Hi all,
not sure if this is a actually a bug. The thing is that I deleted the
keys from /var/tmp/keys in an attempt to start over, but surprisingly
that resulted to be a very bad idea :). Now, when I try to connect with
Adam's RP I got this on my IdP:
Ready to process requests.
... new connection request on TCP socket.
Listening on auth+acct from client (212.219.210.74, 52500) -> (*, 2083,
virtual-server=default)
(0) Requiring client certificate
(0) Initiate
(0) (other): before/accept initialization
(0) TLS_accept: before/accept initialization
(0) <<< TLS 1.0 Handshake [length 003d], ClientHello
(0) TLS_accept: SSLv3 read client hello A
(0) >>> TLS 1.0 Handshake [length 0036], ServerHello
(0) TLS_accept: SSLv3 write server hello A
(0) >>> TLS 1.0 Handshake [length 0004], ServerHelloDone
(0) TLS_accept: SSLv3 write server done A
(0) TLS_accept: SSLv3 flush data
(0) TLS_accept: Need to read more data: SSLv3 read client certificate A
In SSL Handshake Phase
In SSL Accept mode
(0) <<< TLS 1.0 Handshake [length 0010], ClientKeyExchange
rlm_sql (psksql): Reserved connection (4)
rlm_sql (psksql): Executing query: 'select hex(key) from psk_keys where
keyid = 'key-8afd92';'
(0) SQL query failed
rlm_sql (psksql): Released connection (4)
(0) expand: "%{psksql:select hex(key) from psk_keys where keyid =
'%{control:tls-psk-identity}';}" -> ''
At this point, FreeRADIUS exits with not further information. I guess
Adam's IdP (or TIDS) is telling to re-use key-8afd92 as established
previously, but that key is not in my DB anymore. Is there any way to
workaround this?
Regards,
Alejandro
|