New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

ASSERT FAILED src/modules/proto_dhcp/dhcpd.c[379]: vp->vp_byte == 1 #2028

Closed
misullivan opened this Issue Jul 24, 2017 · 2 comments

Comments

Projects
None yet
2 participants
@misullivan

misullivan commented Jul 24, 2017

Host: FreeBSD 9.x
CPU/ARCH: Sparc64

(8) [suffix] = noop
(8) eap: Peer sent EAP Response (code 2) ID 9 length 107
(8) eap: Continuing tunnel setup
(8) [eap] = ok
(8) } # authorize = ok
(8) Found Auth-Type = eap
(8) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
(8) authenticate {
(8) eap: Expiring EAP session with state 0x0e6f06290e661c50
(8) eap: Finished EAP session with state 0x2bd1ee852cd8f76b
(8) eap: Previous EAP request found for state 0x2bd1ee852cd8f76b, released from the list
(8) eap: Peer sent packet with method EAP PEAP (25)
(8) eap: Calling submodule eap_peap to process data
(8) eap_peap: Continuing EAP-TLS
(8) eap_peap: [eaptls verify] = ok
(8) eap_peap: Done initial handshake
(8) eap_peap: [eaptls process] = ok
(8) eap_peap: Session established. Decoding tunneled attributes
(8) eap_peap: PEAP state phase2
(8) eap_peap: EAP method MSCHAPv2 (26)
(8) eap_peap: Got tunneled request
(8) eap_peap: EAP-Message = 0x0209004c1a0209004731ff4baced244483f1d5d9934aa86961330000000000000000b97b704b8b3a6b5fcd89916183e197cf16b2c44a417311ec006d696368656c6c6540697375782e636f6d
(8) eap_peap: Setting User-Name to
(8) eap_peap: Sending tunneled request to inner-tunnel
(8) eap_peap: EAP-Message = 0x0209004c1a0209004731ff4baced244483f1d5d9934aa86961330000000000000000b97b704b8b3a6b5fcd89916183e197cf16b2c44a417311ec006d696368656c6c6540697375782e636f6d
(8) eap_peap: FreeRADIUS-Proxied-To = 127.0.0.1
(8) eap_peap: User-Name = ""
(8) eap_peap: State = 0x0e6f06290e661c50d4d6ab99c92d3261
(8) Virtual server inner-tunnel received request
(8) EAP-Message = 0x0209004c1a0209004731ff4baced244483f1d5d9934aa86961330000000000000000b97b704b8b3a6b5fcd89916183e197cf16b2c44a417311ec006d696368656c6c6540697375782e636f6d
(8) FreeRADIUS-Proxied-To = 127.0.0.1
(8) User-Name = ""
(8) State = 0x0e6f06290e661c50d4d6ab99c92d3261
(8) WARNING: Outer and inner identities are the same. User privacy is compromised.
(8) server inner-tunnel {
(8) session-state: No cached attributes
(8) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
(8) authorize {
(8) policy filter_username {
(8) if (&User-Name) {
(8) if (&User-Name) -> TRUE
(8) if (&User-Name) {
(8) if (&User-Name =~ / /) {
(8) if (&User-Name =~ / /) -> FALSE
(8) if (&User-Name =~ /@[^@]@/ ) {
(8) if (&User-Name =~ /@[^@]
@/ ) -> FALSE
(8) if (&User-Name =~ /../ ) {
(8) if (&User-Name =~ /../ ) -> FALSE
(8) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) {
(8) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) -> FALSE
(8) if (&User-Name =~ /.$/) {
(8) if (&User-Name =~ /.$/) -> FALSE
(8) if (&User-Name =~ /@./) {
(8) if (&User-Name =~ /@./) -> FALSE
(8) } # if (&User-Name) = notfound
(8) } # policy filter_username = notfound
(8) [chap] = noop
(8) [mschap] = noop
(8) suffix: Checking for suffix after "@"
(8) suffix: Looking up realm "isux.com" for User-Name = ""
(8) suffix: No such realm "isux.com"
(8) [suffix] = noop
(8) update control {
(8) &Proxy-To-Realm := LOCAL
(8) } # update control = noop
(8) eap: Peer sent EAP Response (code 2) ID 9 length 76
(8) eap: No EAP Start, assuming it's an on-going EAP conversation
(8) [eap] = updated
(8) [files] = noop
(8) sql: EXPAND %{User-Name}
(8) sql: -->
(8) sql: SQL-User-Name set to ''
rlm_sql (sql): Reserved connection (1)
(8) sql: EXPAND SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id
(8) sql: --> SELECT id, username, attribute, value, op FROM radcheck WHERE username = '' ORDER BY id
(8) sql: Executing select query: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '' ORDER BY id
(8) sql: User found in radcheck table
(8) sql: Conditional check items matched, merging assignment check items
(8) sql: Cleartext-Password := ""
(8) sql: Pool-Name := "wireless_210"
(8) sql: EXPAND SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id
(8) sql: --> SELECT id, username, attribute, value, op FROM radreply WHERE username = '' ORDER BY id
(8) sql: Executing select query: SELECT id, username, attribute, value, op FROM radreply WHERE username = '' ORDER BY id
(8) sql: EXPAND SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority
(8) sql: --> SELECT groupname FROM radusergroup WHERE username = '' ORDER BY priority
(8) sql: Executing select query: SELECT groupname FROM radusergroup WHERE username = '' ORDER BY priority
(8) sql: User found in the group table
(8) sql: EXPAND SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{SQL-Group}' ORDER BY id
(8) sql: --> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'wireless_254' ORDER BY id
(8) sql: Executing select query: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'wireless_254' ORDER BY id
(8) sql: Group "wireless_254": Conditional check items matched
(8) sql: Group "wireless_254": Merging assignment check items
(8) sql: EXPAND SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{SQL-Group}' ORDER BY id
(8) sql: --> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'wireless_254' ORDER BY id
(8) sql: Executing select query: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'wireless_254' ORDER BY id
(8) sql: Group "wireless_254": Merging reply items
rlm_sql (sql): Released connection (1)
(8) [sql] = ok
(8) [expiration] = noop
(8) [logintime] = noop
(8) pap: WARNING: Auth-Type already set. Not setting to PAP
(8) [pap] = noop
(8) } # authorize = updated
(8) Found Auth-Type = eap
(8) # Executing group from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
(8) authenticate {
(8) eap: Expiring EAP session with state 0x0e6f06290e661c50
(8) eap: Finished EAP session with state 0x0e6f06290e661c50
(8) eap: Previous EAP request found for state 0x0e6f06290e661c50, released from the list
(8) eap: Peer sent packet with method EAP MSCHAPv2 (26)
(8) eap: Calling submodule eap_mschapv2 to process data
(8) eap_mschapv2: # Executing group from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
(8) eap_mschapv2: authenticate {
(8) mschap: Found Cleartext-Password, hashing to create NT-Password
(8) mschap: Found Cleartext-Password, hashing to create LM-Password
