SpecterOps/BloodHound

Bug: Docker Code 137

Closed this issue · 2 comments

harrynorthover commented

Description:

When attempting to reset the password on initial login, the container exits with bloodhound-1 exited with code 137. This only happens after a docker compose down -v, and then back up.

Are you intending to fix this bug?

No

Component(s) Affected:

  • UI
  • API
  • Neo4j
  • PostgreSQL

Steps to Reproduce:

  1. Docker compose up
  2. Login with temporary password
  3. Reset with new, valid password
  4. Container crashes and exits with code 137

Expected Behavior:

This should allow me to reset my initial password.

Actual Behavior:

A description of what actually happened.

Screenshots/Code Snippets/Sample Files:

bloodhound-1  | {"level":"info","time":"2024-07-04T16:54:05.6723218Z","message":"This is a new graph database. Creating a migration entry for GraphDB version v5.11.0"}
bloodhound-1  | {"level":"error","time":"2024-07-04T16:54:05.895095542Z","message":"Invalid neo4j configuration supplied; returning default values"}
bloodhound-1  | {"level":"info","time":"2024-07-04T16:54:05.895112333Z","message":"Analysis requested by init"}
bloodhound-1  | {"level":"info","time":"2024-07-04T16:54:05.897933146Z","message":"Starting daemon API Daemon"}
bloodhound-1  | {"level":"info","time":"2024-07-04T16:54:05.897963354Z","message":"Starting daemon Tools API"}
bloodhound-1  | {"level":"info","time":"2024-07-04T16:54:05.897967021Z","message":"Starting daemon Data Pruning Daemon"}
bloodhound-1  | {"level":"info","time":"2024-07-04T16:54:05.897968687Z","message":"Starting daemon Data Pipe Daemon"}
bloodhound-1  | {"level":"info","time":"2024-07-04T16:54:05.897978687Z","message":"Server started successfully"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42866","proto":"HTTP/1.1","referer":"","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"54839ffe-8985-4b30-9d28-bec67e4e9130","request_bytes":0,"response_bytes":706,"status":200,"elapsed":6.869785,"time":"2024-07-04T16:54:25.670940137Z","message":"GET /ui"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42872","proto":"HTTP/1.1","referer":"http://localhost:8080/ui","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"113b5e69-d0ea-4f33-958a-207fd1186e8f","request_bytes":0,"response_bytes":35147,"status":200,"elapsed":13.388907,"time":"2024-07-04T16:54:25.730692639Z","message":"GET /ui/assets/index-xh8h_Mzz.css"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42866","proto":"HTTP/1.1","referer":"http://localhost:8080/ui","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"a47d6de0-2a2a-494b-965f-9f2a9f38bd61","request_bytes":0,"response_bytes":383830,"status":200,"elapsed":67.389616,"time":"2024-07-04T16:54:25.771403606Z","message":"GET /ui/assets/index-CG3Rsv_y.js"}
bloodhound-1  | {"level":"warn","time":"2024-07-04T16:54:25.926719527Z","message":"Writing API Error. Status: 401. Message: [{ authentication is invalid}]"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42866","proto":"HTTP/1.1","referer":"http://localhost:8080/ui","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"00a17b82-cb6a-416a-b802-c19861edd2a1","request_bytes":0,"response_bytes":180,"status":401,"elapsed":0.51108,"time":"2024-07-04T16:54:25.926855235Z","message":"GET /api/v2/self"}
bloodhound-1  | {"level":"warn","time":"2024-07-04T16:54:25.929311426Z","message":"Writing API Error. Status: 401. Message: [{ authentication is invalid}]"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42866","proto":"HTTP/1.1","referer":"http://localhost:8080/ui","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"4a2bb936-a210-4c11-89fe-273bff7650e9","request_bytes":0,"response_bytes":180,"status":401,"elapsed":0.136666,"time":"2024-07-04T16:54:25.929343801Z","message":"GET /api/v2/features"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42866","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"fee63aa9-76e0-4886-965a-1939379ddd68","request_bytes":0,"response_bytes":23,"status":200,"elapsed":2.807397,"time":"2024-07-04T16:54:26.031690049Z","message":"POST /api/v2/logout"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42872","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"df6ba06d-dedd-4534-9c97-3a37491ea631","request_bytes":0,"response_bytes":1937,"status":200,"elapsed":0.40333,"time":"2024-07-04T16:54:26.033969658Z","message":"GET /ui/favicon.ico"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42866","proto":"HTTP/1.1","referer":"","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"530740b6-6c44-4f1f-83b1-9cfb264978d8","request_bytes":0,"response_bytes":311,"status":200,"elapsed":0.145749,"time":"2024-07-04T16:54:26.034954235Z","message":"GET /ui/assets/LoginPage-D7wbUf6h.js"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42884","proto":"HTTP/1.1","referer":"","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"b2ecc2a7-f171-4653-a486-1f9cd4f18bb4","request_bytes":0,"response_bytes":584,"status":200,"elapsed":0.416455,"time":"2024-07-04T16:54:26.036359267Z","message":"GET /ui/assets/OneTimePasscodeForm-CY33dOFJ.js"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42892","proto":"HTTP/1.1","referer":"","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"66fbca9f-62f0-4ae7-8955-5a8b6a78cdc5","request_bytes":0,"response_bytes":1314,"status":200,"elapsed":0.834661,"time":"2024-07-04T16:54:26.037651549Z","message":"GET /ui/assets/Login-F6Q2i-A3.js"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42872","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"4a3c4fd8-8146-4cee-acb3-2efc36db169f","request_bytes":0,"response_bytes":1937,"status":200,"elapsed":0.766495,"time":"2024-07-04T16:54:26.038618584Z","message":"GET /ui/favicon.ico"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42872","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"e37da917-a3dd-4b1e-8a51-97b2c342817e","request_bytes":0,"response_bytes":9779,"status":200,"elapsed":3.204477,"time":"2024-07-04T16:54:26.065251191Z","message":"GET /ui/img/logo-transparent-full.svg"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42872","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"91ccbd2f-f6d4-4857-acc1-b4dde6115ae9","request_bytes":0,"response_bytes":49,"status":200,"elapsed":1.873653,"time":"2024-07-04T16:54:26.107779855Z","message":"GET /api/v2/saml/sso"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42892","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/assets/index-xh8h_Mzz.css","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"4f666efd-f6d7-499b-9ce2-aa71372e6f77","request_bytes":0,"response_bytes":15772,"status":200,"elapsed":2.612857,"time":"2024-07-04T16:54:26.108929514Z","message":"GET /ui/assets/roboto-latin-400-normal-mTIRXP6Y.woff2"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42892","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/assets/index-xh8h_Mzz.css","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"cebbfa58-a4d2-4a9b-bad7-481a945d519b","request_bytes":0,"response_bytes":15948,"status":200,"elapsed":0.914868,"time":"2024-07-04T16:54:26.23011705Z","message":"GET /ui/assets/roboto-latin-500-normal-Dxdx3aXO.woff2"}
bloodhound-1  | {"level":"info","time":"2024-07-04T16:54:33.710201813Z","message":"Creating session for user: 4e4417cc-66a4-4309-b311-9e80ac969e3a(admin)"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42892","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"aec8baac-4904-4d9d-b30a-e4435c2119bd","request_bytes":88,"response_bytes":277,"status":200,"elapsed":1696.220416,"time":"2024-07-04T16:54:33.801970481Z","message":"POST /api/v2/login"}
bloodhound-1  | {"level":"info","user_id":"4e4417cc-66a4-4309-b311-9e80ac969e3a","remote_addr":"172.24.0.1:42892","proto":"HTTP/1.1","referer":"http://localhost:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"e74bd53a-038a-43ce-91d8-1c5de2ac5bb5","request_bytes":0,"response_bytes":807,"status":200,"elapsed":8.178319,"time":"2024-07-04T16:54:33.826094984Z","message":"GET /api/v2/self"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42892","proto":"HTTP/1.1","referer":"","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"ed894303-8133-4360-a116-1d6573983922","request_bytes":0,"response_bytes":309,"status":200,"elapsed":0.890952,"time":"2024-07-04T16:54:33.908276342Z","message":"GET /ui/assets/ExpiredPassword-DsPnGdYz.js"}
bloodhound-1  | {"level":"info","remote_addr":"172.24.0.1:42892","proto":"HTTP/1.1","referer":"","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36","request_id":"e730be87-26d5-48d1-a9d8-80270766aeae","request_bytes":0,"response_bytes":893,"status":200,"elapsed":0.671954,"time":"2024-07-04T16:54:33.915747125Z","message":"GET /ui/assets/PasswordResetForm-BWw0_cGr.js"}

Environment Information:

BloodHound: [BloodHound version or revision]

Collector: [SharpHound version / AzureHound version]

OS: [your OS and version]

Browser (if UI related): [browser name and version]

Node.js (if UI related: [Node.js version]

Go (if API related): [Go version]

Database (if persistence related): [Neo4j version / PostgreSQL version]

Docker (if using Docker): [docker version]

Additional Information:

Any additional context or information that might be helpful in understanding and diagnosing the issue.

Potential Solution (optional):

If you have any ideas about what might be causing the issue or how it could be fixed, you can share them here.

Related Issues:

If you've found related issues in the project's issue tracker, mention them here.

Contributor Checklist:

  • I have searched the issue tracker to ensure this bug hasn't been reported before or is not already being addressed.
  • I have provided clear steps to reproduce the issue.
  • I have included relevant environment information details.
  • I have attached necessary supporting documents.
  • I have checked that any JSON files I am attempting to upload to BloodHound are valid.
StephenHinck commented

Docker Code 137 means the container ran out of memory. Can you please try granting additional resources (memory specifically) to Docker and try again? This should get you going.

  • 👍1
harrynorthover commented

@StephenHinck seems to be working, not too sure why but thanks 🙌🏼