lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Thu, 16 Feb 2017 15:00:32 +0000
From:   bugzilla-daemon@...zilla.kernel.org
To:     linux-ext4@...nel.org
Subject: [Bug 194607] New: Unable to change passwd upon a hard reboot

https://bugzilla.kernel.org/show_bug.cgi?id=194607

            Bug ID: 194607
           Summary: Unable to change passwd upon a hard reboot
           Product: File System
           Version: 2.5
    Kernel Version: 3.18.29
          Hardware: ARM
                OS: Linux
              Tree: Mainline
            Status: NEW
          Severity: normal
          Priority: P1
         Component: ext4
          Assignee: fs_ext4@...nel-bugs.osdl.org
          Reporter: ramanareddy1892@...il.com
        Regression: No

Hi,

I have an imx6dl based custom board. I compiled OpenWRT Chaos Calmer for this
and generated an image out of u-boot.img, zImage and dtb file in one partition
and rootfs in second partition. First partition is vfat and second(rootfs) is
ext4.

The board can boot from SD card and internal eMMC flash. I tried on both of
them.

Steps to reproduce:

1. Boot the image.
2. Change passwd to a non-empty string
3. Observe there is no passwd+ file in the /etc/ directory
4. Do a hard reboot (Soft reboot doesn't reproduce this)
5. Observe that passwd+ file exists in /etc/ directory. (Happens more than 80%
of the time)
6. Now unless we remove this file, passwd cannot be changed.

    root@...nWRT:~# passwd 
    Changing password for root
    New password: 
    Bad password: too short
    Retype password: 
    passwd: can't create '/etc/passwd+': File exists
    passwd: can't update password file /etc/passwd

This cannot be a busybox issue. The problem comes because passwd+ file recovers
after it got deleted upon reboot!!

I will upload the required logs/docs/info if specified.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