local (bound): [AF_INET]213.25.35.131:443 Wed Mar 22 14:43:30 2017 us=454487 TCPv4_SERVER link remote: [AF_UNSPEC] Wed Mar 22 14:43:30 2017 us=454496 GID set to openvpn Wed Mar 22 14:43:30 2017 us=454504 UID set to openvpn Wed Mar 22 14:43:30 2017 us=454514 MULTI: multi_init called, r=256 v=256 Wed Mar 22 14:43:30 2017 us=454531 IFCONFIG POOL: base=172.16.120.130 size=60, ipv6=0 Wed Mar 22 14:43:30 2017 us=454544 MULTI: TCP INIT maxclients=60 maxevents=64 Wed Mar 22 14:43:30 2017 us=454567 Initialization Sequence Completed
client try to connect
Wed Mar 22 14:43:55 2017 us=717818 MULTI: multi_create_instance called Wed Mar 22 14:43:55 2017 us=717866 Re-using SSL/TLS context Wed Mar 22 14:43:55 2017 us=717883 LZO compression initializing Wed Mar 22 14:43:55 2017 us=718000 Control Channel MTU parms [ L:1624 D:1182 EF:68 EB:0 ET:0 EL:3 ] Wed Mar 22 14:43:55 2017 us=718024 Data Channel MTU parms [ L:1624 D:1450 EF:124 EB:406 ET:0 EL:3 ] Wed Mar 22 14:43:55 2017 us=718107 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,keydir 0,cipher AES-128-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server' Wed Mar 22 14:43:55 2017 us=718122 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,keydir 1,cipher AES-128-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client' Wed Mar 22 14:43:55 2017 us=718122 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,keydir 1,cipher AES-128-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client' Wed Mar 22 14:43:55 2017 us=718142 TCP connection established with [AF_INET]213.25.XX.YY:49651 Wed Mar 22 14:43:55 2017 us=718154 TCP_SERVER link local: (not bound) Wed Mar 22 14:43:55 2017 us=718154 TCP_SERVER link local: (not bound) Wed Mar 22 14:43:55 2017 us=718162 TCP_SERVER link remote: [AF_INET]213.25.XX.YY:49651 Wed Mar 22 14:43:55 2017 us=718263 213.25.XX.YY:49651 TLS: Initial packet from [AF_INET]213.25.XX.YY:49651, sid=659a173e 9a48f99f Wed Mar 22 14:43:55 2017 us=873996 213.25.XX.YY:49651 VERIFY OK: depth=1, O=Company, CN=Public VPN CA Wed Mar 22 14:43:55 2017 us=874309 213.25.XX.YY:49651 Validating certificate extended key usage Wed Mar 22 14:43:55 2017 us=874326 213.25.XX.YY:49651 ++ Certificate has EKU (str) TLS Web Client Authentication, expects TLS Web Client Authentication Wed Mar 22 14:43:55 2017 us=874335 213.25.XX.YY:49651 VERIFY EKU OK Wed Mar 22 14:43:55 2017 us=874341 213.25.XX.YY:49651 VERIFY OK: depth=0, O=Company, CN=Test User Wed Mar 22 14:43:55 2017 us=883163 213.25.XX.YY:49651 peer info: IV_GUI_VER=net.openvpn.connect.ios_1.1.1-212 Wed Mar 22 14:43:55 2017 us=883187 213.25.XX.YY:49651 peer info: IV_VER=3.1.2 Wed Mar 22 14:43:55 2017 us=883187 213.25.XX.YY:49651 peer info: IV_VER=3.1.2 Wed Mar 22 14:43:55 2017 us=883195 213.25.XX.YY:49651 peer info: IV_PLAT=ios Wed Mar 22 14:43:55 2017 us=883201 213.25.XX.YY:49651 peer info: IV_NCP=2 Wed Mar 22 14:43:55 2017 us=883213 213.25.XX.YY:49651 peer info: IV_TCPNL=1 Wed Mar 22 14:43:55 2017 us=883213 213.25.XX.YY:49651 peer info: IV_TCPNL=1 Wed Mar 22 14:43:55 2017 us=883220 213.25.XX.YY:49651 peer info: IV_PROTO=2 Wed Mar 22 14:43:55 2017 us=883220 213.25.XX.YY:49651 peer info: IV_PROTO=2 Wed Mar 22 14:43:55 2017 us=883227 213.25.XX.YY:49651 peer info: IV_LZO=1 Wed Mar 22 14:43:55 2017 us=883366 213.25.XX.YY:49651 PLUGIN_CALL: POST /etc/openvpn/plugin/radiusplugin-wo_acc.so/PLUGIN_AUTH_USER_PASS_VERIFY status=2 Wed Mar 22 14:43:55 2017 us=883388 213.25.XX.YY:49651 TLS: Username/Password authentication deferred for username 'testuser' [CN SET] Wed Mar 22 14:43:55 2017 us=883388 213.25.XX.YY:49651 TLS: Username/Password authentication deferred for username 'testuser' [CN SET] terminate called after throwing an instance of 'std::out_of_range' what(): basic_string::replace
