subcloud collect fails if sysadmin password has a special character
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Low
|
Eric MacDonald |
Bug Description
Brief Description:
------------------
Collecting from a subcloud using a user account with a password containing special characters
such as $, [, ], /, or " will fail due to an "Invalid Password" error.
This issue arises because an additional escape character ({}) is being added, which results in a corrupted password being sent to the subcloud.
The problem occurs in two stages:
1. When the collect command is initially invoked by the user, the first escape character(s) are added to the special character(s) in the password.
2. The collect command then initiates a secondary call targeted at the subcloud. During this process, the already escaped password is sent to the subcloud via a temporary file using the --file option. When collect runs on the subcloud, it adds another layer of escaping to the password, leading to corruption and the subsequent "Invalid Password" error.
To resolve this issue, the collect tool needs to be modified to preserve the original user password so it can be passed to the subcloud allowing collect on the subcloud to do its password escape thereby avoiding the double escape that leads to an invalid password.
Severity:
---------
Minor: Special characters in passwords are relatively rare and there is
a easy work around by simply changing the user password to remove
the problematic special character.
Steps to Reproduce:
-------------------
Change the sysadmin password to include one or more of the following special characters ; $, [, ], \, or "
Expected Behavior:
------------------
Collect subcloud succeeds.
Actual Behavior:
---------------
Collect of subcloud is rejected due to invalid password.
Reproducibility:
----------------
100% reproducible with the reproducibility steps.
System Configuration:
-------
DC system with subcloud(s).
Load info (eg: 2022-03-
-------
Any load prior to the closure of this bug report.
Last Pass:
----------
Test Escape: Issue was introduced along with the initial subcloud collect feature years ago but never seen or reported.
Timestamp/Logs:
---------------
Collect logs are not required. Issue is understood.
Error: invalid password ; Supplied password appears invalid (reason:30)
Alarms:
-------
N/A
Test Activity:
--------------
Developer Testing
Workaround:
-----------
Modify the username password to remove the special character(s).
Changed in starlingx: | |
importance: | Undecided → Low |
tags: | added: stx.10.0 stx.tools |
Changed in starlingx: | |
assignee: | nobody → Eric MacDonald (rocksolidmtce) |
Fix proposed to branch: master /review. opendev. org/c/starlingx /utilities/ +/923912
Review: https:/