Bug 698671

Summary: FreeIPA is allowing multiple groups to contain the same gidNumber value
Product: Red Hat Enterprise Linux 6 Reporter: Dmitri Pal <dpal>
Component: ipaAssignee: Rob Crittenden <rcritten>
Status: CLOSED DUPLICATE QA Contact: Chandrasekar Kannan <ckannan>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.1CC: benl
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 697887 Environment:
Last Closed: 2011-05-13 21:53:19 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 697887    
Bug Blocks: 698240    

Description Dmitri Pal 2011-04-21 13:58:51 UTC 
+++ This bug was initially created as a clone of Bug #697887 +++

Description of problem:
I had created a user "tim" with UID 800 which was put in the ipausers group. Then I created a group "staff" with GID 800. What I didn't know is that the user creation silently created a group "tim" which also had the GID 800, which I didn't expect.

So I ended up with two groups with GID 800. Doing "id tim" on the console then only shows the numeric GID, not any of the two names.

Version-Release number of selected component (if applicable):
freeipa-server-2.0.0-1.fc15.x86_64


Steps to Reproduce:
1. Create user "test" with UID 800
2. Create group "testgroup" with GID 800
3. Do "ipa group-find" and "ipa group-find --private"
  
Actual results:
Two groups with GID 800 and different names

Expected results:
The creation of the second group should have reported an error.

--- Additional comment from mkosek on 2011-04-20 08:26:01 EDT ---

Upstream ticket:

https://fedorahosted.org/freeipa/ticket/1183

--- Additional comment from jgalipea on 2011-04-20 10:03:24 EDT ---

This is reproducible:

# ipa user-add --first=Jenny --last=Galipeau --uid=800 --gidnumber=800 jennyg
-------------------
Added user "jennyg"
-------------------
  User login: jennyg
  First name: Jenny
  Last name: Galipeau
  Full name: Jenny Galipeau
  Display name: Jenny Galipeau
  Initials: JG
  Home directory: /home/jennyg
  GECOS field: jennyg
  Login shell: /bin/sh
  Kerberos principal: jennyg@TESTRELM
  UID: 800
  GID: 800

# ipa group-add --desc="test bug 697887" --gid=800 grp697887
-----------------------
Added group "grp697887"
-----------------------
  Group name: grp697887
  Description: test bug 697887
  GID: 800

# id jennyg
uid=800(jennyg) gid=800 groups=800,972400001(ipausers)
Comment 1 Dmitri Pal 2011-05-13 21:53:19 UTC 

*** This bug has been marked as a duplicate of bug 693483 ***