https://bugzilla.redhat.com/show_bug.cgi?id=772043
+++ This bug was initially created as a clone of Bug #770952 +++ Description of problem: When you create an NIS netgroup named +(hostgroup), 389 crashes and then crashes on startup (last log item is a note about database recovery). Version-Release number of selected component (if applicable): 2.1.4-3.fc16.x86_64 (from updates-testing as of 2011-12-29) How reproducible: Haven't tried on a test setup, consistently crashed, however. Steps to Reproduce: 1. Create a hostgroup "buildserv" 2. Add a server to it 3. Create a sudo command-group "software-install" that mirrors the standard SOFTWARE cmnd_alias. 4. Create a sudo rule "developers_buildserv" which allows members of the "developers" group to run softare on the host named "+buildserv" 5. Create an NIS netgroup "+buildserv" Actual results: 389 crashes, crashes again when restarting. Expected results: The server refuses to create +buildserv, lets you know you're doing something dumb. Additional info: The corrective action was: 1. Use db2ldif to dump the database to LDIF 2. Manually edit the dump to rename the "buildserv" netgroup 3. Re-import with ldif2db 4. Delete the host group 5. Delete the netgroup 6. Re-add the host group.
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=770952
Opened Fedora BZ against slapi-nis. https://bugzilla.redhat.com/show_bug.cgi?id=796509
The crash is averted if you disable compat but then you can never re-enable it.
I can't find a list of acceptable characters for netgroup names beyond an old SunOS document saying lower-case and digits only. Will ask on list.
attachment freeipa-rcrit-966-netgroup.patch
master: 7d7322d
ipa-2-2: 85462d0
Metadata Update from @dpal: - Issue assigned to rcritten - Issue set to the milestone: FreeIPA 2.2 Core Effort - 2012/03
Login to comment on this ticket.