(8) mschap: Creating challenge hash with username:
(8) mschap: Client is using MS-CHAPv2
(8) mschap: Adding MS-CHAPv2 MPPE keys
(8) [mschap] = ok
(8) } # authenticate = ok
(8) MSCHAP Success
(8) eap: Sending EAP Request (code 1) ID 10 length 51
(8) eap: EAP session adding &reply:State = 0x0e6f06290f651c50
(8) [eap] = handled
(8) } # authenticate = handled
(8) } # server inner-tunnel
(8) Virtual server sending reply
(8) EAP-Message = 0x010a00331a0309002e533d44303544364139304130323946334443383333394439363241443644313346384533324544333139
(8) Message-Authenticator = 0x00000000000000000000000000000000
(8) State = 0x0e6f06290f651c50d4d6ab99c92d3261
(8) eap_peap: Got tunneled reply code 11
(8) eap_peap: EAP-Message = 0x010a00331a0309002e533d44303544364139304130323946334443383333394439363241443644313346384533324544333139
(8) eap_peap: Message-Authenticator = 0x00000000000000000000000000000000
(8) eap_peap: State = 0x0e6f06290f651c50d4d6ab99c92d3261
(8) eap_peap: Got tunneled reply RADIUS code 11
(8) eap_peap: EAP-Message = 0x010a00331a0309002e533d44303544364139304130323946334443383333394439363241443644313346384533324544333139
(8) eap_peap: Message-Authenticator = 0x00000000000000000000000000000000
(8) eap_peap: State = 0x0e6f06290f651c50d4d6ab99c92d3261
(8) eap_peap: Got tunneled Access-Challenge
(8) eap: Sending EAP Request (code 1) ID 10 length 91
(8) eap: EAP session adding &reply:State = 0x2bd1ee8523dbf76b
(8) [eap] = handled
(8) } # authenticate = handled
(8) Using Post-Auth-Type Challenge
(8) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
(8) Challenge { ... } # empty sub-section is ignored
(8) Sent Access-Challenge Id 12 from 10.10.0.3:1812 to 192.168.10.101:39755 length 0
(8) EAP-Message = 0x010a005b19001703010050b9615c35de85dc97e9abc1cd1fe2a3f289ace1401fedfef75848a47ac5c7a0bcb910956ce2e0fb14b25c17575b4f54ce8985e18d61e782e173baff9a4bea5576c95ec74ac6dfebee4aaeeba2b56168ce
(8) Message-Authenticator = 0x00000000000000000000000000000000
(8) State = 0x2bd1ee8523dbf76b18f4b786a56947e3
(8) Finished request
Waking up in 4.0 seconds.
(9) Received Access-Request Id 13 from 192.168.10.101:39755 to 10.10.0.3:1812 length 278
(9) User-Name = ""
(9) NAS-Identifier = "LEDE-MR24-210-101"
(9) Called-Station-Id = "88-DC-96-07-92-56:LEDE"
(9) NAS-Port-Type = Wireless-802.11
(9) Service-Type = Framed-User
(9) NAS-Port = 1
(9) Calling-Station-Id = "F4-1B-A1-00-CC-42"
(9) Connect-Info = "CONNECT 54Mbps 802.11a"
(9) Acct-Session-Id = "7226982286C87093"
(9) Mobility-Domain-Id = 20311
(9) WLAN-Pairwise-Cipher = 1027076
(9) WLAN-Group-Cipher = 1027076
(9) WLAN-AKM-Suite = 1027075
(9) WLAN-Group-Mgmt-Cipher = 1027078
(9) Framed-MTU = 1400
(9) EAP-Message = 0x020a002b190017030100200c2b891b1a070f50e9baaad23f743321070fbca8e400225c04844746ec8c575b
(9) State = 0x2bd1ee8523dbf76b18f4b786a56947e3
(9) Message-Authenticator = 0x573d4b4df9b67cc1d856efe17846ec01
(9) session-state: No cached attributes
(9) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default
(9) authorize {
(9) policy filter_username {
(9) if (&User-Name) {
(9) if (&User-Name) -> TRUE
(9) if (&User-Name) {
(9) if (&User-Name =~ / /) {
(9) if (&User-Name =~ / /) -> FALSE
(9) if (&User-Name =~ /@[^@]@/ ) {
(9) if (&User-Name =~ /@[^@]
@/ ) -> FALSE
(9) if (&User-Name =~ /../ ) {
(9) if (&User-Name =~ /../ ) -> FALSE
(9) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) {
(9) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) -> FALSE
(9) if (&User-Name =~ /.$/) {
(9) if (&User-Name =~ /.$/) -> FALSE
(9) if (&User-Name =~ /@./) {
(9) if (&User-Name =~ /@./) -> FALSE
(9) } # if (&User-Name) = notfound
(9) } # policy filter_username = notfound
(9) [preprocess] = ok
(9) [chap] = noop
(9) [mschap] = noop
(9) [digest] = noop
(9) suffix: Checking for suffix after "@"
(9) suffix: Looking up realm "isux.com" for User-Name = ""
(9) suffix: No such realm "isux.com"
(9) [suffix] = noop
(9) eap: Peer sent EAP Response (code 2) ID 10 length 43
(9) eap: Continuing tunnel setup
(9) [eap] = ok
(9) } # authorize = ok
(9) Found Auth-Type = eap
(9) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
(9) authenticate {
(9) eap: Expiring EAP session with state 0x0e6f06290f651c50
(9) eap: Finished EAP session with state 0x2bd1ee8523dbf76b
(9) eap: Previous EAP request found for state 0x2bd1ee8523dbf76b, released from the list
(9) eap: Peer sent packet with method EAP PEAP (25)
(9) eap: Calling submodule eap_peap to process data
(9) eap_peap: Continuing EAP-TLS
(9) eap_peap: [eaptls verify] = ok
(9) eap_peap: Done initial handshake
(9) eap_peap: [eaptls process] = ok
(9) eap_peap: Session established. Decoding tunneled attributes
(9) eap_peap: PEAP state phase2
(9) eap_peap: EAP method MSCHAPv2 (26)
(9) eap_peap: Got tunneled request
(9) eap_peap: EAP-Message = 0x020a00061a03
(9) eap_peap: Setting User-Name to
(9) eap_peap: Sending tunneled request to inner-tunnel
(9) eap_peap: EAP-Message = 0x020a00061a03
(9) eap_peap: FreeRADIUS-Proxied-To = 127.0.0.1
(9) eap_peap: User-Name = ""
(9) eap_peap: State = 0x0e6f06290f651c50d4d6ab99c92d3261
(9) Virtual server inner-tunnel received request
(9) EAP-Message = 0x020a00061a03
(9) FreeRADIUS-Proxied-To = 127.0.0.1
(9) User-Name = ""
(9) State = 0x0e6f06290f651c50d4d6ab99c92d3261
(9) WARNING: Outer and inner identities are the same. User privacy is compromised.
(9) server inner-tunnel {
(9) session-state: No cached attributes
(9) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
(9) authorize {
(9) policy filter_username {
(9) if (&User-Name) {
(9) if (&User-Name) -> TRUE
(9) if (&User-Name) {
(9) if (&User-Name =~ / /) {
(9) if (&User-Name =~ / /) -> FALSE
(9) if (&User-Name =~ /@[^@]@/ ) {
(9) if (&User-Name =~ /@[^@]
@/ ) -> FALSE
(9) if (&User-Name =~ /../ ) {
(9) if (&User-Name =~ /../ ) -> FALSE
(9) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) {
(9) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) -> FALSE
(9) if (&User-Name =~ /.$/) {
(9) if (&User-Name =~ /.$/) -> FALSE
(9) if (&User-Name =~ /@./) {
(9) if (&User-Name =~ /@./) -> FALSE
(9) } # if (&User-Name) = notfound
(9) } # policy filter_username = notfound
(9) [chap] = noop
(9) [mschap] = noop
(9) suffix: Checking for suffix after "@"
(9) suffix: Looking up realm "isux.com" for User-Name = ""
