Details
-
Bug
-
Status: Resolved
-
Normal
-
Resolution: Fixed
-
PUP 7.14.0
-
None
-
Phoenix
-
3
-
Phoenix 2022-04-13, Phoenix 2022-04-27
-
Needs Assessment
-
Bug Fix
-
On macOS, puppet now validates that the "salt" parameter for the "user" resource is a hex encoded string of length 64 (exactly).
-
Needs Assessment
Description
I create a new user using code example fromĀ stdlib docs
$pw = Sensitive.new('Pa55w0rd')
|
$salt = Sensitive.new('Using s0m3 s@lt')
|
$pw_info = Sensitive.new(str2saltedpbkdf2($pw, $salt, 50000))
|
user { 'jdoe':
|
ensure => present,
|
iterations => unwrap($pw_info)['iterations'],
|
password => unwrap($pw_info)['password_hex'],
|
salt => unwrap($pw_info)['salt_hex'],
|
}
|
Everything applies with no error, but I can't login until I change password via system preferences.
System:
uname -prsv
|
Darwin 21.2.0 Darwin Kernel Version 21.2.0: Sun Nov 28 20:28:54 PST 2021; root:xnu-8019.61.5~1/RELEASE_X86_64 i386
|
Puppet:
puppet --version
|
7.14.0
|
