Bug 141380 - gdm passes user input to sessreg, rather than pwent
gdm passes user input to sessreg, rather than pwent
Product: Red Hat Enterprise Linux 3
Classification: Red Hat
Component: gdm (Show other bugs)
All Linux
medium Severity medium
: ---
: ---
Assigned To: Ray Strode [halfline]
Mike McLean
Depends On:
Blocks: 132991
  Show dependency treegraph
Reported: 2004-11-30 15:08 EST by Mike Patnode
Modified: 2007-11-30 17:07 EST (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2005-05-19 23:25:47 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
patch to daemon/slave.c (1.46 KB, patch)
2004-11-30 15:09 EST, Mike Patnode
no flags Details | Diff

External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2005:086 normal SHIPPED_LIVE gdm bug fix update 2005-05-19 00:00:00 EDT

  None (edit)
Description Mike Patnode 2004-11-30 15:08:08 EST
From Bugzilla Helper:
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; 
Maxthon; .NET CLR 1.1.4322)

Description of problem:
Many pam/nss modules (IE: winbind, ldap, etc..) allow the user to 
enter a non-Unix username at the login prompt. IE: domain+user, 
user@domain, domain\\user, etc...   Since gdm passes exactly what was 
typed to sessreg, it will often fail, or worse, create non-sensical 
wtmp entries.

All such pam modules will map the non-standard name to a standard one 
and either find or generate a correct password entry structure.

A simple change to gdm to pass the username from the pwent rather 
than what the user typed in.   The pwent name should also be used for 
environment variables as well.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. Configure windbind, log in using the Windows username including a 
space or some other non-unix friendly character.


Actual Results:  User is told their session exited immediately.  
Following error in /var/log/messages:

gdm_slave_session_start: Execution of PreSession script returned > 0. 

Expected Results:  User should be able to log in with their unix name 
put in wtmp.

Additional info:

Patch attached...
Comment 1 Mike Patnode 2004-11-30 15:09:12 EST
Created attachment 107647 [details]
patch to daemon/slave.c
Comment 2 Ray Strode [halfline] 2004-12-01 11:10:12 EST
Thanks, I'll apply your patch soon.
Comment 3 Ray Strode [halfline] 2004-12-01 11:42:04 EST
This seems like a reasonable candidate for a RHEL3 update.
Comment 4 Ray Strode [halfline] 2005-01-26 19:37:35 EST
Marking MODIFIED while QA tests the fix for RHEL3-U5
Comment 5 Dennis Gregorovic 2005-05-19 23:25:47 EDT
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.


Note You need to log in before you can comment on or make changes to this bug.