Bug 1570649
Summary: | pwdhash segfaults when CRYPT storage scheme is used | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Viktor Ashirov <vashirov> |
Component: | 389-ds-base | Assignee: | mreynolds |
Status: | CLOSED ERRATA | QA Contact: | RHDS QE <ds-qe-bugs> |
Severity: | unspecified | Docs Contact: | Marc Muehlfeld <mmuehlfe> |
Priority: | unspecified | ||
Version: | 7.5 | CC: | mreynolds, nkinder, pasik, rmeggins |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | 389-ds-base-1.3.8.2-1.el7 | Doc Type: | Bug Fix |
Doc Text: |
The *pwdhash* utility no longer crashes when using the *CRYPT* password storage scheme
Previously, the *pwdhash* utility used an invalid mutex lock when creating a hash using the *CRYPT* password storage scheme. As a consequence, *pwdhash* failed with a segmentation fault error. With this update, the utility uses the re-entrant form of the "crypt()" function that does not require a lock. As a result, *pwdhash* no longer crashes when using the *CRYPT* password storage scheme.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2018-10-30 10:13:48 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Viktor Ashirov
2018-04-23 11:35:14 UTC
Storage schemes CRYPT-MD5, CRYPT-SHA256, CRYPT-SHA512 are also producing a crash. Upstream ticket: https://pagure.io/389-ds-base/issue/49649 Fixed upstream Build tested: 389-ds-base-1.3.8.2-1.el7.x86_64 [root@rhel7 ~]# pwdhash -s CRYPT Secret123 {crypt}upGHyxEsqa2OI [root@rhel7 ~]# pwdhash -s CRYPT-MD5 Secret123 {crypt}$1$8U$fbOhv2rxs2qCRX7tOEn7G/ [root@rhel7 ~]# pwdhash -s CRYPT-SHA256 Secret123 {crypt}$5$ln$8ok5Y89Ih1bUzeZeER5i1zDqKqF0qrmcBdDJTq/UZd6 [root@rhel7 ~]# pwdhash -s CRYPT-SHA512 Secret123 {crypt}$6$ul$iAPE8NfptLzwYBjXbZPXlVf98jjDRnw225uCaYPeay1TlROsz9RPHuAHoQiOFRwRGODy2.wUBgwLlijLav8MV/ pwdhash no longer crashes, marking as VERIFIED. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2018:3127 |