Project

General

Profile

Actions

Bug #8466

closed

radiusd crash

Added by Razvan Petrescu over 6 years ago. Updated almost 4 years ago.

Status:
Resolved
Priority:
Normal
Category:
FreeRADIUS
Target version:
-
Start date:
04/17/2018
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Affected Version:
Affected Plus Version:
Affected Architecture:
amd64

Description

Radiusd crash when for a user is set a password in plain text containing " (double qoutes)
After this all users get auth failed.
I'm getting this on pfsense version 2.4.3 latest stable amd64, is the only version i have installed.

Actions #1

Updated by Yury Zaytsev about 4 years ago

Same here on 2.4.5-RELEASE-p1 (amd64) - a nice way of locking yourself out of pfSense :-(

Actions #2

Updated by Viktor Gurov about 4 years ago

  • Affected Version deleted (2.4.3)

able to reproduce:

Thu Dec 10 18:21:14 2020 : Error: /usr/local/etc/raddb/mods-config/files/authorize[2]: Parse error (check) for entry radiususer1: Expected end of line or comma
Thu Dec 10 18:21:14 2020 : Error: Failed reading /usr/local/etc/raddb/mods-config/files/authorize
Thu Dec 10 18:21:14 2020 : Error: /usr/local/etc/raddb/mods-enabled/files[9]: Instantiation failed for module "files" 

fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/15

Actions #3

Updated by Renato Botelho almost 4 years ago

  • Status changed from New to Feedback
  • Assignee set to Viktor Gurov

PR has been merged. Thanks!

Actions #4

Updated by Danilo Zrenjanin almost 4 years ago

I tested on the latest snapshot. It still allows entering " as the first character.

e.g., entering the password "pfsense will pass the check but get stuck when the user tries to log in.

Actions #6

Updated by Jim Pingle almost 4 years ago

  • Status changed from Feedback to Pull Request Review
Actions #7

Updated by Renato Botelho almost 4 years ago

  • Status changed from Pull Request Review to Feedback
  • Assignee changed from Viktor Gurov to Danilo Zrenjanin

PR has been merged. Thanks!

Actions #9

Updated by Jim Pingle almost 4 years ago

  • Status changed from Feedback to Pull Request Review
Actions #10

Updated by Renato Botelho almost 4 years ago

  • Status changed from Pull Request Review to Feedback

Merged

Actions #11

Updated by Danilo Zrenjanin almost 4 years ago

  • Status changed from Feedback to Resolved

Tested on the latest release.

It works as expected. Ticket resolved.

Actions

Also available in: Atom PDF