(9) suffix: No such realm "isux.com"
(9) [suffix] = noop
(9) update control {
(9) &Proxy-To-Realm := LOCAL
(9) } # update control = noop
(9) eap: Peer sent EAP Response (code 2) ID 10 length 6
(9) eap: No EAP Start, assuming it's an on-going EAP conversation
(9) [eap] = updated
(9) [files] = noop
(9) sql: EXPAND %{User-Name}
(9) sql: -->
(9) sql: SQL-User-Name set to ''
rlm_sql (sql): Reserved connection (2)
(9) sql: EXPAND SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id
(9) sql: --> SELECT id, username, attribute, value, op FROM radcheck WHERE username = '' ORDER BY id
(9) sql: Executing select query: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '' ORDER BY id
(9) sql: User found in radcheck table
(9) sql: Conditional check items matched, merging assignment check items
(9) sql: Cleartext-Password := ""
(9) sql: Pool-Name := "wireless_210"
(9) sql: EXPAND SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id
(9) sql: --> SELECT id, username, attribute, value, op FROM radreply WHERE username = '' ORDER BY id
(9) sql: Executing select query: SELECT id, username, attribute, value, op FROM radreply WHERE username = '' ORDER BY id
(9) sql: EXPAND SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority
(9) sql: --> SELECT groupname FROM radusergroup WHERE username = '' ORDER BY priority
(9) sql: Executing select query: SELECT groupname FROM radusergroup WHERE username = '' ORDER BY priority
(9) sql: User found in the group table
(9) sql: EXPAND SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{SQL-Group}' ORDER BY id
(9) sql: --> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'wireless_254' ORDER BY id
(9) sql: Executing select query: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'wireless_254' ORDER BY id
(9) sql: Group "wireless_254": Conditional check items matched
(9) sql: Group "wireless_254": Merging assignment check items
(9) sql: EXPAND SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{SQL-Group}' ORDER BY id
(9) sql: --> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'wireless_254' ORDER BY id
(9) sql: Executing select query: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'wireless_254' ORDER BY id
(9) sql: Group "wireless_254": Merging reply items
rlm_sql (sql): Released connection (2)
Need 4 more connections to reach 10 spares
rlm_sql (sql): Opening additional connection (6), 1 of 26 pending slots used
rlm_sql_mysql: Starting connect to MySQL server
rlm_sql_mysql: Connected to database 'radius' on Localhost via UNIX socket, server version 5.6.35, protocol version 10
(9) [sql] = ok
(9) [expiration] = noop
(9) [logintime] = noop
(9) pap: WARNING: Auth-Type already set. Not setting to PAP
(9) [pap] = noop
(9) } # authorize = updated
(9) Found Auth-Type = eap
(9) # Executing group from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
(9) authenticate {
(9) eap: Expiring EAP session with state 0x0e6f06290f651c50
(9) eap: Finished EAP session with state 0x0e6f06290f651c50
(9) eap: Previous EAP request found for state 0x0e6f06290f651c50, released from the list
(9) eap: Peer sent packet with method EAP MSCHAPv2 (26)
(9) eap: Calling submodule eap_mschapv2 to process data
(9) eap: Sending EAP Success (code 3) ID 10 length 4
(9) eap: Freeing handler
(9) [eap] = ok
(9) } # authenticate = ok
(9) # Executing section post-auth from file /usr/local/etc/raddb/sites-enabled/inner-tunnel
(9) post-auth {
(9) sql: EXPAND .query
(9) sql: --> .query
(9) sql: Using query template 'query'
rlm_sql (sql): Reserved connection (3)
(9) sql: EXPAND %{User-Name}
(9) sql: -->
(9) sql: SQL-User-Name set to ''
(9) sql: EXPAND INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{SQL-User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S')
(9) sql: --> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '', '', 'Access-Accept', '2017-07-24 23:23:59')
(9) sql: EXPAND /var/log/radius/sqllog.sql
(9) sql: --> /var/log/radius/sqllog.sql
(9) sql: Executing query: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '', '', 'Access-Accept', '2017-07-24 23:23:59')
(9) sql: SQL query returned: success
(9) sql: 1 record(s) updated
rlm_sql (sql): Released connection (3)
(9) [sql] = ok
(9) if (0) {
(9) if (0) -> FALSE
(9) } # post-auth = ok
(9) Login OK: [] (from client LEDE-MR24-10-101 port 0 via TLS tunnel)
(9) } # server inner-tunnel
(9) Virtual server sending reply
(9) MS-MPPE-Encryption-Policy = Encryption-Allowed
(9) MS-MPPE-Encryption-Types = RC4-40or128-bit-Allowed
(9) MS-MPPE-Send-Key = 0xf14c68fafb9183c62c35ac284a690c66
(9) MS-MPPE-Recv-Key = 0x1e0f0cbe1346f5f1495a99674d45303e
(9) EAP-Message = 0x030a0004
(9) Message-Authenticator = 0x00000000000000000000000000000000
(9) User-Name = ""
(9) eap_peap: Got tunneled reply code 2
(9) eap_peap: MS-MPPE-Encryption-Policy = Encryption-Allowed
(9) eap_peap: MS-MPPE-Encryption-Types = RC4-40or128-bit-Allowed
(9) eap_peap: MS-MPPE-Send-Key = 0xf14c68fafb9183c62c35ac284a690c66
(9) eap_peap: MS-MPPE-Recv-Key = 0x1e0f0cbe1346f5f1495a99674d45303e
(9) eap_peap: EAP-Message = 0x030a0004
(9) eap_peap: Message-Authenticator = 0x00000000000000000000000000000000
(9) eap_peap: User-Name = ""
(9) eap_peap: Got tunneled reply RADIUS code 2
(9) eap_peap: MS-MPPE-Encryption-Policy = Encryption-Allowed
(9) eap_peap: MS-MPPE-Encryption-Types = RC4-40or128-bit-Allowed
(9) eap_peap: MS-MPPE-Send-Key = 0xf14c68fafb9183c62c35ac284a690c66
(9) eap_peap: MS-MPPE-Recv-Key = 0x1e0f0cbe1346f5f1495a99674d45303e
(9) eap_peap: EAP-Message = 0x030a0004
(9) eap_peap: Message-Authenticator = 0x00000000000000000000000000000000
(9) eap_peap: User-Name = ""
(9) eap_peap: Tunneled authentication was successful
(9) eap_peap: SUCCESS
(9) eap: Sending EAP Request (code 1) ID 11 length 43
(9) eap: EAP session adding &reply:State = 0x2bd1ee8522daf76b
(9) [eap] = handled
(9) } # authenticate = handled
(9) Using Post-Auth-Type Challenge
(9) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
(9) Challenge { ... } # empty sub-section is ignored
(9) Sent Access-Challenge Id 13 from 10.10.0.3:1812 to 192.168.10.101:39755 length 0
(9) EAP-Message = 0x010b002b1900170301002028919c235c150ed84e33474bc116b1c92928778575503d2dd854b3ac0b084014
(9) Message-Authenticator = 0x00000000000000000000000000000000
(9) State = 0x2bd1ee8522daf76b18f4b786a56947e3
