Red Hat Bugzilla – Bug 839626
sss_groupshow does not show nested group memberships correctly
Last modified: 2016-02-28 12:25:31 EST
Description of problem:
Shanks found this issue.
For some reason, sss_groupshow does not show more than 2 levels of membership:
[root@zeppelin ~]# sss_groupadd gr1
[root@zeppelin ~]# sss_groupadd gr2
[root@zeppelin ~]# sss_groupadd gr3
[root@zeppelin ~]# sss_groupmod -a gr1 gr2
[root@zeppelin ~]# sss_groupmod -a gr2 gr3
[root@zeppelin ~]# sss_usermod -a gr3 lcl
[root@zeppelin ~]# sss_groupshow -R gr1
GID number: 1001
Is a member of:
GID number: 1002
Is a member of: gr1
The bug really only hits sss_groupshow because the NSS interface returns all groups:
# id lcl
uid=1000(lcl) gid=1000(lcl) groups=1000(lcl),1001(gr1),1002(gr2),1003(gr3)
Shanks discovered that this used to work in RHEL6.0/sssd-1.2, so most likely the bug was introduced during the sysdb rewrite.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
Thank you taking your time and submitting this request for Red Hat Enterprise
Linux. The request was cloned to the upstream tracker long time ago (see link
to the upstream ticket above), but it was not given a priority neither in the
upstream project, nor in Red Hat Enterprise Linux.
Given that this request is not planned for a close release, it is highly
unlikely it will be fixed in this major version of Red Hat Enterprise Linux. We
are therefore closing the request as WONTFIX.
To request that Red Hat reconsiders the decision, please reopen the Bugzilla
with the help of Red Hat Customer Service and provide additional business
and/or technical details about it's importance to you. Please note that you can
still track this request or even offer help in the referred upstream Trac
ticket to expedite the solution.