Bug 1232738

Summary: Cache is not updated after user is deleted from ldap server
Product: Red Hat Enterprise Linux 6 Reporter: Amith <apeetham>
Component: sssdAssignee: Lukas Slebodnik <lslebodn>
Status: CLOSED ERRATA QA Contact: Kaushik Banerjee <kbanerje>
Severity: urgent Docs Contact:
Priority: urgent    
Version: 6.7CC: drieden, grajaiya, jgalipea, jhrozek, lslebodn, mkosek, mzidek, pbrezina, preichl
Target Milestone: rcKeywords: Regression
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: sssd-1.12.4-47.el6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-07-22 06:46:32 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Amith 2015-06-17 12:09:03 UTC 
Description of problem:
It is a regression of bz678410 and bz894381. Observed automation failures on all archs. Memory cache is not updated after user is deleted from ldap server.

Version-Release number of selected component (if applicable):
sssd-1.12.4-46.el6

How reproducible:
Always

Steps to Reproduce:
1. # id puser1
uid=2001(puser1) gid=2001 groups=2001

2. Delete puser1 from ldap server

3. # ssh -l puser1 localhost
puser1@localhost's password:
Permission denied, please try again.
puser1@localhost's password:

4. # id puser1
uid=2001(puser1) gid=2001 groups=2001   <== Should not work
  
Actual results:
ldbsearch shows that the user still exists in cache, even after the entry_negative_timeout.

Expected results:
User should also be removed from cache.

Additional info:
Comment 3 Jakub Hrozek 2015-06-17 17:45:21 UTC 
No need to mark QE-reported bugs as private.

Thank you for reporting the bug, though.
Comment 4 Jakub Hrozek 2015-06-17 17:45:59 UTC 
Upstream ticket:
https://fedorahosted.org/sssd/ticket/2681
Comment 7 Jakub Hrozek 2015-06-22 09:03:19 UTC 
* master: 9fc96a4a2b07b92585b02dba161ab1eb2dbdad98                           
* sssd-1-12: d0d6956c3748ba670448edd548b8edd37c5f5c1a
Comment 9 Amith 2015-06-23 05:21:09 UTC 
Verified the bug on SSSD Version: sssd-1.12.4-47.el6

Successful execution of the automation suite verifies this bug. See the results from testcase: "bz678410-and-bz894381-id-command-shows-recently-deleted-users" on beaker job https://beaker.engineering.redhat.com/jobs/990732.
Comment 11 errata-xmlrpc 2015-07-22 06:46:32 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-1448.html