(9) Finished request
Waking up in 3.9 seconds.
(10) Received Access-Request Id 14 from 192.168.10.101:39755 to 10.10.0.3:1812 length 278
(10) User-Name = ""
(10) NAS-Identifier = "LEDE-MR24-210-101"
(10) Called-Station-Id = "88-DC-96-07-92-56:LEDE"
(10) NAS-Port-Type = Wireless-802.11
(10) Service-Type = Framed-User
(10) NAS-Port = 1
(10) Calling-Station-Id = "F4-1B-A1-00-CC-42"
(10) Connect-Info = "CONNECT 54Mbps 802.11a"
(10) Acct-Session-Id = "7226982286C87093"
(10) Mobility-Domain-Id = 20311
(10) WLAN-Pairwise-Cipher = 1027076
(10) WLAN-Group-Cipher = 1027076
(10) WLAN-AKM-Suite = 1027075
(10) WLAN-Group-Mgmt-Cipher = 1027078
(10) Framed-MTU = 1400
(10) EAP-Message = 0x020b002b19001703010020da28be958d9cb1ec92d1450d2954047497a8ebbe65c8e613dec3da043347693a
(10) State = 0x2bd1ee8522daf76b18f4b786a56947e3
(10) Message-Authenticator = 0x6afcae3c9b68556b149c467003faa622
(10) session-state: No cached attributes
(10) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default
(10) authorize {
(10) policy filter_username {
(10) if (&User-Name) {
(10) if (&User-Name) -> TRUE
(10) if (&User-Name) {
(10) if (&User-Name =~ / /) {
(10) if (&User-Name =~ / /) -> FALSE
(10) if (&User-Name =~ /@[^@]@/ ) {
(10) if (&User-Name =~ /@[^@]
@/ ) -> FALSE
(10) if (&User-Name =~ /../ ) {
(10) if (&User-Name =~ /../ ) -> FALSE
(10) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) {
(10) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) -> FALSE
(10) if (&User-Name =~ /.$/) {
(10) if (&User-Name =~ /.$/) -> FALSE
(10) if (&User-Name =~ /@./) {
(10) if (&User-Name =~ /@./) -> FALSE
(10) } # if (&User-Name) = notfound
(10) } # policy filter_username = notfound
(10) [preprocess] = ok
(10) [chap] = noop
(10) [mschap] = noop
(10) [digest] = noop
(10) suffix: Checking for suffix after "@"
(10) suffix: Looking up realm "isux.com" for User-Name = ""
(10) suffix: No such realm "isux.com"
(10) [suffix] = noop
(10) eap: Peer sent EAP Response (code 2) ID 11 length 43
(10) eap: Continuing tunnel setup
(10) [eap] = ok
(10) } # authorize = ok
(10) Found Auth-Type = eap
(10) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
(10) authenticate {
(10) eap: Expiring EAP session with state 0x2bd1ee8522daf76b
(10) eap: Finished EAP session with state 0x2bd1ee8522daf76b
(10) eap: Previous EAP request found for state 0x2bd1ee8522daf76b, released from the list
(10) eap: Peer sent packet with method EAP PEAP (25)
(10) eap: Calling submodule eap_peap to process data
(10) eap_peap: Continuing EAP-TLS
(10) eap_peap: [eaptls verify] = ok
(10) eap_peap: Done initial handshake
(10) eap_peap: [eaptls process] = ok
(10) eap_peap: Session established. Decoding tunneled attributes
(10) eap_peap: PEAP state send tlv success
(10) eap_peap: Received EAP-TLV response
(10) eap_peap: Success
(10) eap_peap: No information to cache: session caching will be disabled for session 1cbd20df8a8f76ef7c13dc8b524b2f0866fcad37788b8f74edd0d5d70f8ba4df
(10) eap: Sending EAP Success (code 3) ID 11 length 4
(10) eap: Freeing handler
(10) [eap] = ok
(10) } # authenticate = ok
(10) # Executing section post-auth from file /usr/local/etc/raddb/sites-enabled/default
(10) post-auth {
(10) update {
(10) No attributes updated
(10) } # update = noop
(10) policy dhcp_sqlippool.post-auth {
(10) update request {
(10) EXPAND DHCP-%{DHCP-Client-Hardware-Address}
(10) --> DHCP-
(10) &User-Name = DHCP-
(10) EXPAND %{DHCP-Client-Hardware-Address}
(10) -->
(10) &Calling-Station-Id =
(10) EXPAND %{%{DHCP-Gateway-IP-Address}:-127.0.0.1}
(10) --> 127.0.0.1
(10) &NAS-IP-Address = 127.0.0.1
(10) &Acct-Status-Type = Start
(10) } # update request = noop
(10) update control {
(10) &Pool-Name := "wireless_254"
(10) } # update control = noop
rlm_sql (sql): Reserved connection (4)
(10) dhcp_sqlippool: EXPAND %{User-Name}
(10) dhcp_sqlippool: -->
(10) dhcp_sqlippool: SQL-User-Name set to ''
(10) dhcp_sqlippool: EXPAND START TRANSACTION
(10) dhcp_sqlippool: --> START TRANSACTION
(10) dhcp_sqlippool: Executing query: START TRANSACTION
(10) dhcp_sqlippool: EXPAND UPDATE radippool SET nasipaddress = '', pool_key = 0, callingstationid = '', username = '', expiry_time = NOW() WHERE expiry_time <= NOW() - INTERVAL 1 SECOND AND nasipaddress = '%{Nas-IP-Address}'
(10) dhcp_sqlippool: --> UPDATE radippool SET nasipaddress = '', pool_key = 0, callingstationid = '', username = '', expiry_time = NOW() WHERE expiry_time <= NOW() - INTERVAL 1 SECOND AND nasipaddress = '192.168.10.101'
(10) dhcp_sqlippool: Executing query: UPDATE radippool SET nasipaddress = '', pool_key = 0, callingstationid = '', username = '', expiry_time = NOW() WHERE expiry_time <= NOW() - INTERVAL 1 SECOND AND nasipaddress = '192.168.10.101'
rlm_sql_mysql: Rows matched: 0 Changed: 0 Warnings: 0
(10) dhcp_sqlippool: EXPAND COMMIT
(10) dhcp_sqlippool: --> COMMIT
(10) dhcp_sqlippool: Executing query: COMMIT
(10) dhcp_sqlippool: EXPAND START TRANSACTION
(10) dhcp_sqlippool: --> START TRANSACTION
(10) dhcp_sqlippool: Executing query: START TRANSACTION
(10) dhcp_sqlippool: EXPAND SELECT framedipaddress FROM radippool WHERE pool_name = '%{control:Pool-Name}' AND (callingstationid = '%{Calling-Station-Id}' or callingstationid = '') ORDER BY (callingstationid <> '%{Calling-Station-Id}'), expiry_time LIMIT 1 FOR UPDATE
(10) dhcp_sqlippool: --> SELECT framedipaddress FROM radippool WHERE pool_name = 'wireless_254' AND (callingstationid = 'F4-1B-A1-00-CC-42' or callingstationid = '') ORDER BY (callingstationid <> 'F4-1B-A1-00-CC-42'), expiry_time LIMIT 1 FOR UPDATE
(10) dhcp_sqlippool: Executing select query: SELECT framedipaddress FROM radippool WHERE pool_name = 'wireless_254' AND (callingstationid = 'F4-1B-A1-00-CC-42' or callingstationid = '') ORDER BY (callingstationid <> 'F4-1B-A1-00-CC-42'), expiry_time LIMIT 1 FOR UPDATE
(10) dhcp_sqlippool: Allocated IP 192.168.254.144
(10) dhcp_sqlippool: EXPAND UPDATE radippool SET nasipaddress = '%{NAS-IP-Address}', pool_key = '%{Calling-Station-Id}', callingstationid = '%{Calling-Station-Id}', username = '%{User-Name}', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.144'
(10) dhcp_sqlippool: --> UPDATE radippool SET nasipaddress = '192.168.10.101', pool_key = 'F4-1B-A1-00-CC-42', callingstationid = 'F4-1B-A1-00-CC-42', username = '', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.144'
