#351 Incorrect requested maximum privilege level in RAKP 1.
The requested maximum privilege level in RAKP 1 should be depended on the open session response.
The byte 3 of the open session response indicates the "maximum" privilege level allowed for this session based on the cyphite suite.
It means the requested privilege level in RAKP 1 (byte 25) should not higher than the level in the open session response.
In the current implement of ipmitool 1.8.9, the administrator command can be executed in the user level session if requested level in RAKP 1 is ADMIN but the allowed maximum level is USER in open session response.
It is conflict betwenn IPMI definition.
According to the description of byte 25 bit 4 in RAKP 1, BMC will select the minimum level between "requested level", channel level and user level.
ex: ipmitool -I lanplus -H x.x.x.x -C 0 -U root -P root chassis power on
This command can be success executed even if the privilege level of cyphite suite '0' is USER and the level of user 'root' is ADMIN.
Ticket moved from /p/ipmitool/patches/37/
We can give this a try.
This will have to wait. Patch seems to be out-of-date and code has moved on a bit.