1711832 – The files provider does not handle resetOffline properly

Bug 1711832 - The files provider does not handle resetOffline properly

Summary: The files provider does not handle resetOffline properly

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	sssd
Sub Component:
Version:	7.7
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	rc
Target Release:	---
Assignee:	SSSD Maintainers
QA Contact:	Madhuri
Docs Contact:
URL:	http://faf.lab.eng.brq.redhat.com/faf...
Whiteboard:	sync-to-jira
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2019-05-20 08:24 UTC by Steeve Goveas
Modified:	2020-05-02 19:10 UTC (History)
CC List:	11 users (show)
Fixed In Version:	sssd-1.16.4-19.el7
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-08-06 13:02:47 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Github	SSSD sssd issues 4985	0	None	None	None	2020-05-02 19:10:09 UTC
Red Hat Product Errata	RHSA-2019:2177	0	None	None	None	2019-08-06 13:02:50 UTC

Comment 12 Jakub Hrozek 2019-05-23 07:51:04 UTC

Upstream ticket:
https://pagure.io/SSSD/sssd/issue/4014

Comment 20 Jakub Hrozek 2019-05-28 19:44:30 UTC

* master: 2720d97
* sssd-1-16: cb94d00

Comment 22 Madhuri 2019-06-18 11:45:55 UTC

Verified with:
sssd-1.16.4-21.el7.s390x


from automation, 

::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
::   Proxy backend lookup users and group
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

Failed to reset failed state of unit nslcd.service: Unit nslcd.service is not loaded.
Redirecting to /bin/systemctl restart nslcd.service
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'getent passwd User_CS1 | awk -F: '{print $1}' | grep User_CS1'
User_CS1
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'getent passwd User_CS1 | awk -F: '{print $1}' | grep User_CS1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'getent passwd user_cS1 | awk -F: '{print $1}' | grep User_CS1'
User_CS1
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'getent passwd user_cS1 | awk -F: '{print $1}' | grep User_CS1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'getent passwd user_cs1_alias | awk -F: '{print $1}' | grep User_CS1'
User_CS1
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'getent passwd user_cs1_alias | awk -F: '{print $1}' | grep User_CS1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'getent passwd USER_CS1_ALIAS | awk -F: '{print $1}' | grep User_CS1'
User_CS1
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'getent passwd USER_CS1_ALIAS | awk -F: '{print $1}' | grep User_CS1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'getent group USER_CS1_GRP1 | awk -F: '{print $1}' | grep User_CS1_grp1'
User_CS1_grp1
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'getent group USER_CS1_GRP1 | awk -F: '{print $1}' | grep User_CS1_grp1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'getent group user_cs1_grp1 | awk -F: '{print $4}' | grep User_CS1'
User_CS1
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'getent group user_cs1_grp1 | awk -F: '{print $4}' | grep User_CS1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'getent group USER_CS1_GRP1_ALIAS | awk -F: '{print $1}' | grep User_CS1_grp1'
User_CS1_grp1
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'getent group USER_CS1_GRP1_ALIAS | awk -F: '{print $1}' | grep User_CS1_grp1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'getent group user_cs1_grp1_alias | awk -F: '{print $4}' | grep User_CS1'
User_CS1
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'getent group user_cs1_grp1_alias | awk -F: '{print $4}' | grep User_CS1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'id user_cs1 | grep User_CS1_grp1'
uid=1111111(User_CS1) gid=1111111(User_CS1_grp1) groups=1111111(User_CS1_grp1)
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'id user_cs1 | grep User_CS1_grp1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'id USER_CS1_Alias | grep User_CS1_grp1'
uid=1111111(User_CS1) gid=1111111(User_CS1_grp1) groups=1111111(User_CS1_grp1)
:: [ 06:39:42 ] :: [   PASS   ] :: Command 'id USER_CS1_Alias | grep User_CS1_grp1' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'su_success USER_CS1 Secret123'
spawn su --shell /bin/sh nobody -- -c su --shell /bin/true -- "$1" -- USER_CS1
Password: :: [ 06:39:42 ] :: [   PASS   ] :: Command 'su_success USER_CS1 Secret123' (Expected 0, got 0)
:: [ 06:39:42 ] :: [  BEGIN   ] :: Running 'su_success user_cs1_alias Secret123'
spawn su --shell /bin/sh nobody -- -c su --shell /bin/true -- "$1" -- user_cs1_alias
Password: :: [ 06:39:47 ] :: [   PASS   ] :: Command 'su_success user_cs1_alias Secret123' (Expected 0, got 0)
:: [ 06:39:47 ] :: [  BEGIN   ] :: Running 'id user_cs1 | grep User_CS1_grp1'
uid=1111111(User_CS1) gid=1111111(User_CS1_grp1) groups=1111111(User_CS1_grp1)
:: [ 06:39:47 ] :: [   PASS   ] :: Command 'id user_cs1 | grep User_CS1_grp1' (Expected 0, got 0)
Redirecting to /bin/systemctl restart nslcd.service
Redirecting to /bin/systemctl restart nslcd.service
:: [ 06:39:58 ] :: [  BEGIN   ] :: Running 'getent passwd User_CS2 | awk -F: '{print $1}' | grep User_CS2'
User_CS2
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'getent passwd User_CS2 | awk -F: '{print $1}' | grep User_CS2' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'getent passwd USEr_CS2 | awk -F: '{print $1}' | grep User_CS2'
User_CS2
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'getent passwd USEr_CS2 | awk -F: '{print $1}' | grep User_CS2' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'getent passwd USER_CS2_AliaS | awk -F: '{print $1}' | grep User_CS2'
User_CS2
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'getent passwd USER_CS2_AliaS | awk -F: '{print $1}' | grep User_CS2' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'getent passwd user_cs2_alias | awk -F: '{print $1}' | grep User_CS2'
User_CS2
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'getent passwd user_cs2_alias | awk -F: '{print $1}' | grep User_CS2' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'getent group USER_CS2_grp1 | awk -F: '{print $1}' | grep User_CS2_grp1'
User_CS2_grp1
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'getent group USER_CS2_grp1 | awk -F: '{print $1}' | grep User_CS2_grp1' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'getent group user_cs2_grp1 | awk -F: '{print $4}' | grep User_CS2'
User_CS2
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'getent group user_cs2_grp1 | awk -F: '{print $4}' | grep User_CS2' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'getent group User_CS2_GRP1_ALIAS | awk -F: '{print $1}' | grep User_CS2_grp1'
User_CS2_grp1
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'getent group User_CS2_GRP1_ALIAS | awk -F: '{print $1}' | grep User_CS2_grp1' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'getent group user_cs2_grp1_alias | awk -F: '{print $4}' | grep User_CS2'
User_CS2
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'getent group user_cs2_grp1_alias | awk -F: '{print $4}' | grep User_CS2' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'id user_cs2 | grep User_CS2_grp1'
uid=1111112(User_CS2) gid=1111112(User_CS2_grp1) groups=1111112(User_CS2_grp1)
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'id user_cs2 | grep User_CS2_grp1' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'id USER_CS2_ALIAS | grep User_CS2_grp1'
uid=1111112(User_CS2) gid=1111112(User_CS2_grp1) groups=1111112(User_CS2_grp1)
:: [ 06:40:03 ] :: [   PASS   ] :: Command 'id USER_CS2_ALIAS | grep User_CS2_grp1' (Expected 0, got 0)
:: [ 06:40:03 ] :: [  BEGIN   ] :: Running 'su_success USER_CS2 Secret123'
spawn su --shell /bin/sh nobody -- -c su --shell /bin/true -- "$1" -- USER_CS2
Password: :: [ 06:40:08 ] :: [   PASS   ] :: Command 'su_success USER_CS2 Secret123' (Expected 0, got 0)
:: [ 06:40:08 ] :: [  BEGIN   ] :: Running 'su_success user_cs2_alias Secret123'
spawn su --shell /bin/sh nobody -- -c su --shell /bin/true -- "$1" -- user_cs2_alias
Password: :: [ 06:40:13 ] :: [   PASS   ] :: Command 'su_success user_cs2_alias Secret123' (Expected 0, got 0)


From above observations marking this bug Verified.

Comment 24 errata-xmlrpc 2019-08-06 13:02:47 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2019:2177

Note You need to log in before you can comment on or make changes to this bug.