(10) dhcp_sqlippool: Executing query: UPDATE radippool SET nasipaddress = '192.168.10.101', pool_key = 'F4-1B-A1-00-CC-42', callingstationid = 'F4-1B-A1-00-CC-42', username = '', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.144'
rlm_sql_mysql: Rows matched: 1 Changed: 1 Warnings: 0
(10) dhcp_sqlippool: EXPAND COMMIT
(10) dhcp_sqlippool: --> COMMIT
(10) dhcp_sqlippool: Executing query: COMMIT
rlm_sql (sql): Released connection (4)
(10) [dhcp_sqlippool] = ok
(10) if (ok) {
(10) if (ok) -> TRUE
(10) if (ok) {
(10) update reply {
(10) EXPAND %{reply:Framed-IP-Address}
(10) --> 192.168.254.144
(10) &DHCP-Your-IP-Address = 192.168.254.144
(10) &DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(10) } # update reply = noop
(10) } # if (ok) = noop
(10) } # policy dhcp_sqlippool.post-auth = ok
(10) sql: EXPAND .query
(10) sql: --> .query
(10) sql: Using query template 'query'
rlm_sql (sql): Reserved connection (0)
(10) sql: EXPAND %{User-Name}
(10) sql: -->
(10) sql: SQL-User-Name set to ''
(10) sql: EXPAND INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{SQL-User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S')
(10) sql: --> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '', '', 'Access-Accept', '2017-07-24 23:24:00')
(10) sql: EXPAND /var/log/radius/sqllog.sql
(10) sql: --> /var/log/radius/sqllog.sql
(10) sql: Executing query: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '', '', 'Access-Accept', '2017-07-24 23:24:00')
(10) sql: SQL query returned: success
(10) sql: 1 record(s) updated
rlm_sql (sql): Released connection (0)
(10) [sql] = ok
(10) [exec] = noop
(10) policy remove_reply_message_if_eap {
(10) if (&reply:EAP-Message && &reply:Reply-Message) {
(10) if (&reply:EAP-Message && &reply:Reply-Message) -> FALSE
(10) else {
(10) [noop] = noop
(10) } # else = noop
(10) } # policy remove_reply_message_if_eap = noop
(10) } # post-auth = ok
(10) Login OK: [] (from client LEDE-MR24-10-101 port 1 cli F4-1B-A1-00-CC-42)
(10) Sent Access-Accept Id 14 from 10.10.0.3:1812 to 192.168.10.101:39755 length 0
(10) MS-MPPE-Recv-Key = 0x51ac5a74e9ac776b77d81af5d6c07085007bf0010e91c7d02116945df69fdae9
(10) MS-MPPE-Send-Key = 0x0589d4593abc9fe157c462cc6d292b344a6de5344c4b1d997b7c2451660d1ae5
(10) EAP-Message = 0x030b0004
(10) Message-Authenticator = 0x00000000000000000000000000000000
(10) User-Name = ""
(10) Framed-IP-Address = 192.168.254.144
(10) DHCP-Your-IP-Address = 192.168.254.144
(10) DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(10) Finished request
Waking up in 3.7 seconds.
(11) Received Accounting-Request Id 15 from 192.168.10.101:60646 to 10.10.0.3:1813 length 215
(11) Acct-Status-Type = Start
(11) Acct-Authentic = RADIUS
(11) User-Name = ""
(11) NAS-Identifier = "LEDE-MR24-210-101"
(11) Called-Station-Id = "88-DC-96-07-92-56:LEDE"
(11) NAS-Port-Type = Wireless-802.11
(11) Service-Type = Framed-User
(11) NAS-Port = 1
(11) Calling-Station-Id = "F4-1B-A1-00-CC-42"
(11) Connect-Info = "CONNECT 54Mbps 802.11a"
(11) Acct-Session-Id = "7226982286C87093"
(11) Mobility-Domain-Id = 20311
(11) WLAN-Pairwise-Cipher = 1027076
(11) WLAN-Group-Cipher = 1027076
(11) WLAN-AKM-Suite = 1027075
(11) WLAN-Group-Mgmt-Cipher = 1027078
(11) Event-Timestamp = "Jul 24 2017 23:24:00 CEST"
(11) Acct-Delay-Time = 0
(11) # Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
(11) preacct {
(11) [preprocess] = ok
(11) policy acct_unique {
(11) update request {
(11) &Tmp-String-9 := "ai:"
(11) } # update request = noop
(11) if (("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/) && ("%{string:&Class}" =~ /^ai:([0-9a-f]{32})/i)) {
(11) EXPAND %{hex:&Class}
(11) -->
(11) EXPAND ^%{hex:&Tmp-String-9}
(11) --> ^61693a
(11) if (("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/) && ("%{string:&Class}" =~ /^ai:([0-9a-f]{32})/i)) -> FALSE
(11) else {
(11) update request {
(11) EXPAND %{md5:%{User-Name},%{Acct-Session-ID},%{%{NAS-IPv6-Address}:-%{NAS-IP-Address}},%{NAS-Identifier},%{NAS-Port-ID},%{NAS-Port}}
(11) --> e7f959433d4e3cd963e561d1bbc18f12
(11) &Acct-Unique-Session-Id := e7f959433d4e3cd963e561d1bbc18f12
(11) } # update request = noop
(11) } # else = noop
(11) } # policy acct_unique = noop
(11) suffix: Checking for suffix after "@"
(11) suffix: Looking up realm "isux.com" for User-Name = ""
(11) suffix: No such realm "isux.com"
(11) [suffix] = noop
(11) [files] = noop
(11) } # preacct = ok
(11) # Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
(11) accounting {
(11) detail: EXPAND /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d
(11) detail: --> /var/log/radius/radacct/192.168.10.101/detail-20170724
(11) detail: /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /var/log/radius/radacct/192.168.10.101/detail-20170724
(11) detail: EXPAND %t
(11) detail: --> Mon Jul 24 23:24:00 2017
(11) [detail] = ok
(11) [unix] = ok
(11) sql: EXPAND %{tolower:type.%{Acct-Status-Type}.query}
(11) sql: --> type.start.query
(11) sql: Using query template 'query'
rlm_sql (sql): Reserved connection (5)
(11) sql: EXPAND %{User-Name}
(11) sql: -->
(11) sql: SQL-User-Name set to ''
(11) sql: EXPAND INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctupdatetime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start,connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{%{NAS-Port-ID}:-%{NAS-Port}}', '%{NAS-Port-Type}', FROM_UNIXTIME(%{integer:Event-Timestamp}), FROM_UNIXTIME(%{integer:Event-Timestamp}), NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}')
(11) sql: --> INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctupdatetime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start,connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress) VALUES ('7226982286C87093', 'e7f959433d4e3cd963e561d1bbc18f12', '', '', '192.168.10.101', '1', 'Wireless-802.11', FROM_UNIXTIME(1500931440), FROM_UNIXTIME(1500931440), NULL, '0', 'RADIUS', 'CONNECT 54Mbps 802.11a', '', '0', '0', '88-DC-96-07-92-56:LEDE', 'F4-1B-A1-00-CC-42', '', 'Framed-User', '', '')
(11) sql: EXPAND /var/log/radius/sqllog.sql
(11) sql: --> /var/log/radius/sqllog.sql
