sssd.git - sssd with jhrozek's patches

diff options

author	Jakub Hrozek <jhrozek@redhat.com>	2015-07-21 11:44:03 +0200
committer	Jakub Hrozek <jhrozek@redhat.com>	2015-08-20 18:31:15 +0200
commit	09bf564bfe4f6f8407056e3261bfc7948d45bdbf (patch)
tree	53aa56d8b59d2a963cb3c0c82829ae5e8b387ec9 /src/sysv/sssd.in
parent	36f2fe9d7e5bd3af72b306da7b07df3cfd557810 (diff)
download	sssd-rhel-7.1.tar.gz sssd-rhel-7.1.tar.xz sssd-rhel-7.1.zip

IPA: Remove MPG groups if getgrgid was called before getpw()rhel-7.1

https://fedorahosted.org/sssd/ticket/2724 This bug only affects IPA clients that are connected to IPA servers with AD trust and ID mapping in effect. If an IPA client calls getgrgid() for an ID that matches a user, the user's private group would be returned and stored as a group entry. Subsequent queries for that user would fail, because MPG domains impose uniqueness restriction for both the ID and name space across groups and users. To work around that, we remove the UPG groups in MPG domains during a group lookup. Reviewed-by: Sumit Bose <sbose@redhat.com>

Diffstat (limited to 'src/sysv/sssd.in')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: