# VERIFICATION FOR XENIAL Following the instructions in the description, 'user1' is present in the db:
root@vtapia-xenial:/var/log/sssd# sudo sss_cache -E; getent passwd 'user1' root@vtapia-xenial:/var/log/sssd# sudo ldbsearch -H /var/lib/sss/db/cache_openstacklocal.ldb -b name=user1,cn=users,cn=openstacklocal,cn=sysdb | grep entries asq: Unable to register control with rootdse! # 1 entries And after a manipulated user request, the entry in the db persists: root@vtapia-xenial:/var/log/sssd# sudo sss_cache -E; getent passwd 'user1 > ' root@vtapia-xenial:/var/log/sssd# sudo ldbsearch -H /var/lib/sss/db/cache_openstacklocal.ldb -b name=user1,cn=users,cn=openstacklocal,cn=sysdb | grep entries asq: Unable to register control with rootdse! # 1 entries The log shows how the username has been sanitized: (Thu Mar 30 13:55:19 2017) [sssd[be[openstacklocal]]] [sdap_get_generic_ext_step] (0x0400): calling ldap_search_ext with [(&(uid=user1\0a)(objectclass=posixAccount)(uid=*)(&(uidNumber=*)(!(uidNumber=0))))][dc=openstacklocal]. ** Tags added: verification-done-xenial -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1669712 Title: Newline characters (\n) must be sanitized before LDAP requests take place. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/1669712/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