(11) sql: Executing query: INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctupdatetime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start,connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress) VALUES ('7226982286C87093', 'e7f959433d4e3cd963e561d1bbc18f12', '', '', '192.168.10.101', '1', 'Wireless-802.11', FROM_UNIXTIME(1500931440), FROM_UNIXTIME(1500931440), NULL, '0', 'RADIUS', 'CONNECT 54Mbps 802.11a', '', '0', '0', '88-DC-96-07-92-56:LEDE', 'F4-1B-A1-00-CC-42', '', 'Framed-User', '', '')
(11) sql: SQL query returned: success
(11) sql: 1 record(s) updated
rlm_sql (sql): Released connection (5)
(11) [sql] = ok
(11) [exec] = noop
(11) attr_filter.accounting_response: EXPAND %{User-Name}
(11) attr_filter.accounting_response: -->
(11) attr_filter.accounting_response: Matched entry DEFAULT at line 12
(11) [attr_filter.accounting_response] = updated
(11) } # accounting = updated
(11) Sent Accounting-Response Id 15 from 10.10.0.3:1813 to 192.168.10.101:60646 length 0
(11) Finished request
(11) Cleaning up request packet ID 15 with timestamp +2
Waking up in 3.6 seconds.
Received DHCP-Discover of Id c91eb3ee from 0.0.0.0:68 to 255.255.255.255:67
DHCP-Opcode = Client-Message
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 0
DHCP-Transaction-Id = 3374232558
DHCP-Number-of-Seconds = 0
DHCP-Flags = 0
DHCP-Client-IP-Address = 0.0.0.0
DHCP-Your-IP-Address = 0.0.0.0
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 0.0.0.0
DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
DHCP-Message-Type = DHCP-Discover
DHCP-Parameter-Request-List = DHCP-Subnet-Mask
DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
DHCP-Parameter-Request-List = DHCP-Router-Address
DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
DHCP-Parameter-Request-List = DHCP-Domain-Name
DHCP-Parameter-Request-List = DHCP-Domain-Search
DHCP-Parameter-Request-List = DHCP-Site-specific-28
DHCP-DHCP-Maximum-Msg-Size = 1500
DHCP-Client-Identifier = 0x01f41ba100cc42
DHCP-IP-Address-Lease-Time = 7776000
DHCP-Hostname = "MichelldMini116"
(12) Received code 1025 Id -920734738 from 0.0.0.0:68 to 255.255.255.255:67 length 300
(12) DHCP-Opcode = Client-Message
(12) DHCP-Hardware-Type = Ethernet
(12) DHCP-Hardware-Address-Length = 6
(12) DHCP-Hop-Count = 0
(12) DHCP-Transaction-Id = 3374232558
(12) DHCP-Number-of-Seconds = 0
(12) DHCP-Flags = 0
(12) DHCP-Client-IP-Address = 0.0.0.0
(12) DHCP-Your-IP-Address = 0.0.0.0
(12) DHCP-Server-IP-Address = 0.0.0.0
(12) DHCP-Gateway-IP-Address = 0.0.0.0
(12) DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
(12) DHCP-Message-Type = DHCP-Discover
(12) DHCP-Parameter-Request-List = DHCP-Subnet-Mask
(12) DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
(12) DHCP-Parameter-Request-List = DHCP-Router-Address
(12) DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
(12) DHCP-Parameter-Request-List = DHCP-Domain-Name
(12) DHCP-Parameter-Request-List = DHCP-Domain-Search
(12) DHCP-Parameter-Request-List = DHCP-Site-specific-28
(12) DHCP-DHCP-Maximum-Msg-Size = 1500
(12) DHCP-Client-Identifier = 0x01f41ba100cc42
(12) DHCP-IP-Address-Lease-Time = 7776000
(12) DHCP-Hostname = "MichelldMini116"
Trying sub-section dhcp DHCP-Discover {...}
(12) dhcp DHCP-Discover {
(12) update reply {
(12) &DHCP-Message-Type = DHCP-Offer
(12) } # update reply = noop
(12) update reply {
(12) &DHCP-Domain-Name-Server = 10.10.0.3
(12) &DHCP-Domain-Name-Server = 192.168.250.2
(12) &DHCP-Subnet-Mask = 255.255.255.0
(12) &DHCP-Router-Address = 10.10.0.252
(12) &DHCP-IP-Address-Lease-Time = 86400
(12) &DHCP-Gateway-IP-Address = 192.168.254.254
(12) &DHCP-DHCP-Server-Identifier = 10.10.0.3
(12) &DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(12) } # update reply = noop
(12) update control {
(12) &Pool-Name := "wireless_254"
(12) } # update control = noop
(12) policy dhcp_sqlippool.post-auth {
(12) update request {
(12) EXPAND DHCP-%{DHCP-Client-Hardware-Address}
(12) --> DHCP-f4:1b:a1:00:cc:42
(12) &User-Name = DHCP-f4:1b:a1:00:cc:42
(12) EXPAND %{DHCP-Client-Hardware-Address}
(12) --> f4:1b:a1:00:cc:42
(12) &Calling-Station-Id = f4:1b:a1:00:cc:42
(12) EXPAND %{%{DHCP-Gateway-IP-Address}:-127.0.0.1}
(12) --> 0.0.0.0
(12) &NAS-IP-Address = 0.0.0.0
(12) &Acct-Status-Type = Start
(12) } # update request = noop
(12) update control {
(12) &Pool-Name := "wireless_254"
(12) } # update control = noop
rlm_sql (sql): Reserved connection (1)
(12) dhcp_sqlippool: EXPAND %{User-Name}
(12) dhcp_sqlippool: --> DHCP-f4:1b:a1:00:cc:42
(12) dhcp_sqlippool: SQL-User-Name set to 'DHCP-f4:1b:a1:00:cc:42'
(12) dhcp_sqlippool: EXPAND START TRANSACTION
(12) dhcp_sqlippool: --> START TRANSACTION
(12) dhcp_sqlippool: Executing query: START TRANSACTION
(12) dhcp_sqlippool: EXPAND SELECT framedipaddress FROM radippool WHERE pool_name = '%{control:Pool-Name}' AND (callingstationid = '%{Calling-Station-Id}' or callingstationid = '') ORDER BY (callingstationid <> '%{Calling-Station-Id}'), expiry_time LIMIT 1 FOR UPDATE
(12) dhcp_sqlippool: --> SELECT framedipaddress FROM radippool WHERE pool_name = 'wireless_254' AND (callingstationid = 'f4:1b:a1:00:cc:42' or callingstationid = '') ORDER BY (callingstationid <> 'f4:1b:a1:00:cc:42'), expiry_time LIMIT 1 FOR UPDATE
(12) dhcp_sqlippool: Executing select query: SELECT framedipaddress FROM radippool WHERE pool_name = 'wireless_254' AND (callingstationid = 'f4:1b:a1:00:cc:42' or callingstationid = '') ORDER BY (callingstationid <> 'f4:1b:a1:00:cc:42'), expiry_time LIMIT 1 FOR UPDATE
(12) dhcp_sqlippool: Allocated IP 192.168.254.139
(12) dhcp_sqlippool: EXPAND UPDATE radippool SET nasipaddress = '%{NAS-IP-Address}', pool_key = '%{Calling-Station-Id}', callingstationid = '%{Calling-Station-Id}', username = '%{User-Name}', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.139'
(12) dhcp_sqlippool: --> UPDATE radippool SET nasipaddress = '0.0.0.0', pool_key = 'f4:1b:a1:00:cc:42', callingstationid = 'f4:1b:a1:00:cc:42', username = 'DHCP-f4:1b:a1:00:cc:42', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.139'
(12) dhcp_sqlippool: Executing query: UPDATE radippool SET nasipaddress = '0.0.0.0', pool_key = 'f4:1b:a1:00:cc:42', callingstationid = 'f4:1b:a1:00:cc:42', username = 'DHCP-f4:1b:a1:00:cc:42', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.139'
rlm_sql_mysql: Rows matched: 1 Changed: 1 Warnings: 0
(12) dhcp_sqlippool: EXPAND COMMIT
(12) dhcp_sqlippool: --> COMMIT
(12) dhcp_sqlippool: Executing query: COMMIT
