iDRAC 6.10.00.00 Internal Server Error when logging through the GUI

Question

Greetings

I upgraded some R640 from 6.00.30.00 to 6.10.00.00.

When clicking on the login button, Firefox does not log me in. Firefox network tab shows a POST to /sysmgmt/2015/bmc/session failing:
POST https://10.64.225.178/sysmgmt/2015/bmc/session 500 Internal Server Error

only the GUI access is broken, I can ssh to the iDRAC just fine.

Any help is appreciated. Thanks!

frigo_ · Accepted Answer

I was able to go further with the investigation
the binary is provided on https://opensource.dell.com/releases/idrac9/6.10.00.00/ and the core can be investigated (with gdb-multiarch).

iDRAC copies the list of SANs of the SSL certificate into a global char gSANentries[1024] buffer without any check on whether it fits or not, so if the total length of comma-delimited SANs exceeds this it overflows into the next global variable, which is "gSessionMap" in iDRAC 6.10.00.00 and it fails later.

We will make sure to use less SANs in our SSL certificates. (for us by this calculation we should limit ourselves to 28 instead of 52 at the moment. Maybe it was a bit ambitious).

frigo_ · Answer

I add that redfish is working when using basic authentication, but not session authentication.

frigo_ · Answer

Checking a TSR, there are plenty of core dumps like this one

core.6.10.54.00.00.fcgi-auth.28613.gz

which is probably the thing breaking the authentication. Unless someone has an idea, I will probably open a support case.

frigo_ · Answer

problems goes away when removing my custom SSL certificate.

olaszfiu · Answer

Thank for this post. I had exactly the same issue using a SSL certificate with many SANs on my iDRACs.

I did a "racadm sslresetcfg" and restored the factory default certificate.

BTW, this is defintely a bug, someone at DELL should absoluetly fix it !

PowerEdge Hardware General

iDRAC 6.10.00.00 Internal Server Error when logging through the GUI

Was this post helpful?