Removing freeradius breaks system
-
Issue: Uninstalling freeradius leaves init/boot broken. And firewall off?
pfSense version: 2.0-RC1 (amd64) built on Fri May 6 18:10:57 EDT 2011
freeradius package version: 1.1.8I installed freeradius using the GUI package manager. I decided it didn't do what I wanted, so I removed it. The uninstall appeared to remove 4 packages, I only remembered it installing 2. So after the uninstall I immediately did a pfSense firmware upgrade, hoping to fix anything the uninstaller broke. After the firmware upgrade the system rebooted, and didn't come back. Well, it did boot, but it had no WebUI and no routes. I logged in with serial console and started the WebUI. Then connected to the WebUI from the same subnet as the LAN interface, re-saved LAN interface settings (without making changes), which added the routes. All seemed well, except there were no firewall rules (as far as I could tell it was letting everything through). And on reboot it was broken again.
Eventually I re-installed the freeradius package and it fixed the system.
Here are my questions:
1. How do I get rid of the freeradius package? I don't trust it and I want it gone.
2. All my backups are with freeradius installed. If I do a fresh install and restore an XML backup, will it fail or re-install freeradius?
3. How are packages tested before being listed in the GUI? Or are they? This is the second time uninstalling a package has left the system unusable.
4. What is freeradius doing to /etc/inc/filter.inc (see below)? Are packages allowed to add hidden filter rules?Boot failures:
Creating symlinks…...done.
External config loader 1.0 is now starting...
appending output to nohup.out
Launching the init system... done.
Initializing............................ done.
Starting device manager (devd)...done.
Loading configuration......done.
Updating configuration...done.
Cleaning backup cache.................................done.
Setting up extended sysctls...done.
Setting timezone...done.
Starting Secure Shell Services...done.
Setting up polling defaults...done.
Setting up interfaces microcode...done.
Configuring LAGG interfaces...done.
Configuring VLAN interfaces...done.
Configuring QinQ interfaces...done.
Configuring WAN interface...done.
Configuring LAN interface...done.
Syncing OpenVPN settings...done.
Starting syslog...done.
Configuring firewall...
Fatal error: Cannot use string offset as an array in /etc/inc/filter.inc on line 2377
Starting CRON... done.
Executing rc.d items...
Starting /usr/local/etc/rc.d/radiusd.sh...done.
Bootup completeThanks,
Anton -
That filter.inc line is a test to see if UPnP's options are set to be enabled.
Not sure exactly what FreeRADIUS may have done that would have made that fail though.
I have installed and uninstalled FreeRADIUS a few times in the past and didn't have issues.
You can edit a config.xml backup, it's just plain text XML, find the section with the <package>…</package> tags for FreeRadius and remove them, and then restore the backup.