rlm_sql (sql): Released connection (1)
(12) [dhcp_sqlippool] = ok
(12) if (ok) {
(12) if (ok) -> TRUE
(12) if (ok) {
(12) update reply {
(12) EXPAND %{reply:Framed-IP-Address}
(12) --> 192.168.254.139
(12) &DHCP-Your-IP-Address = 192.168.254.139
(12) &DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(12) } # update reply = noop
(12) } # if (ok) = noop
(12) } # policy dhcp_sqlippool.post-auth = ok
(12) [ok] = ok
(12) } # dhcp DHCP-Discover = ok
(12) DHCP: Reply will be unicast to giaddr
(12) Sent code 1026 Id -920734738 from 10.10.0.3:67 to 192.168.254.254:67 length 0
(12) DHCP-Message-Type = DHCP-Offer
(12) DHCP-Domain-Name-Server = 10.10.0.3
(12) DHCP-Subnet-Mask = 255.255.255.0
(12) DHCP-Router-Address = 10.10.0.252
(12) DHCP-IP-Address-Lease-Time = 86400
(12) DHCP-Gateway-IP-Address = 192.168.254.254
(12) DHCP-DHCP-Server-Identifier = 10.10.0.3
(12) DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(12) Framed-IP-Address = 192.168.254.139
(12) DHCP-Your-IP-Address = 192.168.254.139
(12) DHCP-DHCP-Maximum-Msg-Size = 1500
(12) DHCP-Opcode = Server-Message
(12) DHCP-Hardware-Type = Ethernet
(12) DHCP-Hardware-Address-Length = 6
(12) DHCP-Hop-Count = 0
(12) DHCP-Transaction-Id = 3374232558
(12) DHCP-Flags = 0
(12) DHCP-Client-IP-Address = 0.0.0.0
(12) DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
Encoding DHCP-Offer of id c91eb3ee from 10.10.0.3:67 to 192.168.254.254:67
DHCP-Opcode = 0
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 0
DHCP-Transaction-Id = 3374232558
DHCP-Number-of-Seconds = 0
DHCP-Flags = 0
DHCP-Client-IP-Address = 0.0.0.0
DHCP-Your-IP-Address = 192.168.254.139
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 192.168.254.254
DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
DHCP-Server-Host-Name = ""
DHCP-Boot-Filename = ""
DHCP-Subnet-Mask = 255.255.255.0
DHCP-Router-Address = 10.10.0.252
DHCP-Domain-Name-Server = 10.10.0.3
DHCP-IP-Address-Lease-Time = 86400
DHCP-DHCP-Server-Identifier = 10.10.0.3
DHCP-DHCP-Maximum-Msg-Size = 1500
DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
Sending DHCP-Offer Id c91eb3ee from 10.10.0.3:67 to 192.168.254.254:67
(12) Finished request
(12) Cleaning up request packet ID 3374232558 with timestamp +2
Waking up in 3.4 seconds.
Received DHCP-Discover of Id c91eb3ee from 192.168.10.101:67 to 10.10.0.3:67
DHCP-Opcode = Client-Message
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 1
DHCP-Transaction-Id = 3374232558
DHCP-Number-of-Seconds = 0
DHCP-Flags = 0
DHCP-Client-IP-Address = 0.0.0.0
DHCP-Your-IP-Address = 0.0.0.0
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 192.168.10.101
DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
DHCP-Message-Type = DHCP-Discover
DHCP-Parameter-Request-List = DHCP-Subnet-Mask
DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
DHCP-Parameter-Request-List = DHCP-Router-Address
DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
DHCP-Parameter-Request-List = DHCP-Domain-Name
DHCP-Parameter-Request-List = DHCP-Domain-Search
DHCP-Parameter-Request-List = DHCP-Site-specific-28
DHCP-DHCP-Maximum-Msg-Size = 1500
DHCP-Client-Identifier = 0x01f41ba100cc42
DHCP-IP-Address-Lease-Time = 7776000
DHCP-Hostname = "MichelldMini116"
(13) Received code 1025 Id -920734738 from 192.168.10.101:67 to 10.10.0.3:67 length 300
(13) DHCP-Opcode = Client-Message
(13) DHCP-Hardware-Type = Ethernet
(13) DHCP-Hardware-Address-Length = 6
(13) DHCP-Hop-Count = 1
(13) DHCP-Transaction-Id = 3374232558
(13) DHCP-Number-of-Seconds = 0
(13) DHCP-Flags = 0
(13) DHCP-Client-IP-Address = 0.0.0.0
(13) DHCP-Your-IP-Address = 0.0.0.0
(13) DHCP-Server-IP-Address = 0.0.0.0
(13) DHCP-Gateway-IP-Address = 192.168.10.101
(13) DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
(13) DHCP-Message-Type = DHCP-Discover
(13) DHCP-Parameter-Request-List = DHCP-Subnet-Mask
(13) DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
(13) DHCP-Parameter-Request-List = DHCP-Router-Address
(13) DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
(13) DHCP-Parameter-Request-List = DHCP-Domain-Name
(13) DHCP-Parameter-Request-List = DHCP-Domain-Search
(13) DHCP-Parameter-Request-List = DHCP-Site-specific-28
(13) DHCP-DHCP-Maximum-Msg-Size = 1500
(13) DHCP-Client-Identifier = 0x01f41ba100cc42
(13) DHCP-IP-Address-Lease-Time = 7776000
(13) DHCP-Hostname = "MichelldMini116"
Trying sub-section dhcp DHCP-Discover {...}
(13) dhcp DHCP-Discover {
(13) update reply {
(13) &DHCP-Message-Type = DHCP-Offer
(13) } # update reply = noop
(13) update reply {
(13) &DHCP-Domain-Name-Server = 10.10.0.3
(13) &DHCP-Domain-Name-Server = 192.168.250.2
(13) &DHCP-Subnet-Mask = 255.255.255.0
(13) &DHCP-Router-Address = 10.10.0.252
(13) &DHCP-IP-Address-Lease-Time = 86400
(13) &DHCP-Gateway-IP-Address = 192.168.254.254
(13) &DHCP-DHCP-Server-Identifier = 10.10.0.3
(13) &DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(13) } # update reply = noop
(13) update control {
(13) &Pool-Name := "wireless_254"
(13) } # update control = noop
(13) policy dhcp_sqlippool.post-auth {
(13) update request {
(13) EXPAND DHCP-%{DHCP-Client-Hardware-Address}
(13) --> DHCP-f4:1b:a1:00:cc:42
(13) &User-Name = DHCP-f4:1b:a1:00:cc:42
(13) EXPAND %{DHCP-Client-Hardware-Address}
(13) --> f4:1b:a1:00:cc:42
(13) &Calling-Station-Id = f4:1b:a1:00:cc:42
(13) EXPAND %{%{DHCP-Gateway-IP-Address}:-127.0.0.1}
(13) --> 192.168.10.101
(13) &NAS-IP-Address = 192.168.10.101
(13) &Acct-Status-Type = Start
(13) } # update request = noop
(13) update control {
(13) &Pool-Name := "wireless_254"
(13) } # update control = noop
rlm_sql (sql): Reserved connection (2)
(13) dhcp_sqlippool: EXPAND %{User-Name}
(13) dhcp_sqlippool: --> DHCP-f4:1b:a1:00:cc:42
(13) dhcp_sqlippool: SQL-User-Name set to 'DHCP-f4:1b:a1:00:cc:42'
(13) dhcp_sqlippool: EXPAND START TRANSACTION
(13) dhcp_sqlippool: --> START TRANSACTION
(13) dhcp_sqlippool: Executing query: START TRANSACTION
(13) dhcp_sqlippool: EXPAND SELECT framedipaddress FROM radippool WHERE pool_name = '%{control:Pool-Name}' AND (callingstationid = '%{Calling-Station-Id}' or callingstationid = '') ORDER BY (callingstationid <> '%{Calling-Station-Id}'), expiry_time LIMIT 1 FOR UPDATE