# pstack 32200 #0 0x00a91424 in __kernel_vsyscall () #1 0x00414943 in __read_nocancel () from /lib/libc.so.6 #2 0x004ff380 in IpcSocket::recvInt() () from /etc/openvpn/plugin/radiusplugin-wo_acc.so #3 0x00504f4f in AuthenticationProcess::Authentication(PluginContext*) () from /etc/openvpn/plugin/radiusplugin-wo_acc.so #4 0x004fffdc in openvpn_plugin_open_v2 () from /etc/openvpn/plugin/radiusplugin-wo_acc.so #5 0x0809ae48 in plugin_list_open () #6 0x08061448 in open_plugins () #7 0x080657b1 in init_instance () #8 0x08066cee in init_instance_handle_signals () #9 0x08075da4 in tunnel_server_tcp () #10 0x0807fd70 in openvpn_main () #11 0x0807fe61 in main ()
# free
total used free shared buffers cached
Mem: 1030244 229124 801120 472 45764 129808
-/+ buffers/cache: 53552 976692
Swap: 497976 0 497976
Change History (6)
comment:1 Changed 7 years ago by
| Cc: | valdikss added |
|---|
comment:2 Changed 7 years ago by
I tried different versions (forks):
- Ubuntu source (openvpn-auth-radius_2.1-6build1)
- https://bitbucket.org/spelle/openvpn-auth-radius
- https://github.com/ValdikSS/openvpn-radiusplugin
and always get the same error:
terminate called after throwing an instance of 'std::out_of_range' what(): basic_string::replace
log with error (ValdikSS fork)
Wed Mar 22 09:45:28 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Fail to add attribute ATTRIB_User_Password. Wed Mar 22 09:45:28 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Get ACCOUNTING_RESPONSE-Packet. Wed Mar 22 09:45:28 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Scheduler: Update packet for User useralfa was send. RwrWWed Mar 22 09:45:29 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Scheduler: Update for User userbeta. Wed Mar 22 09:45:29 2017 RADIUS-PLUGIN: BACKGROUND ACCT: Scheduler: Read Statusfile. No value in the Attribute! Wed Mar 22 09:45:29 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Fail to add attribute ATTRIB_User_Password. Wed Mar 22 09:45:29 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Get ACCOUNTING_RESPONSE-Packet. Wed Mar 22 09:45:29 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Scheduler: Update packet for User userbeta was send. rWrWrWrWRwrWrWrWrWrWRwrWRwRwRwRwrWrWRwRWWRWed Mar 22 09:45:36 2017 us=81486 MULTI: multi_create_instance called Wed Mar 22 09:45:36 2017 us=81523 Re-using SSL/TLS context Wed Mar 22 09:45:36 2017 us=81536 LZO compression initializing Wed Mar 22 09:45:36 2017 us=81617 Control Channel MTU parms [ L:1624 D:1182 EF:68 EB:0 ET:0 EL:3 ] Wed Mar 22 09:45:36 2017 us=81637 Data Channel MTU parms [ L:1624 D:1450 EF:124 EB:406 ET:0 EL:3 ] Wed Mar 22 09:45:36 2017 us=81708 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,keydir 0,cipher AES-128-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server' Wed Mar 22 09:45:36 2017 us=81719 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,keydir 1,cipher AES-128-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client' Wed Mar 22 09:45:36 2017 us=81734 TCP connection established with [AF_INET]81.243.XX.XX:61253 Wed Mar 22 09:45:36 2017 us=81742 TCP_SERVER link local: (not bound) Wed Mar 22 09:45:36 2017 us=81749 TCP_SERVER link remote: [AF_INET]81.243.XX.XX:61253 RWed Mar 22 09:45:37 2017 us=41254 81.243.XX.XX:61253 TLS: Initial packet from [AF_INET]81.243.XX.XX:61253, sid=adee565a 5be8169c WRRWWWRRwrWRRWRWed Mar 22 09:45:37 2017 us=607345 81.243.XX.XX:61253 VERIFY OK: depth=1, O=Asstra AG, CN=Asstra AG Public VPN CA, emailAddress=ca@asstra.by Wed Mar 22 09:45:37 2017 us=607622 81.243.XX.XX:61253 Validating certificate extended key usage Wed Mar 22 09:45:37 2017 us=607637 81.243.XX.XX:61253 ++ Certificate has EKU (str) TLS Web Client Authentication, expects TLS Web Client Authentication Wed Mar 22 09:45:37 2017 us=607647 81.243.XX.XX:61253 VERIFY EKU OK Wed Mar 22 09:45:37 2017 us=607653 81.243.XX.XX:61253 VERIFY OK: depth=0, O=Company, CN=User Delta WRWRWed Mar 22 09:45:37 2017 us=697747 81.243.XX.XX:61253 peer info: IV_VER=2.5_master Wed Mar 22 09:45:37 2017 us=697764 81.243.XX.XX:61253 peer info: IV_PLAT=android Wed Mar 22 09:45:37 2017 us=697773 81.243.XX.XX:61253 peer info: IV_PROTO=2 Wed Mar 22 09:45:37 2017 us=697780 81.243.XX.XX:61253 peer info: IV_NCP=2 Wed Mar 22 09:45:37 2017 us=697785 81.243.XX.XX:61253 peer info: IV_LZ4=1 Wed Mar 22 09:45:37 2017 us=697791 81.243.XX.XX:61253 peer info: IV_LZ4v2=1 