From Fedora Project Wiki

< QA‎ | TestCases

QA/TestCases/ShadowPasswordSHA256

Description

This test case will verify that the SHA-256 algorithm is used to produce the password hashes in /etc/shadow. The default will be SHA-512 and it will not be configurable in the UI. Use kickstart to specify which algorithm to use.

Steps To Reproduce

  1. Start and installation using any available means
  2. Provide ks.cfg file with the password settings
  3. Finish the installation

Expected Results

  1. Install completes without error
  2. The system boots into runlevel 3
  3. /etc/shadow is present
  4. There is an entry looking like:
root:$5$hRk.l8NWEY8iZuZ2$T/tkh0Fuh4m2oh8JMBbFuliro.Gox46Mo9w9WIVwmqC:13933:0:99999:7:::

$5$ indicates SHA-256

Automation

Use ks.cfg below. Change with the relevant server/tree values.

install
authconfig --enableshadow --passalgo=sha256
rootpw fedora
lang en_US
timezone --utc America/New_York
firewall --disabled
network --device eth0 --bootproto dhcp
reboot
vnc
url --url http://server/fedora-tree
bootloader
zerombr
clearpart --all
autopart

%packages --resolvedeps
@ Base