Bug 875740 – "defaults" entry ignored

Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.

Bug 875740 - "defaults" entry ignored

Summary:	"defaults" entry ignored

Status:	CLOSED ERRATA

Aliases:	None

Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	sssd (Show other bugs)
Sub Component:
Version:	6.4
Hardware:	Unspecified Unspecified

Priority	unspecified Severity unspecified
Target Milestone:	rc
Target Release:	---
Assigned To:	Jakub Hrozek
QA Contact:	Kaushik Banerjee
Docs Contact:

URL:
Whiteboard:
Keywords:

Depends On:
Blocks:	881827
	Show dependency tree / graph

Reported:	2012-11-12 09:05 EST by Nikolai Kondrashov
Modified:	2013-02-21 04:40 EST (History)
CC List:	4 users (show)

See Also:
Fixed In Version:	sssd-1.9.2-17.el6
Doc Type:	Bug Fix
Doc Text:	No documentation needed.
Story Points:	---
Clone Of:
Environment:
Last Closed:	2013-02-21 04:40:08 EST
Type:	Bug
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
The LDAP directory contents (2.98 KB, text/x-ldif) 2012-11-12 09:05 EST, Nikolai Kondrashov	no flags	Details
sssd.conf (432 bytes, text/plain) 2012-11-12 09:06 EST, Nikolai Kondrashov	no flags	Details
Add an attachment (proposed patch, testcase, etc.)

External Trackers
Tracker	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2013:0508	normal	SHIPPED_LIVE	Low: sssd security, bug fix and enhancement update	2013-02-20 16:30:10 EST

Groups: None (edit)

Description Nikolai Kondrashov 2012-11-12 09:05:41 EST

Created attachment 643542 [details]
The LDAP directory contents

Description of problem:
SSSD ignores options from "defaults" entry in LDAP

Version-Release number of selected component (if applicable):
libsss_autofs-1.9.2-7.el6.x86_64
sssd-1.9.2-7.el6.x86_64
libsss_sudo-1.9.2-7.el6.x86_64
libsss_idmap-1.9.2-7.el6.x86_64
sssd-client-1.9.2-7.el6.x86_64
sudo-1.8.6p3-5.el6.x86_64

How reproducible:
always

Steps to Reproduce:
1. Use the attached LDIF file to fill LDAP directory
2. Use the attached sssd.conf as the base for client configuration
3. Execute "su -c 'sudo -u user2 whoami' user1" as root
  
Actual results:
sudo: no tty present and no askpass program specified

Expected results:
user2

Additional info:
If the sudoOption attributes are moved to the cn=test entry instead, sudo behaves as documented.

Comment 1 Nikolai Kondrashov 2012-11-12 09:06:34 EST

Created attachment 643543 [details]
sssd.conf

Comment 3 Jakub Hrozek 2012-11-12 14:23:37 EST

Pavel, can you triage this bug before/if we clone it to Trac?

Comment 4 Pavel Březina 2012-11-13 07:11:07 EST

Upstream ticket:
https://fedorahosted.org/sssd/ticket/1640

Comment 6 Nikolai Kondrashov 2012-12-03 06:10:13 EST

Verified fixed in 1.9.2-21.el6.
Relevant sudo suite tests pass:

:: [   PASS   ] :: defaults_without
:: [   PASS   ] :: defaults_with

Comment 7 errata-xmlrpc 2013-02-21 04:40:08 EST

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHSA-2013-0508.html

Note You need to log in before you can comment on or make changes to this bug.