Wed Mar 22 09:45:37 2017 us=697796 81.243.XX.XX:61253 peer info: IV_LZO=1 Wed Mar 22 09:45:37 2017 us=697804 81.243.XX.XX:61253 peer info: IV_COMP_STUB=1 Wed Mar 22 09:45:37 2017 us=697810 81.243.XX.XX:61253 peer info: IV_COMP_STUBv2=1 Wed Mar 22 09:45:37 2017 us=697817 81.243.XX.XX:61253 peer info: IV_TCPNL=1 Wed Mar 22 09:45:37 2017 us=697823 81.243.XX.XX:61253 peer info: IV_GUI_VER=de.blinkt.openvpn_0.6.65 Wed Mar 22 09:45:37 2017 RADIUS-PLUGIN: FOREGROUND: OPENVPN_PLUGIN_AUTH_USER_PASS_VERIFY is called. Wed Mar 22 09:45:37 2017 RADIUS-PLUGIN: FOREGROUND: Commonname set to Username Wed Mar 22 09:45:37 2017 RADIUS-PLUGIN: FOREGROUND: StatusFileKey: userdelta,81.243.XX.XX:61253 Wed Mar 22 09:45:37 2017 RADIUS-PLUGIN: FOREGROUND: Key: 81.243.XX.XX:61253. Wed Mar 22 09:45:37 2017 us=697958 81.243.XX.XX:61253 PLUGIN_CALL: POST /etc/openvpn/plugin/radiusplugin-val-debug.so/PLUGIN_AUTH_USER_PASS_VERIFY status=2 Wed Mar 22 09:45:37 2017 us=697967 81.243.XX.XX:61253 TLS: Username/Password authentication deferred for username 'userdelta' [CN SET] Wterminate called after throwing an instance of 'std::out_of_range' what(): basic_string::replace Wed Mar 22 09:45:39 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Scheduler: Update for User atrofimov. Wed Mar 22 09:45:39 2017 RADIUS-PLUGIN: BACKGROUND ACCT: Scheduler: Read Statusfile. No value in the Attribute! Wed Mar 22 09:45:39 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Fail to add attribute ATTRIB_User_Password. Wed Mar 22 09:45:39 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Get ACCOUNTING_RESPONSE-Packet. Wed Mar 22 09:45:39 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Scheduler: Update packet for User atrofimov was send. Wed Mar 22 09:45:48 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Scheduler: Update for User useralfa. Wed Mar 22 09:45:48 2017 RADIUS-PLUGIN: BACKGROUND ACCT: Scheduler: Read Statusfile. No value in the Attribute! Wed Mar 22 09:45:48 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Fail to add attribute ATTRIB_User_Password. Wed Mar 22 09:45:48 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Get ACCOUNTING_RESPONSE-Packet. Wed Mar 22 09:45:48 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Scheduler: Update packet for User useralfa was send. Wed Mar 22 09:45:49 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Scheduler: Update for User userbeta. Wed Mar 22 09:45:49 2017 RADIUS-PLUGIN: BACKGROUND ACCT: Scheduler: Read Statusfile. No value in the Attribute! Wed Mar 22 09:45:49 2017 RADIUS-PLUGIN: BACKGROUND-ACCT: Fail to add attribute ATTRIB_User_Password.
how I can help (any info or debug option when compile plugin)?
comment:3 Changed 6 years ago by
@pkopchk are you still hitting this problem? or did you manage to find a solution?
comment:4 Changed 4 years ago by
| Milestone: | release 2.4.0 |
|---|---|
| Summary: | The server stop responding (std::out_of_range) → radiusplugin: The server stop responding (std::out_of_range) |
Removing the milestone because it's not tied to an OpenVPN release but to radiusplugin.
Not sure how to proceed here since @pkopchk isn't talking to us :-)
@valdikss: what are you using these days?
comment:5 Changed 16 months ago by
| Resolution: | → worksforme |
|---|---|
| Status: | new → closed |
Closing this ticket after having no feedback whatsoever for multiple years. There's nothing we can do here.
comment:6 Changed 7 months ago by
| Resolution: | worksforme |
|---|---|
| Status: | closed → reopened |
We've run into this problem recently as well. Radiusplugin crashes in function getTime(), since ctime() is not thread safe and occasionaly produces garbage. Due to plugin crash, all OpenVPN users get disconnected.
Note: See
TracTickets for help on using
tickets.
It's crashing in radiusplugin - that stuff (std::) is C++, not OpenVPN itself.
Which version of radiusplugin did you install? As far as I understand, there are a number of different forks floating around... cc'ing @valdikss, as he uses radiusplugin and is maintaining one of the forks (IIRC)