#638 Improper offline detection in ldap_auth.c
Closed: Fixed None Opened 10 years ago by sgallagh.

Most (but not all) applications call getpwnam() before issuing a pam_authenticate() call, but not all of them. One example would be the KDE screensaver. In these cases, we have a bug in our ldap_auth.c file that returns an error when the failover code responds that none of the servers are available.

The proper behavior would be to go offline and attempt to perform an offline authentication.

For most applications, we were not seeing this bug because the initial call to getpwnam() would leave us marked as offline.

Originally reported as https://bugzilla.redhat.com/show_bug.cgi?id=626205 in Fedora

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.4.0

Fields changed

owner: somebody => sgallagh

Fixed by ab45f99

fixedin: => 1.4.0
resolution: => fixed
status: new => closed

Metadata Update from @sgallagh:
- Issue assigned to sgallagh
- Issue set to the milestone: SSSD 1.4.0

4 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/1680

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.