PacketFence - BTS - PacketFence |
| View Issue Details |
|
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0001370 | PacketFence | hardware modules | public | 2012-01-24 15:31 | 2012-02-28 14:31 |
|
| Reporter | obilodeau | |
| Assigned To | obilodeau | |
| Priority | normal | Severity | minor | Reproducibility | have not tried |
| Status | closed | Resolution | fixed | |
| Platform | | OS | | OS Version | |
| Product Version | | |
| Target Version | 3.2.0 | Fixed in Version | 3.2.0 | |
| fixed in git revision | |
| fixed in mtn revision | 5b3395f89f9fff65ed9bdd165e11a4688f599d73 |
|
| Summary | 0001370: Net::Appliance::Session privilege detection broken resulting into a thread crash |
| Description | In setPortSecurityMaxSecureMacAddrVlanAccessByIfIndex (from lib/pf/SNMP/Cisco/Catalyst_2950.pm) the privilege detection doesn't work when a user gets in with an already privileged user (level 15).
thread failed to start: Failed to get first privileged prompt at
/usr/local/pf/lib/pf/SNMP/Cisco/Catalyst_2950.pm line 678 (0000001)
(W threads)(S) The entry point function of threads->create() failed for some reason.
|
| Steps To Reproduce | |
| Additional Information | |
| Tags | No tags attached. |
| Relationships | | related to | 0000900 | closed | | we should detect if we are enabled everytime it's relevant for Net::Appliance::Session |
|
| Attached Files |  net-appliance-session-disable-begin-privilege-fix-1370.patch (8,111) 2012-01-25 14:46
https://www.packetfence.org/bugs/file_download.php?file_id=134&type=bug |
|
| Issue History |
| Date Modified | Username | Field | Change |
| 2012-01-24 15:31 | obilodeau | New Issue | |
| 2012-01-24 15:31 | obilodeau | Status | new => assigned |
| 2012-01-24 15:31 | obilodeau | Assigned To | => obilodeau |
| 2012-01-24 15:32 | obilodeau | Relationship added | related to 0000900 |
| 2012-01-24 15:33 | obilodeau | Description Updated | |
| 2012-01-25 12:29 | obilodeau | Note Added: 0002547 | |
| 2012-01-25 14:46 | obilodeau | File Added: net-appliance-session-disable-begin-privilege-fix-1370.patch | |
| 2012-01-25 14:47 | obilodeau | Note Added: 0002548 | |
| 2012-01-25 14:48 | obilodeau | Note Added: 0002549 | |
| 2012-01-25 15:18 | obilodeau | mtn revision | => 5b3395f89f9fff65ed9bdd165e11a4688f599d73 |
| 2012-01-25 15:18 | obilodeau | Note Added: 0002551 | |
| 2012-01-25 15:18 | obilodeau | Status | assigned => resolved |
| 2012-01-25 15:18 | obilodeau | Fixed in Version | => trunk |
| 2012-01-25 15:18 | obilodeau | Resolution | open => fixed |
| 2012-01-26 14:29 | obilodeau | Note Added: 0002553 | |
| 2012-02-28 14:22 | obilodeau | Target Version | +1 => 3.2.0 |
| 2012-02-28 14:22 | obilodeau | Fixed in Version | trunk => 3.2.0 |
| 2012-02-28 14:31 | obilodeau | Note Added: 0002584 | |
| 2012-02-28 14:31 | obilodeau | Status | resolved => closed |
|
Notes |
|
|
|
|
|
|
|
|
workaround to disable all begin_privilege calls patch attached. |
|
|
|
|
|
All except Trapeze since by default users get in unprivileged. |
|
|
|
|
disabled privilege detection in all but trapeze. Once I get upstream's opinion on the issue we'll see what we'll do.
commit contains changes to docs, upgrade, etc. which the attached patch doesn't have. |
|
|
|
|
oops, yesterday's fix introduced a problem. here's the blurb to fix it:
--- pf/lib/pf/SNMP/Cisco/WLC_2106.pm 7547d8900dbfc841f270d05056f46f3fecb65b88
+++ pf/lib/pf/SNMP/Cisco/WLC_2106.pm 87810d1392683519de0550517bff2af107cbbb36
@@ -86,7 +86,7 @@ sub deauthenticateMac {
);
# Session not already privileged are not supported at this point. See 0001370
#$session->begin_privileged( $this->{_cliEnablePwd} );
- $session->->do_privileged_mode(0);
+ $session->do_privileged_mode(0);
$session->begin_configure();
};
|
|
|
|
|
|
Fixed in recently released 3.2.0. |
|