ocserv crashed when use certificate authentication with session-control
Nikos Mavrogiannopoulos
nmav at gnutls.org
Fri Oct 10 23:29:05 PDT 2014
On Sat, 2014-10-11 at 08:02 +0800, George Panda wrote:
> Hello, I am using ocserv 0.8.6 with GnuTLS 3.2.18.
>
> Let's say we use certificate as the only auth method, with
> session-control = true (which is enabled by default in
> doc/sample.config file).
> The ocserv will crash when client trying to connect.
> [...]
> Sec-mod crashed at line "module->open_session == NULL" in function
> "handle_sec_auth_res", file "src/sec-mod-auth.c".
> I think the reason should be when "sec_auth_init" is called, but
> "config->auth_types" is "certificate", which make module not
> initialized.
>
> It would be better if we give an friendly error message for this
> situation when ocserv is starting.
Thank you for reporting that and the analysis. I've committed a fix in
the repository.
regards,
Nikos
More information about the openconnect-devel
mailing list