[Bug 1607666] Re: sudo fails with host netgroup returned from freeipa
Łukasz Zemczak
1607666 at bugs.launchpad.net
Fri Jan 20 15:52:49 UTC 2017
Hello Florian, or anyone else affected,
Accepted sudo into xenial-proposed. The package will build now and be
available at https://launchpad.net/ubuntu/+source/sudo/1.8.16-0ubuntu1.3
in a few hours, and then in the -proposed repository.
Please help us by testing this new package. See
https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how
to enable and use -proposed.Your feedback will aid us getting this
update out to other Ubuntu users.
If this package fixes the bug for you, please add a comment to this bug,
mentioning the version of the package you tested, and change the tag
from verification-needed to verification-done. If it does not fix the
bug for you, please add a comment stating that, and change the tag to
verification-failed. In either case, details of your testing will help
us make a better decision.
Further information regarding the verification process can be found at
https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in
advance!
** Changed in: sudo (Ubuntu Xenial)
Status: Confirmed => Fix Committed
** Tags added: verification-needed
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to sudo in Ubuntu.
https://bugs.launchpad.net/bugs/1607666
Title:
sudo fails with host netgroup returned from freeipa
Status in sudo package in Ubuntu:
Fix Released
Status in sudo source package in Xenial:
Fix Committed
Status in sudo source package in Yakkety:
New
Bug description:
[Impact]
Sudo currently fails to validate netgroups against host netgroups returned from the sss plugin, see https://fedorahosted.org/freeipa/ticket/6139 for the glory details.
This was fixed in sudo 1.8.17
(https://www.sudo.ws/repos/sudo/rev/2eab4070dcf7 to be exact), which
I'd very much like to see backported to Ubuntu 16.04. If possible,
updating sudo completely to 1.8.17 would be nice, since there have
been quite a few improvements with regards to sss and freeipa and it
would be a shame if we could not benefit from them given that 16.04 is
LTS.
[Test case]
install the update, test that sudo works on a freeipa installation that uses netgroups
[Regression potential]
<tjaalton> I looked at upstream commits to sssd.c, and there were no commits that touch this area, so chance of regressions should be slim
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/1607666/+subscriptions
More information about the foundations-bugs
mailing list