Bug 1571356

Summary: sosreport should also capture data from /var/lib/ipa/gssproxy/http.keytab
Product: Red Hat Enterprise Linux 7 Reporter: Striker Leggette <striker>
Component: sosAssignee: Pavel Moravec <pmoravec>
Status: CLOSED CURRENTRELEASE QA Contact: Miroslav HradĂ­lek <mhradile>
Severity: medium Docs Contact:
Priority: medium    
Version: 7.4CC: agk, bmr, gavin, mhradile, plambri, sbradley
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2018-11-06 09:37:26 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Striker Leggette 2018-04-24 15:08:48 UTC 
[+] Description of problem:
 - sosreport should also capture data from /var/lib/ipa/gssproxy/http.keytab

[+] Additional info:
 - 'klist -ket' should be run on /var/lib/ipa/gssproxy/http.keytab and should store the output in the sosreport archive as '/sos_commands/ipa/klist_-ket_.var.lib.ipa.gssproxy.http.keytab'
Comment 2 Pavel Moravec 2018-05-02 12:22:28 UTC 
My (limited) understanding is that the keytab contains keys that shall not be shared outside the system, so sosreport shouldnt collect the file.

No problem in collecting the klist.
Comment 4 Pavel Moravec 2018-11-06 09:37:26 UTC 
This should have been fixed in RHEL7.6 due to previous updates done in sos 3.6 we rebased to in 7.6. Hence closing the BZ as fixed in current release:

package: sos-3.6-11

7.6.0 errata: https://access.redhat.com/errata/RHEA-2018:3144
7.6.0-day errata: https://access.redhat.com/errata/RHBA-2018:3338

(either one contains the fix)