From owner-freebsd-current@FreeBSD.ORG Tue Oct 28 15:14:49 2003 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DBC2E16A4CE for ; Tue, 28 Oct 2003 15:14:49 -0800 (PST) Received: from com.bat.ru (com.bat.ru [193.0.3.41]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8DC0443FAF for ; Tue, 28 Oct 2003 15:14:44 -0800 (PST) (envelope-from timur@com.bat.ru) Received: from com.bat.ru (localhost [127.0.0.1]) by com.bat.ru (8.12.10/8.12.10/bat-1.7) with ESMTP id h9SNEjfv031237; Wed, 29 Oct 2003 00:14:46 +0100 (CET) (envelope-from timur@com.bat.ru) Received: (from timur@localhost) by com.bat.ru (8.12.10/8.12.10/Submit) id h9SNEjO0031236; Wed, 29 Oct 2003 00:14:45 +0100 (CET) (envelope-from timur) Date: Wed, 29 Oct 2003 00:14:41 +0100 From: "Timur I. Bakeyev" To: Steve Lee Message-ID: <20031028231441.GA30635@com.bat.ru> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Organization: RIPE Network Coordination Centre X-Phone: +31 20 535 4444 X-Fax: +31 20 535 4445 X-WWW: http://www.ripe.net User-Agent: Mutt/1.5.4i cc: freebsd-current@freebsd.org Subject: Re: OpenLDAP/nss_ldap/pam_ldap X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Oct 2003 23:14:50 -0000 Hi, Steve! On Tue, Oct 28, 2003 at 02:52:51PM -0800, Steve Lee wrote: > Question ? > > I am using FreeBSD 5.1 > > I have gotten FreeBSD 5.1 to authenticate user remotely > ssh ing to the box. They can log in, but when they log > in, the system shows their userid instead of the username > when you do a ps. this tells me something might be > wrong with nss_ldap. but not sure what i am doing wrong. > > I can do "id " which it returns the user information. > > does anyone have an idea what i didn't do during my setup of > OpenLDAP/nss_ldap/pam_ldap ? Thanks. I would like to confirm that such weirdness exists... I do use nss_ldap and also noticed, that some of the programs, like ls, show numeric id of the user, when other, like top, show normal username, retrieved from LDAP server. Short investigation brought me to the conclusion, that the behaviour differs depending if the program was linked against libc statically or dynamically... This short code exposes the problem: #include #include int main () { struct passwd *pw = getpwuid(1002); printf("%s\n", (pw) ? pw->pw_name : "none"); } Instead of 1002 put the uid of the user from LDAP. If you compile this program as: gcc test.c -o test Which normally implies dynamic linking, when you should get username in the output. If you compile it as: gcc -static test.c -o test When "none" will be printed instead... So, the problem lays somewhere in the libc, in the way, how getpwuid and friends work in the dynamic and static context with NSS... I don't know, is this a bug or a feature :) If first, then, probably, PR should be created. With regards, Timur.