(13) dhcp_sqlippool: --> SELECT framedipaddress FROM radippool WHERE pool_name = 'wireless_254' AND (callingstationid = 'f4:1b:a1:00:cc:42' or callingstationid = '') ORDER BY (callingstationid <> 'f4:1b:a1:00:cc:42'), expiry_time LIMIT 1 FOR UPDATE
(13) dhcp_sqlippool: Executing select query: SELECT framedipaddress FROM radippool WHERE pool_name = 'wireless_254' AND (callingstationid = 'f4:1b:a1:00:cc:42' or callingstationid = '') ORDER BY (callingstationid <> 'f4:1b:a1:00:cc:42'), expiry_time LIMIT 1 FOR UPDATE
(13) dhcp_sqlippool: Allocated IP 192.168.254.139
(13) dhcp_sqlippool: EXPAND UPDATE radippool SET nasipaddress = '%{NAS-IP-Address}', pool_key = '%{Calling-Station-Id}', callingstationid = '%{Calling-Station-Id}', username = '%{User-Name}', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.139'
(13) dhcp_sqlippool: --> UPDATE radippool SET nasipaddress = '192.168.10.101', pool_key = 'f4:1b:a1:00:cc:42', callingstationid = 'f4:1b:a1:00:cc:42', username = 'DHCP-f4:1b:a1:00:cc:42', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.139'
(13) dhcp_sqlippool: Executing query: UPDATE radippool SET nasipaddress = '192.168.10.101', pool_key = 'f4:1b:a1:00:cc:42', callingstationid = 'f4:1b:a1:00:cc:42', username = 'DHCP-f4:1b:a1:00:cc:42', expiry_time = NOW() + INTERVAL 86400 SECOND WHERE framedipaddress = '192.168.254.139'
rlm_sql_mysql: Rows matched: 1 Changed: 1 Warnings: 0
(13) dhcp_sqlippool: EXPAND COMMIT
(13) dhcp_sqlippool: --> COMMIT
(13) dhcp_sqlippool: Executing query: COMMIT
rlm_sql (sql): Released connection (2)
(13) [dhcp_sqlippool] = ok
(13) if (ok) {
(13) if (ok) -> TRUE
(13) if (ok) {
(13) update reply {
(13) EXPAND %{reply:Framed-IP-Address}
(13) --> 192.168.254.139
(13) &DHCP-Your-IP-Address = 192.168.254.139
(13) &DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(13) } # update reply = noop
(13) } # if (ok) = noop
(13) } # policy dhcp_sqlippool.post-auth = ok
(13) [ok] = ok
(13) } # dhcp DHCP-Discover = ok
(13) DHCP: Reply will be unicast to giaddr from original packet
(13) Sent code 1026 Id -920734738 from 10.10.0.3:67 to 192.168.10.101:67 length 0
(13) DHCP-Relay-IP-Address = 192.168.10.101
(13) DHCP-Message-Type = DHCP-Offer
(13) DHCP-Domain-Name-Server = 10.10.0.3
(13) DHCP-Subnet-Mask = 255.255.255.0
(13) DHCP-Router-Address = 10.10.0.252
(13) DHCP-IP-Address-Lease-Time = 86400
(13) DHCP-Gateway-IP-Address = 192.168.254.254
(13) DHCP-DHCP-Server-Identifier = 10.10.0.3
(13) DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(13) Framed-IP-Address = 192.168.254.139
(13) DHCP-Your-IP-Address = 192.168.254.139
(13) DHCP-DHCP-Maximum-Msg-Size = 1500
(13) DHCP-Opcode = Server-Message
(13) DHCP-Hardware-Type = Ethernet
(13) DHCP-Hardware-Address-Length = 6
(13) DHCP-Hop-Count = 1
(13) DHCP-Transaction-Id = 3374232558
(13) DHCP-Flags = 0
(13) DHCP-Client-IP-Address = 0.0.0.0
(13) DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
Encoding DHCP-Offer of id c91eb3ee from 10.10.0.3:67 to 192.168.10.101:67
DHCP-Opcode = 0
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 1
DHCP-Transaction-Id = 3374232558
DHCP-Number-of-Seconds = 0
DHCP-Flags = 0
DHCP-Client-IP-Address = 0.0.0.0
DHCP-Your-IP-Address = 192.168.254.139
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 192.168.254.254
DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
DHCP-Server-Host-Name = ""
DHCP-Boot-Filename = ""
DHCP-Subnet-Mask = 255.255.255.0
DHCP-Router-Address = 10.10.0.252
DHCP-Domain-Name-Server = 10.10.0.3
DHCP-IP-Address-Lease-Time = 86400
DHCP-DHCP-Server-Identifier = 10.10.0.3
DHCP-DHCP-Maximum-Msg-Size = 1500
DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
Sending DHCP-Offer Id c91eb3ee from 10.10.0.3:67 to 192.168.10.101:67
(13) Finished request
(13) Cleaning up request packet ID 3374232558 with timestamp +2
Waking up in 3.2 seconds.
Received DHCP-Offer of Id c91eb3ee from 192.168.10.101:67 to 10.10.0.3:67
DHCP-Opcode = 0
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 2
DHCP-Transaction-Id = 3374232558
DHCP-Number-of-Seconds = 0
DHCP-Flags = 0
DHCP-Client-IP-Address = 0.0.0.0
DHCP-Your-IP-Address = 192.168.254.139
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 192.168.254.254
DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
DHCP-Message-Type = DHCP-Offer
DHCP-Subnet-Mask = 255.255.255.0
DHCP-Router-Address = 10.10.0.252
DHCP-Domain-Name-Server = 10.10.0.3
DHCP-IP-Address-Lease-Time = 86400
DHCP-DHCP-Server-Identifier = 10.10.0.3
DHCP-DHCP-Maximum-Msg-Size = 1500
DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
(14) Received code 1026 Id -920734738 from 192.168.10.101:67 to 10.10.0.3:67 length 300
(14) DHCP-Opcode = 0
(14) DHCP-Hardware-Type = Ethernet
(14) DHCP-Hardware-Address-Length = 6
(14) DHCP-Hop-Count = 2
(14) DHCP-Transaction-Id = 3374232558
(14) DHCP-Number-of-Seconds = 0
(14) DHCP-Flags = 0
(14) DHCP-Client-IP-Address = 0.0.0.0
(14) DHCP-Your-IP-Address = 192.168.254.139
(14) DHCP-Server-IP-Address = 0.0.0.0
(14) DHCP-Gateway-IP-Address = 192.168.254.254
(14) DHCP-Client-Hardware-Address = f4:1b:a1:00:cc:42
(14) DHCP-Message-Type = DHCP-Offer
(14) DHCP-Subnet-Mask = 255.255.255.0
(14) DHCP-Router-Address = 10.10.0.252
(14) DHCP-Domain-Name-Server = 10.10.0.3
(14) DHCP-IP-Address-Lease-Time = 86400
(14) DHCP-DHCP-Server-Identifier = 10.10.0.3
(14) DHCP-DHCP-Maximum-Msg-Size = 1500
(14) DHCP-IEEE-802.1Q-VLAN-ID = 0x323534
Trying sub-section dhcp DHCP-Offer {...}
(14) Post-Auth-Type sub-section not found. Ignoring.
ASSERT FAILED src/modules/proto_dhcp/dhcpd.c[379]: vp->vp_byte == 1
CAUGHT SIGNAL: Abort trap: 6

@alandekok

This comment has been minimized.

Show comment
Hide comment
@alandekok

alandekok Jul 24, 2017

Member

You haven't said what version you're using.

If it isn't 3.0.15, then I think the issue is already found and fixed.

Member

alandekok commented Jul 24, 2017

You haven't said what version you're using.

If it isn't 3.0.15, then I think the issue is already found and fixed.

@misullivan

This comment has been minimized.

Show comment
Hide comment
@misullivan

misullivan Jul 24, 2017

Sorry, it is 3.0.15 ... couldn't past the whole log.

misullivan commented Jul 24, 2017

Sorry, it is 3.0.15 ... couldn't past the whole log.

alandekok added a commit that referenced this issue Nov 3, 2017

@alandekok alandekok closed this Nov 3, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment