mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2025-02-25 18:55:28 -06:00
Install tools crash when password prompt is interrupted
When getpass.getpass() function is interrupted via CTRL+D, EOFError exception is thrown. Most of the install tools are not prepared for this event and crash with this exception. Make sure that it is handled properly and nice error message is printed. https://fedorahosted.org/freeipa/ticket/1916
This commit is contained in:
Martin Kosek
@@ -98,6 +98,8 @@ def main():
|
|||||||
dirman_password = get_dirman_password()
|
dirman_password = get_dirman_password()
|
||||||
except KeyboardInterrupt:
|
except KeyboardInterrupt:
|
||||||
sys.exit(0)
|
sys.exit(0)
|
||||||
|
if dirman_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
|
|
||||||
if not options.admin_password and not options.skip_conncheck and \
|
if not options.admin_password and not options.skip_conncheck and \
|
||||||
options.unattended:
|
options.unattended:
|
||||||
|
|||||||
@@ -100,6 +100,8 @@ def main():
|
|||||||
dirman_password = pw.strip()
|
dirman_password = pw.strip()
|
||||||
else:
|
else:
|
||||||
dirman_password = get_dirman_password()
|
dirman_password = get_dirman_password()
|
||||||
|
if dirman_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
|
|
||||||
api.bootstrap(context='cli', debug=options.debug)
|
api.bootstrap(context='cli', debug=options.debug)
|
||||||
api.finalize()
|
api.finalize()
|
||||||
|
|||||||
@@ -22,7 +22,7 @@
|
|||||||
import sys
|
import sys
|
||||||
import os
|
import os
|
||||||
|
|
||||||
import getpass, ldap, krbV
|
import ldap, krbV
|
||||||
import logging
|
import logging
|
||||||
|
|
||||||
from ipapython import ipautil
|
from ipapython import ipautil
|
||||||
@@ -400,7 +400,10 @@ def main():
|
|||||||
if options.dirman_passwd:
|
if options.dirman_passwd:
|
||||||
dirman_passwd = options.dirman_passwd
|
dirman_passwd = options.dirman_passwd
|
||||||
else:
|
else:
|
||||||
dirman_passwd = getpass.getpass("Directory Manager password: ")
|
dirman_passwd = installutils.read_password("Directory Manager", confirm=False,
|
||||||
|
validate=False, retry=False)
|
||||||
|
if dirman_passwd is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
|
|
||||||
options.dirman_passwd = dirman_passwd
|
options.dirman_passwd = dirman_passwd
|
||||||
|
|
||||||
|
|||||||
@@ -128,6 +128,8 @@ def main():
|
|||||||
|
|
||||||
dm_password = options.dm_password or read_password("Directory Manager",
|
dm_password = options.dm_password or read_password("Directory Manager",
|
||||||
confirm=False, validate=False)
|
confirm=False, validate=False)
|
||||||
|
if dm_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
bind = bindinstance.BindInstance(fstore, dm_password)
|
bind = bindinstance.BindInstance(fstore, dm_password)
|
||||||
|
|
||||||
# try the connection
|
# try the connection
|
||||||
|
|||||||
@@ -96,6 +96,8 @@ def main():
|
|||||||
else:
|
else:
|
||||||
if (options.ask_password or not options.ldapi) and not options.upgrade:
|
if (options.ask_password or not options.ldapi) and not options.upgrade:
|
||||||
dirman_password = get_dirman_password()
|
dirman_password = get_dirman_password()
|
||||||
|
if dirman_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
|
|
||||||
files = []
|
files = []
|
||||||
if len(args) > 0:
|
if len(args) > 0:
|
||||||
|
|||||||
@@ -112,6 +112,8 @@ def main():
|
|||||||
dirman_password = options.dirman_password
|
dirman_password = options.dirman_password
|
||||||
else:
|
else:
|
||||||
dirman_password = get_dirman_password()
|
dirman_password = get_dirman_password()
|
||||||
|
if dirman_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
conn.do_simple_bind(bindpw=dirman_password)
|
conn.do_simple_bind(bindpw=dirman_password)
|
||||||
except errors.ExecutionError, lde:
|
except errors.ExecutionError, lde:
|
||||||
sys.exit("An error occurred while connecting to the server.\n%s\n" %
|
sys.exit("An error occurred while connecting to the server.\n%s\n" %
|
||||||
|
|||||||
@@ -111,6 +111,8 @@ def main():
|
|||||||
dirman_password = pw.strip()
|
dirman_password = pw.strip()
|
||||||
else:
|
else:
|
||||||
dirman_password = get_dirman_password()
|
dirman_password = get_dirman_password()
|
||||||
|
if dirman_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
|
|
||||||
if not dirman_password:
|
if not dirman_password:
|
||||||
sys.exit("No password supplied")
|
sys.exit("No password supplied")
|
||||||
|
|||||||
@@ -22,6 +22,7 @@ from ipapython.config import IPAOptionParser
|
|||||||
from ipapython import version
|
from ipapython import version
|
||||||
from ipapython import ipautil
|
from ipapython import ipautil
|
||||||
from ipapython.ipautil import CalledProcessError
|
from ipapython.ipautil import CalledProcessError
|
||||||
|
from ipaserver.install import installutils
|
||||||
import ipaclient.ipachangeconf
|
import ipaclient.ipachangeconf
|
||||||
from optparse import OptionGroup
|
from optparse import OptionGroup
|
||||||
import logging
|
import logging
|
||||||
@@ -29,7 +30,6 @@ import sys
|
|||||||
import os
|
import os
|
||||||
import signal
|
import signal
|
||||||
import tempfile
|
import tempfile
|
||||||
import getpass
|
|
||||||
import socket
|
import socket
|
||||||
import time
|
import time
|
||||||
import threading
|
import threading
|
||||||
@@ -314,7 +314,11 @@ def main():
|
|||||||
if options.password:
|
if options.password:
|
||||||
password=options.password
|
password=options.password
|
||||||
else:
|
else:
|
||||||
password = getpass.getpass("Password for %s: " % principal)
|
password = installutils.read_password(principal, confirm=False,
|
||||||
|
validate=False, retry=False)
|
||||||
|
if password is None:
|
||||||
|
sys.exit("\nPrincipal password required")
|
||||||
|
|
||||||
|
|
||||||
stderr=''
|
stderr=''
|
||||||
(stdout, stderr, returncode) = ipautil.run(['/usr/bin/kinit', principal],
|
(stdout, stderr, returncode) = ipautil.run(['/usr/bin/kinit', principal],
|
||||||
|
|||||||
@@ -313,6 +313,8 @@ def main():
|
|||||||
dirman_password = get_dirman_password()
|
dirman_password = get_dirman_password()
|
||||||
except KeyboardInterrupt:
|
except KeyboardInterrupt:
|
||||||
sys.exit(0)
|
sys.exit(0)
|
||||||
|
if dirman_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
|
|
||||||
try:
|
try:
|
||||||
top_dir, dir = expand_replica_info(filename, dirman_password)
|
top_dir, dir = expand_replica_info(filename, dirman_password)
|
||||||
|
|||||||
@@ -20,7 +20,7 @@
|
|||||||
import sys
|
import sys
|
||||||
import os
|
import os
|
||||||
|
|
||||||
import getpass, ldap, re, krbV
|
import ldap, re, krbV
|
||||||
import traceback, logging
|
import traceback, logging
|
||||||
|
|
||||||
from ipapython import ipautil
|
from ipapython import ipautil
|
||||||
@@ -444,7 +444,10 @@ def main():
|
|||||||
dirman_passwd = options.dirman_passwd
|
dirman_passwd = options.dirman_passwd
|
||||||
else:
|
else:
|
||||||
if not test_connection(realm, host):
|
if not test_connection(realm, host):
|
||||||
dirman_passwd = getpass.getpass("Directory Manager password: ")
|
dirman_passwd = installutils.read_password("Directory Manager",
|
||||||
|
confirm=False, validate=False, retry=False)
|
||||||
|
if dirman_passwd is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
|
|
||||||
options.dirman_passwd = dirman_passwd
|
options.dirman_passwd = dirman_passwd
|
||||||
|
|
||||||
|
|||||||
@@ -294,6 +294,8 @@ def main():
|
|||||||
dirman_password = get_dirman_password()
|
dirman_password = get_dirman_password()
|
||||||
except KeyboardInterrupt:
|
except KeyboardInterrupt:
|
||||||
sys.exit(0)
|
sys.exit(0)
|
||||||
|
if dirman_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
|
|
||||||
# Try out the password
|
# Try out the password
|
||||||
try:
|
try:
|
||||||
|
|||||||
@@ -25,14 +25,13 @@ import tempfile
|
|||||||
|
|
||||||
import traceback
|
import traceback
|
||||||
|
|
||||||
import krbV, getpass
|
import krbV
|
||||||
|
|
||||||
from ipapython.ipautil import user_input
|
from ipapython.ipautil import user_input
|
||||||
|
|
||||||
from ipaserver.install import certs, dsinstance, httpinstance, installutils
|
from ipaserver.install import certs, dsinstance, httpinstance, installutils
|
||||||
from ipalib import api
|
from ipalib import api
|
||||||
from ipaserver.plugins.ldap2 import ldap2
|
from ipaserver.plugins.ldap2 import ldap2
|
||||||
from ipaserver.install import installutils
|
|
||||||
|
|
||||||
def get_realm_name():
|
def get_realm_name():
|
||||||
c = krbV.default_context()
|
c = krbV.default_context()
|
||||||
@@ -132,7 +131,10 @@ def main():
|
|||||||
|
|
||||||
try:
|
try:
|
||||||
if options.dirsrv:
|
if options.dirsrv:
|
||||||
dm_password = getpass.getpass("Directory Manager password: ")
|
dm_password = installutils.read_password("Directory Manager",
|
||||||
|
confirm=False, validate=False, retry=False)
|
||||||
|
if dm_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
realm = get_realm_name()
|
realm = get_realm_name()
|
||||||
dirname = dsinstance.config_dirname(dsinstance.realm_to_serverid(realm))
|
dirname = dsinstance.config_dirname(dsinstance.realm_to_serverid(realm))
|
||||||
fd = open(dirname + "/pwdfile.txt")
|
fd = open(dirname + "/pwdfile.txt")
|
||||||
|
|||||||
@@ -642,6 +642,8 @@ def main():
|
|||||||
# This will override any settings passed in on the cmdline
|
# This will override any settings passed in on the cmdline
|
||||||
if ipautil.file_exists(ANSWER_CACHE):
|
if ipautil.file_exists(ANSWER_CACHE):
|
||||||
dm_password = read_password("Directory Manager", confirm=False)
|
dm_password = read_password("Directory Manager", confirm=False)
|
||||||
|
if dm_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
options._update_loose(read_cache(dm_password))
|
options._update_loose(read_cache(dm_password))
|
||||||
|
|
||||||
if options.external_cert_file:
|
if options.external_cert_file:
|
||||||
@@ -807,6 +809,9 @@ def main():
|
|||||||
|
|
||||||
if not options.dm_password:
|
if not options.dm_password:
|
||||||
dm_password = read_dm_password()
|
dm_password = read_dm_password()
|
||||||
|
|
||||||
|
if dm_password is None:
|
||||||
|
sys.exit("\nDirectory Manager password required")
|
||||||
else:
|
else:
|
||||||
dm_password = options.dm_password
|
dm_password = options.dm_password
|
||||||
|
|
||||||
@@ -817,6 +822,8 @@ def main():
|
|||||||
|
|
||||||
if not options.admin_password:
|
if not options.admin_password:
|
||||||
admin_password = read_admin_password()
|
admin_password = read_admin_password()
|
||||||
|
if admin_password is None:
|
||||||
|
sys.exit("\nIPA admin password required")
|
||||||
else:
|
else:
|
||||||
admin_password = options.admin_password
|
admin_password = options.admin_password
|
||||||
|
|
||||||
|
|||||||
@@ -942,7 +942,10 @@ def install(options, env, fstore, statestore):
|
|||||||
stdin = options.password
|
stdin = options.password
|
||||||
else:
|
else:
|
||||||
if not options.unattended:
|
if not options.unattended:
|
||||||
stdin = getpass.getpass("Password for %s: " % principal)
|
try:
|
||||||
|
stdin = getpass.getpass("Password for %s: " % principal)
|
||||||
|
except EOFError:
|
||||||
|
stdin = None
|
||||||
if not stdin:
|
if not stdin:
|
||||||
print "Password must be provided for %s. " % \
|
print "Password must be provided for %s. " % \
|
||||||
principal
|
principal
|
||||||
@@ -967,7 +970,13 @@ def install(options, env, fstore, statestore):
|
|||||||
if options.unattended:
|
if options.unattended:
|
||||||
print "Password must be provided in non-interactive mode"
|
print "Password must be provided in non-interactive mode"
|
||||||
return CLIENT_INSTALL_ERROR
|
return CLIENT_INSTALL_ERROR
|
||||||
password = getpass.getpass("Password: ")
|
try:
|
||||||
|
password = getpass.getpass("Password: ")
|
||||||
|
except EOFError:
|
||||||
|
password = None
|
||||||
|
if not password:
|
||||||
|
print "Password must be provided."
|
||||||
|
return CLIENT_INSTALL_ERROR
|
||||||
join_args.append("-w")
|
join_args.append("-w")
|
||||||
join_args.append(password)
|
join_args.append(password)
|
||||||
nolog = (password,)
|
nolog = (password,)
|
||||||
|
|||||||
@@ -319,30 +319,33 @@ def _read_password_default_validator(password):
|
|||||||
|
|
||||||
def read_password(user, confirm=True, validate=True, retry=True, validator=_read_password_default_validator):
|
def read_password(user, confirm=True, validate=True, retry=True, validator=_read_password_default_validator):
|
||||||
correct = False
|
correct = False
|
||||||
pwd = ""
|
pwd = None
|
||||||
while not correct:
|
try:
|
||||||
if not retry:
|
while not correct:
|
||||||
correct = True
|
if not retry:
|
||||||
pwd = get_password(user + " password: ")
|
correct = True
|
||||||
if not pwd:
|
pwd = get_password(user + " password: ")
|
||||||
continue
|
if not pwd:
|
||||||
if validate:
|
|
||||||
try:
|
|
||||||
validator(pwd)
|
|
||||||
except ValueError, e:
|
|
||||||
print str(e)
|
|
||||||
pwd = ""
|
|
||||||
continue
|
continue
|
||||||
if not confirm:
|
if validate:
|
||||||
correct = True
|
try:
|
||||||
continue
|
validator(pwd)
|
||||||
pwd_confirm = get_password("Password (confirm): ")
|
except ValueError, e:
|
||||||
if pwd != pwd_confirm:
|
print str(e)
|
||||||
print "Password mismatch!"
|
pwd = None
|
||||||
print ""
|
continue
|
||||||
pwd = ""
|
if not confirm:
|
||||||
else:
|
correct = True
|
||||||
correct = True
|
continue
|
||||||
|
pwd_confirm = get_password("Password (confirm): ")
|
||||||
|
if pwd != pwd_confirm:
|
||||||
|
print "Password mismatch!"
|
||||||
|
print ""
|
||||||
|
pwd = None
|
||||||
|
else:
|
||||||
|
correct = True
|
||||||
|
except EOFError:
|
||||||
|
return None
|
||||||
print ""
|
print ""
|
||||||
return pwd
|
return pwd
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user