#2790 sss_override --name doesn't work with RFC2307 and ghost users
Closed: Fixed None Opened 3 years ago by jhrozek.

I found out that we have issues when we override name in RFC2307 schema:

    jhrozek@hendrix ~ » sudo sss_cache -U                                                                                                                                                                          1 ↵
    [sudo] password for jhrozek:
    jhrozek@hendrix ~ » id user
    uid=12555(user) gid=12555(user) groups=12555(user),5801(secondary)
    jhrozek@hendrix ~ » sudo sss_cache -U
    jhrozek@hendrix ~ » sudo sss_override --help
    sudo: sss_override: command not found
    jhrozek@hendrix ~ » sudo sss_override --help                                                                                                                                                                   1 ↵
    sudo: sss_override: command not found
    jhrozek@hendrix ~ » sudo sss_override --help                                                                                                                                                                   1 ↵
    ldb: unable to dlopen /usr/lib64/ldb/modules/ldb/memberof.la : /usr/lib64/ldb/modules/ldb/memberof.la: invalid ELF header
    Usage:
    sss_override COMMAND COMMAND-ARGS

    Available commands:
    * user-add
    * user-del
    * user-import
    * user-export
    * group-add
    * group-del
    * group-import
    * group-export

    Common options:
      --debug=INT            Enable debug at level
    jhrozek@hendrix ~ » sudo sss_cache -U                                                                                                                                                                          1 ↵
    ldb: unable to dlopen /usr/lib64/ldb/modules/ldb/memberof.la : /usr/lib64/ldb/modules/ldb/memberof.la: invalid ELF header
    jhrozek@hendrix ~ » id user                    
    uid=12555(user) gid=12555(user) groups=12555(user),5801(secondary)
    jhrozek@hendrix ~ » sudo sss_override user-add --help
    ldb: unable to dlopen /usr/lib64/ldb/modules/ldb/memberof.la : /usr/lib64/ldb/modules/ldb/memberof.la: invalid ELF header
    Usage: sss_override user-add NAME [OPTIONS...]
      -n, --name=STRING      Override name
      -u, --uid=INT          Override uid (non-zero value)
      -g, --gid=INT          Override gid (non-zero value)
      -h, --home=STRING      Override home directory
      -s, --shell=STRING     Override shell
      -c, --gecos=STRING     Override gecos

    Help options:
      -?, --help             Show this help message
          --usage            Display brief usage message
    jhrozek@hendrix ~ » sudo sss_override user-add --name=big_boss user
    ldb: unable to dlopen /usr/lib64/ldb/modules/ldb/memberof.la : /usr/lib64/ldb/modules/ldb/memberof.la: invalid ELF header
    SSSD needs to be restarted for the changes to take effect.
    jhrozek@hendrix ~ » sudo systemctl restart sssd
    Warning: sssd.service changed on disk. Run 'systemctl daemon-reload' to reload units.
    jhrozek@hendrix ~ » sudo sss_cache -U                            
    ldb: unable to dlopen /usr/lib64/ldb/modules/ldb/memberof.la : /usr/lib64/ldb/modules/ldb/memberof.la: invalid ELF header
    jhrozek@hendrix ~ » id user                                        
    uid=12555(big_boss) gid=12555(user) groups=12555(user),5801
    jhrozek@hendrix ~ » id big_boss
    uid=12555(big_boss) gid=12555(user) groups=12555(user),5801
    jhrozek@hendrix ~ »

The secondary group doesn't resolve anymore.


Assigning to Pavel per his request.

owner: somebody => pbrezina

Fields changed

priority: major => critical

Move to 1.13.1 in case the patches are acked sooner.

milestone: NEEDS_TRIAGE => SSSD 1.13.2

Fields changed

patch: 0 => 1

- 87e0dcaff945f8b8f30030309e16ba26935fcb7b
- d5e26a3ec3fa1f217f0afd045a03b29d4f88fe1d
- 9571c9ba5ee7f8aad24e9dec6c44ce21688fa044

resolution: => fixed
status: new => closed

Fields changed

milestone: SSSD 1.13.2 => SSSD 1.13.1

Metadata Update from @jhrozek:
- Issue assigned to pbrezina
- Issue set to the milestone: SSSD 1.13.1

2 years ago

Login to comment on this ticket.

Metadata