enterprise-support team mailing list archive
-
enterprise-support team
-
Mailing list archive
-
Message #08351
[Bug 1912750] [NEW] samba-tool domain provision crash with "password hash userPassword schemes" parameter
Public bug reported:
On focal, when I try to initialize samba (2:4.11.6+dfsg-0ubuntu1.6
amd64) with this parameter in my smb.conf, I always get an error.
root@eolebase:~# grep schemes /etc/samba/smb.conf
password hash userPassword schemes = CryptSHA256 CryptSHA512
root@eolebase:~# samba-tool domain provision --use-rfc230 --realm="AC-TEST.FR" --domain="AC-TEST" --adminpass="By65Killer" --server-role=dc --host-ip=192.168.0.24
INFO 2021-01-22 09:59:58,050 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2145: Looking up IPv6 addresses
WARNING 2021-01-22 09:59:58,050 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2152: No IPv6 address will be assigned
INFO 2021-01-22 09:59:58,323 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2319: Setting up share.ldb
INFO 2021-01-22 09:59:58,357 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2323: Setting up secrets.ldb
INFO 2021-01-22 09:59:58,381 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2329: Setting up the registry
INFO 2021-01-22 09:59:58,462 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2332: Setting up the privileges database
INFO 2021-01-22 09:59:58,504 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2335: Setting up idmap db
INFO 2021-01-22 09:59:58,534 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2342: Setting up SAM db
INFO 2021-01-22 09:59:58,542 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #898: Setting up sam.ldb partitions and settings
INFO 2021-01-22 09:59:58,543 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #910: Setting up sam.ldb rootDSE
INFO 2021-01-22 09:59:58,550 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1339: Pre-loading the Samba 4 and AD schema
Unable to determine the DomainSID, can not enforce uniqueness constraint on local domainSIDs
INFO 2021-01-22 09:59:58,589 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1417: Adding DomainDN: DC=ac-test,DC=fr
INFO 2021-01-22 09:59:58,602 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1449: Adding configuration container
INFO 2021-01-22 09:59:58,653 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1464: Setting up sam.ldb schema
INFO 2021-01-22 10:00:01,208 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1482: Setting up sam.ldb configuration data
INFO 2021-01-22 10:00:01,350 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1523: Setting up display specifiers
INFO 2021-01-22 10:00:03,204 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1531: Modifying display specifiers and extended rights
INFO 2021-01-22 10:00:03,239 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1538: Adding users container
INFO 2021-01-22 10:00:03,240 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1544: Modifying users container
INFO 2021-01-22 10:00:03,241 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1547: Adding computers container
INFO 2021-01-22 10:00:03,242 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1553: Modifying computers container
INFO 2021-01-22 10:00:03,243 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1557: Setting up sam.ldb data
INFO 2021-01-22 10:00:03,376 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1587: Setting up well known security principals
INFO 2021-01-22 10:00:03,417 pid:4529 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1601: Setting up sam.ldb users and groups
ERROR(ldb): uncaught exception - setup_primary_userPassword: generation of a CryptSHA256 password hash failed: (Numerical result out of range)
File "/usr/lib/python3/dist-packages/samba/netcmd/__init__.py", line 186, in _run
return self.run(*args, **kwargs)
File "/usr/lib/python3/dist-packages/samba/netcmd/domain.py", line 519, in run
result = provision(self.logger,
File "/usr/lib/python3/dist-packages/samba/provision/__init__.py", line 2371, in provision
provision_fill(samdb, secrets_ldb, logger, names, paths,
File "/usr/lib/python3/dist-packages/samba/provision/__init__.py", line 1958, in provision_fill
samdb = fill_samdb(samdb, lp, names, logger=logger,
File "/usr/lib/python3/dist-packages/samba/provision/__init__.py", line 1602, in fill_samdb
setup_add_ldif(samdb, setup_path("provision_users.ldif"), {
File "/usr/lib/python3/dist-packages/samba/provision/common.py", line 55, in setup_add_ldif
ldb.add_ldif(data, controls)
File "/usr/lib/python3/dist-packages/samba/__init__.py", line 230, in add_ldif
self.add(msg, controls)
It seems to be the same as the upstream bug :
https://bugzilla.samba.org/show_bug.cgi?id=14424
ProblemType: Bug
DistroRelease: Ubuntu 20.04
Package: samba 2:4.11.6+dfsg-0ubuntu1.6
ProcVersionSignature: Ubuntu 5.4.0-65.73-generic 5.4.78
Uname: Linux 5.4.0-65-generic x86_64
ApportVersion: 2.20.11-0ubuntu27.14
Architecture: amd64
BothFailedConnect: Yes
CasperMD5CheckResult: skip
Date: Fri Jan 22 10:05:48 2021
InstallationDate: Installed on 2020-12-17 (35 days ago)
InstallationMedia: EOLE 2.8.0 "Focal Fossa" - Release amd64 (20201217)
NmbdLog:
SambaServerRegression: Yes
SmbConfIncluded: Yes
SmbLog:
SourcePackage: samba
TestparmExitCode: 0
TestparmStderr:
Load smb config files from /etc/samba/smb.conf
Loaded services file OK.
Server role: ROLE_ACTIVE_DIRECTORY_DC
UpgradeStatus: No upgrade log present (probably fresh install)
** Affects: samba (Ubuntu)
Importance: Undecided
Status: New
** Tags: amd64 apport-bug focal
--
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to samba in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/1912750
Title:
samba-tool domain provision crash with "password hash userPassword
schemes" parameter
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1912750/+subscriptions
Follow ups