Bug 888614

Summary: Failure in memberof can lead to failed database update
Product: Red Hat Enterprise Linux 6 Reporter: Dmitri Pal <dpal>
Component: sssdAssignee: Jakub Hrozek <jhrozek>
Status: CLOSED ERRATA QA Contact: Kaushik Banerjee <kbanerje>
Severity: unspecified Docs Contact:
Priority: high    
Version: 6.4CC: grajaiya, jgalipea, okos, pbrezina
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: sssd-1.9.2-82.el6 Doc Type: Bug Fix
Doc Text:
No documentation needed.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2013-02-21 09:42:44 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 895654    

Description Dmitri Pal 2012-12-19 02:21:03 UTC 
This bug is created as a clone of upstream ticket:
https://fedorahosted.org/sssd/ticket/1728

While trying to upgrade to 1.9.x on my RHEL machine I encountred a fatal failure in database upgrade.
The issue was down to a mismatched memberof entry in a user that caused a 'No such attribute' error to be returned when the memberof plugin tried to remove the user entry on upgrade, going from DB version 10 to 11.
Comment 3 Kaushik Banerjee 2013-01-31 15:33:10 UTC 
Verified in version 1.9.2-82

sssd now starts up fine after the upgrade.

sssd.log shows:
(Thu Jan 31 20:54:15 2013) [sssd] [sysdb_domain_init_internal] (0x0100): Upgrading DB [LDAP] from version: 0.10
(Thu Jan 31 20:54:15 2013) [sssd] [commence_upgrade] (0x0020): UPGRADING DB TO VERSION 0.11
(Thu Jan 31 20:54:15 2013) [sssd] [sysdb_upgrade_10] (0x1000): User [nest_user1] is a member of 1 groups
(Thu Jan 31 20:54:15 2013) [sssd] [sysdb_upgrade_10] (0x0400): Adding ghost [nest_user1] to entry [name=Group_1,cn=groups,cn=LDAP,cn=sysdb]
(Thu Jan 31 20:54:15 2013) [sssd] [sysdb_upgrade_10] (0x0400): Removing fake user [name=nest_user1,cn=users,cn=LDAP,cn=sysdb]
(Thu Jan 31 20:54:15 2013) [sssd] [sysdb_upgrade_10] (0x1000): User [nest_user3] is a member of 2 groups
(Thu Jan 31 20:54:15 2013) [sssd] [sysdb_upgrade_10] (0x0400): Adding ghost [nest_user3] to entry [name=Group_2,cn=groups,cn=LDAP,cn=sysdb]
(Thu Jan 31 20:54:15 2013) [sssd] [sysdb_upgrade_10] (0x0400): Adding ghost [nest_user3] to entry [name=Group_1,cn=groups,cn=LDAP,cn=sysdb]
(Thu Jan 31 20:54:15 2013) [sssd] [sysdb_upgrade_10] (0x0400): Removing fake user [name=nest_user3,cn=users,cn=LDAP,cn=sysdb]
(Thu Jan 31 20:54:15 2013) [sssd] [commence_upgrade] (0x0020): UPGRADING DB TO VERSION 0.12
Comment 4 errata-xmlrpc 2013-02-21 09:42:44 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHSA-2013-0508.html