This bug was fixed in the package freeradius -
3.0.26~dfsg~git20220223.1.00ed0241fa-0ubuntu2
---
freeradius (3.0.26~dfsg~git20220223.1.00ed0241fa-0ubuntu2) jammy; urgency=medium
* Fix radtest client crash when using mschap auth (LP: #1962046):
- d/p/fix-mschap-client-crash-1.pat
** Changed in: freeradius (Ubuntu)
Status: Triaged => In Progress
** Changed in: freeradius (Ubuntu)
Importance: Undecided => High
** Changed in: moonshot-gss-eap (Ubuntu)
Status: Triaged => Invalid
--
You received this bug notification because you are a member of Ubuntu
Bugs,
** Merge proposal linked:
https://code.launchpad.net/~ahasenack/ubuntu/+source/freeradius/+git/freeradius/+merge/415870
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1955009
Title:
Freeradius 3.
We'll try to get it out this week.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1955009
Title:
Freeradius 3.0.21+dfsg-3build1 fails test of moonshot-gss-eap
To manage notifications about this bug
Hi,
The feature freeze is looming closer :)
Alan, is there any visibility on the 3.0.26 release?
Thanks in advance :)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1955009
Title:
Freeradius 3.0.2
** Tags added: transition-openssl3-jj
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1955009
Title:
Freeradius 3.0.21+dfsg-3build1 fails test of moonshot-gss-eap
To manage notifications about this b
** Changed in: freeradius (Ubuntu)
Milestone: None => ubuntu-22.04-feature-freeze
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1955009
Title:
Freeradius 3.0.21+dfsg-3build1 fails test of moonsh
> So I now understand the OR change, just not why content_type is
compared with UINT8_MAX.
The TLS specification (RFC 8446, among others) says that the ContentType
field is an 8-bit value.
Therefore anything past that is not a real content type, and is
"invented" by OpenSSL.
--
You received thi
> Debug: Ignoring cbtls_msg call with pseudo content type 256, version
769
These troubled me a bit. When there is pseudo content type, the docs say
the version is set to 0. From
https://www.openssl.org/docs/man3.0/man3/SSL_CTX_set_msg_callback.html:
version
The protocol version according to
> We will be releasing 3.0.26 in January to address these, and other
issues. I'd suggest waiting for that.
Thanks Alan!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1955009
Title:
Freeradius 3.0.2
There are a LOT of changes required to get FreeRADIUS working with
OpenSSL3.
We will be releasing 3.0.26 in January to address these, and other
issues. I'd suggest waiting for that.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
htt
With this patch https://github.com/FreeRADIUS/freeradius-
server/commit/a1f5fd2213c0104d0e124d804ab8c210c9fedb18:
From a1f5fd2213c0104d0e124d804ab8c210c9fedb18 Mon Sep 17 00:00:00 2001
From: "Alan T. DeKok"
Date: Thu, 30 Dec 2021 15:31:55 -0500
Subject: [PATCH] OpenSSL3 sends invalid content type
I think I found the fix in the v3.0.x branch, testing.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1955009
Title:
Freeradius 3.0.21+dfsg-3build1 fails test of moonshot-gss-eap
To manage notificat
Plain 3.0.25 didn't work, and I had to patch it because openssl3 got rid
of FIPS_mode(). I didn't cherry pick any other changes from master, but
there may be others. Might try the v3.0.x branch
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to U
Thanks Alan, I'll try that
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1955009
Title:
Freeradius 3.0.21+dfsg-3build1 fails test of moonshot-gss-eap
To manage notifications about this bug go to:
h
I would suggest trying 3.0.25. If that works, don't even bother trying
to debug this. OpenSSL has minor behavior differences across a major
version change.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bug
** Changed in: freeradius (Ubuntu)
Assignee: (unassigned) => Andreas Hasenack (ahasenack)
** Changed in: moonshot-gss-eap (Ubuntu)
Assignee: (unassigned) => Andreas Hasenack (ahasenack)
** Changed in: moonshot-gss-eap (Ubuntu)
Status: New => Triaged
** Changed in: freeradius (Ub
Hi Sam and Alan,
>Christian> Reproducible in local autopkgtest
>
> Let me make sure I'm understanding.
> You are saying that prior to penssl 3, the test works, but with
> openssl3, the test fails?
Yes that is correct
> What is the ssl version in the successful tests?
> For example from the f
** Attachment added: "freeradius-moonshot.bad.log"
https://bugs.launchpad.net/ubuntu/+source/freeradius/+bug/1955009/+attachment/5548178/+files/freeradius-moonshot.bad.log
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bug
** Attachment added: "freeradius-moonshot.good.log"
https://bugs.launchpad.net/ubuntu/+source/freeradius/+bug/1955009/+attachment/5548177/+files/freeradius-moonshot.good.log
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://b
My $0.02 is to try the head of v3.0.x. I don't recall if we put in
fixes specifically for OpenSSL 3, but perhaps.
We've also *significantly* updated the TLS debugging output. It's a lot
clearer, and gives a lot more information.
--
You received this bug notification because you are a member of
> "Christian" == Christian Ehrhardt <1955...@bugs.launchpad.net>
writes:
Christian> Reproducible in local autopkgtest
Let me make sure I'm understanding.
You are saying that prior to penssl 3, the test works, but with
openssl3, the test fails?
What is the ssl version in the successful
Reproducible in local autopkgtest
Good:
### gss_eap_shib_attr_provider::init(): Initializing ShibResolver library
### finalize_class::finalize_class(): Constructing
Sending init_sec_context token (size=81)...continue needed...
Sending init_sec_context token (size=50)...continue needed...
Sending i
23 matches
Mail list logo
