Bug #8466: radiusd crash - pfSense Packages - pfSense bugtracker

Actions

Bug #8466

closed

radiusd crash

Added by Razvan Petrescu about 6 years ago. Updated about 3 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

Danilo Zrenjanin

Category:

FreeRADIUS

Target version:

-

Start date:

04/17/2018

Due date:

% Done:

0%

Estimated time:

Plus Target Version:

Affected Version:

Affected Plus Version:

Affected Architecture:

amd64

Description

Radiusd crash when for a user is set a password in plain text containing " (double qoutes)
After this all users get auth failed.
I'm getting this on pfsense version 2.4.3 latest stable amd64, is the only version i have installed.

Actions

#1

Updated by Yury Zaytsev over 3 years ago

Same here on 2.4.5-RELEASE-p1 (amd64) - a nice way of locking yourself out of pfSense :-(

Actions

#2

Updated by Viktor Gurov over 3 years ago

Affected Version deleted (~~2.4.3~~)

able to reproduce:

Thu Dec 10 18:21:14 2020 : Error: /usr/local/etc/raddb/mods-config/files/authorize[2]: Parse error (check) for entry radiususer1: Expected end of line or comma
Thu Dec 10 18:21:14 2020 : Error: Failed reading /usr/local/etc/raddb/mods-config/files/authorize
Thu Dec 10 18:21:14 2020 : Error: /usr/local/etc/raddb/mods-enabled/files[9]: Instantiation failed for module "files"

fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/15

Actions

#3

Updated by Renato Botelho over 3 years ago

Status changed from New to Feedback
Assignee set to Viktor Gurov

PR has been merged. Thanks!

Actions

#4

Updated by Danilo Zrenjanin over 3 years ago

I tested on the latest snapshot. It still allows entering " as the first character.

e.g., entering the password "pfsense will pass the check but get stuck when the user tries to log in.

Actions

#5

Updated by Danilo Zrenjanin over 3 years ago

Fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/29

Actions

#6

Updated by Jim Pingle about 3 years ago

Status changed from Feedback to Pull Request Review

Actions

#7

Updated by Renato Botelho about 3 years ago

Status changed from Pull Request Review to Feedback
Assignee changed from Viktor Gurov to Danilo Zrenjanin

PR has been merged. Thanks!

Actions

#8

Updated by Danilo Zrenjanin about 3 years ago

I retested and added another minor fix.
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/51

Actions

#9

Updated by Jim Pingle about 3 years ago

Status changed from Feedback to Pull Request Review

Actions

#10

Updated by Renato Botelho about 3 years ago

Status changed from Pull Request Review to Feedback

Merged

Actions

#11

Updated by Danilo Zrenjanin about 3 years ago

Status changed from Feedback to Resolved

Tested on the latest release.

It works as expected. Ticket resolved.

Actions

Also available in: Atom PDF