Issue #1670: su command's return value is wrong when pam_sss is enabled. - sssd

SSSD / sssd

#1670 su command's return value is wrong when pam_sss is enabled.

Closed: Invalid None Opened 11 years ago by jhrozek.

https://bugzilla.redhat.com/show_bug.cgi?id=878030 (Red Hat Enterprise Linux 6)

When a command is run via su from root, the exit status is always 0, even if
the command fails.

For example :

# service sssd status
sssd (pid  3009) is running...

# su - local_user -c "ls -8" ; echo $?
ls: invalid option -- '8'
Try `ls --help' for more information.
0

# service sssd stop
Stopping sssd:                                             [  OK  ]
# su - local_user -c "ls -8" ; echo $?
ls: invalid option -- '8'
Try `ls --help' for more information.
2

* User local_user is a local user (from /etc/passwd file)
* If we stop the sssd service(or remove pam_sss from pam 'session' section,
then the command exit status is correct.

How reproducible:
Always
Version-Release number of selected component (if applicable):
sssd-1.8.0-32.el6.x86_64


Steps to Reproduce:
1. Run, # su - local_user -c "ls -8" ; echo $?
2. check the return value.


Actual results: su always returns 0

Expected results: su returns failure if the command fails.

dpal commented 11 years ago

Fields changed

blockedby: =>
blocking: =>
coverity: =>
design: =>
design_review: => 0
feature_milestone: =>
fedora_test_page: =>
milestone: NEEDS_TRIAGE => SSSD 1.10 beta
priority: major => minor
testsupdated: => 0

dpal commented 11 years ago

Fields changed

selected: => Not need

dpal commented 11 years ago

Moving tickets that are not a priority for SSSD 1.10 into the next release.

milestone: SSSD 1.10 beta => SSSD 1.11 beta

jhrozek commented 11 years ago

Per multiple records this was fixed in 1.9 when we were amending the PAM return codes.

resolution: => worksforme
status: new => closed

Metadata Update from @jhrozek:
- Issue set to the milestone: SSSD 1.13.1

7 years ago

pbrezina commented 3 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/2712

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata

Assignee

None

Tags

None

Blocking

None

Depending on

None

Priority

minor

Milestone

SSSD 1.13.1

type

defect

component

SSSD

version

None

selected

Not need

testsupdated

patch

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=878030

design_review

review

None

changelog

None

keywords

None

coverity

None

mark

None

blocking

None

design

None

sensitive

None

blockedby

None

feature_milestone

None

SSSD / sssd

Source Code

Documentation

#1670 su command's return value is wrong when pam_sss is enabled. Closed: Invalid None Opened 11 years ago by jhrozek.

Metadata

#1670 su command's return value is wrong when pam_sss is enabled.

Closed: Invalid None Opened 11 years ago by jhrozek.