Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Failed to hash passwords #11147

Closed
jetbug123 opened this issue Sep 10, 2018 · 1 comment
Closed

Failed to hash passwords #11147

jetbug123 opened this issue Sep 10, 2018 · 1 comment
Labels

Comments

@jetbug123
Copy link

jetbug123 commented Sep 10, 2018

I have upgraded from NC13 to NC14 from docker and with 2 accounts I can't login anymore.
Because the password field only contains "2|" after the password was rehashed.
Happens also when I change the user password.

Steps to reproduce

Upgrade from NC 13 to NC 14

Expected behaviour

Passwords will be rehashed in Argon2

Actual behaviour

On 2 Users the password field only contains "2|" and the users are unable to login.

Server configuration detail

Operating system: Linux 4.4.0-134-generic

Webserver: Apache/2.4.25 (Debian) (apache2handler)

Database: mysql 5.7.23

PHP version:

7.2.9

Nextcloud version: 14.0.0 - 14.0.0.19

Updated from an older Nextcloud/ownCloud or fresh install: NC 13

Where did you install Nextcloud from: Docker

List of activated apps
Enabled:
 - accessibility: 1.0.1
 - activity: 2.7.0
 - cloud_federation_api: 0.0.1
 - comments: 1.4.0
 - dav: 1.6.0
 - encryption: 2.2.0
 - federatedfilesharing: 1.4.0
 - federation: 1.4.0
 - files: 1.9.0
 - files_pdfviewer: 1.3.2
 - files_sharing: 1.6.2
 - files_texteditor: 2.6.0
 - files_trashbin: 1.4.1
 - files_versions: 1.7.1
 - files_videoplayer: 1.3.0
 - firstrunwizard: 2.3.0
 - gallery: 18.1.0
 - issuetemplate: 0.4.0
 - logreader: 2.0.0
 - lookup_server_connector: 1.2.0
 - nextcloud_announcements: 1.3.0
 - notifications: 2.2.1
 - oauth2: 1.2.1
 - password_policy: 1.4.0
 - provisioning_api: 1.4.0
 - serverinfo: 1.4.0
 - sharebymail: 1.4.0
 - support: 1.0.0
 - survey_client: 1.2.0
 - systemtags: 1.4.0
 - theming: 1.5.0
 - twofactor_backupcodes: 1.3.1
 - updatenotification: 1.4.1
 - workflowengine: 1.4.0
Disabled:
 - admin_audit
 - files_external
 - user_external
 - user_ldap

Configuration (config/config.php)
{
    "memcache.local": "\\OC\\Memcache\\APCu",
    "memcache.locking": "\\OC\\Memcache\\Redis",
    "filelocking.enabled": "true",
    "redis": {
        "host": "***REMOVED SENSITIVE VALUE***",
        "port": 6379
    },
    "apps_paths": [
        {
            "path": "\/var\/www\/html\/apps",
            "url": "\/apps",
            "writable": false
        },
        {
            "path": "\/var\/www\/html\/custom_apps",
            "url": "\/custom_apps",
            "writable": true
        }
    ],
    "instanceid": "***REMOVED SENSITIVE VALUE***",
    "passwordsalt": "***REMOVED SENSITIVE VALUE***",
    "secret": "***REMOVED SENSITIVE VALUE***",
    "trusted_domains": [
        "xxx"
    ],
    "datadirectory": "***REMOVED SENSITIVE VALUE***",
    "overwrite.cli.url": "xxxx",
    "dbtype": "mysql",
    "version": "14.0.0.19",
    "dbname": "***REMOVED SENSITIVE VALUE***",
    "dbhost": "***REMOVED SENSITIVE VALUE***",
    "dbport": "",
    "dbtableprefix": "oc_",
    "mysql.utf8mb4": true,
    "dbuser": "***REMOVED SENSITIVE VALUE***",
    "dbpassword": "***REMOVED SENSITIVE VALUE***",
    "installed": true,
    "mail_smtpmode": "smtp",
    "mail_smtpauthtype": "LOGIN",
    "mail_smtpauth": 1,
    "mail_from_address": "***REMOVED SENSITIVE VALUE***",
    "mail_domain": "***REMOVED SENSITIVE VALUE***",
    "mail_smtpsecure": "ssl",
    "mail_smtphost": "***REMOVED SENSITIVE VALUE***",
    "mail_smtpport": "465",
    "mail_smtpname": "***REMOVED SENSITIVE VALUE***",
    "mail_smtppassword": "***REMOVED SENSITIVE VALUE***",
    "trusted_proxies": "***REMOVED SENSITIVE VALUE***",
    "forwarded_for_headers": [
        "HTTP_X_FORWARDED_FOR"
    ],
    "maintenance": false,
    "theme": "",
    "loglevel": 1
}

Are you using encryption: 1

Client configuration

Browser: Mozilla/5.0 (X11; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0

Operating system: Arch

Logs

Nextcloud log
{"reqId":"xqX6drMcYtsySwzNi9P9","level":3,"time":"2018-09-10T16:48:19+00:00","remoteAddr":"xxxxx","user":"xxxxx","app":"PHP","method":"POST","url":"\/index.php\/login","message":"password_hash(): Threading failure at \/var\/www\/html\/lib\/private\/Security\/Hasher.php#80","userAgent":"Mozilla\/5.0 (X11; Linux x86_64; rv:62.0) Gecko\/20100101 Firefox\/62.0","version":"14.0.0.19"}

@nextcloud-bot
Copy link
Member

GitMate.io thinks possibly related issues are #5746 (Create user failed / password policy crash), #7218 (No feedback after password (re)set), #3826 (Password confirmation fails on some settings), #8785 (Password expiration), and #3847 (No error message displayed when create new user fails due to weak password).

@jetbug123 jetbug123 changed the title Failed to rehash passwords Failed to hash passwords Sep 13, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

2 participants