Hide Forgot
Description of problem: If the user configures sssd to use ad_matching_rule and there are no group members, the SSSD accesses random data and crashes. Version-Release number of selected component (if applicable): sssd-1.9.2-82.10.el6_4.x86_64 How reproducible: easy to reproduce Steps to Reproduce: 1. Configure sssd to use ad_matching_rule and there are no group members, Actual results: sssd_be segfaults: kernel: sssd_be[16228]: segfault at 0 ip 00007f8f43f4b68e sp 00007fffc48d6850 error 4 in libsss_ldap.so[7f8f43e81000+150000] Expected results: sssd doesn't crash Additional info: Upstream bug https://fedorahosted.org/sssd/ticket/2157
Upstream ticket: https://fedorahosted.org/sssd/ticket/2157
Fixed upstream: master: 7a8f19affd2a050fd2e9631a54c0e67048d3920c sssd-1-11: c55ba1127071f7e6a622d8655d89726128d73981 sssd-1-9: 9fcfa6c6e0469b955459f5df7309df28e0f07cf7
*** Bug 1079585 has been marked as a duplicate of this bug. ***
Verified with sssd-1.11.6-1.el6 Output from beaker automation run: :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: :: [ LOG ] :: bug_automation_002: bz 1033084 empty group cannot be resolved using ad_matching_rule :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: empty_group:*:781293067: :: [ PASS ] :: Running 'getent group empty_group' (Expected 0, got 0) bug-automation-002 result: PASS
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2014-1375.html