Univention Bugzilla – Bug 30243
su on UCC client ends up in segmentation fault
Last modified: 2014-06-12 09:20:08 CEST
When trying to e.g. 'su Administrator' (or any other Domain User) on a UCC-Client which is joined i get an Segmentation fault.
Is the UCR variable auth/login/group/... set?
Switching to root with su works. We'll fix that for the next release.
works for me -> univention-run-join-scripts univention-run-join-scripts: runs all join scripts existing on local computer. copyright (c) 2001-2014 Univention GmbH, Germany Enter DC Master Account : Administrator Enter DC Master Password: Search LDAP binddn done Running 20univention-directory-policy.inst skipped (already executed) Running 45univention-join.inst skipped (already executed) Running 51univention-ucc-initramfs.inst skipped (already executed) -> su Administrator Erstelle Verzeichnis '/home/Administrator'. Administrator@ucc1:/root$ exit
As discussed, this occurs when running su as non-root.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658739 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658896 https://bugs.launchpad.net/ubuntu/+source/python-gnutls/+bug/1013798
Our pam config is fine. Seems that a bug in libgcrypt11 (which is used by gnutls26 -> libpam-ldap -> /etc/pam.d/common-account) is the reason for this problem. "su" works fine if gnutls26 is rebuilt with nettle (not libgcrypt11) but this is not an option as we don't want to rebuild this base library. The best we wait for a fix in ubuntu. Workaround: test1@ucc-> su test2 Speicherzugriffsfehler test1@ucc-> su root root@ucc-> su test2 test2@ucc
Agreed, we shouldn't deviate from Kubuntu in a core library like GnuTLS. Also, this only affects a corner case regular users won't be seeing.
UCC 2.0 has been released: http://docs.univention.de/release-notes-ucc-2.0.html If this error occurs again, please use "Clone This Bug".