Bug 1772475
Summary: | Connecting through ssh is not possible during system upgrade | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 8 | Reporter: | Renaud Métrich <rmetrich> |
Component: | crypto-policies | Assignee: | Tomas Mraz <tmraz> |
Status: | CLOSED ERRATA | QA Contact: | Ondrej Moriš <omoris> |
Severity: | high | Docs Contact: | |
Priority: | medium | ||
Version: | 8.1 | CC: | fperalta, jjelen, nmavrogi, omoris, pdwyer, ravpatil, tmraz |
Target Milestone: | rc | Keywords: | Triaged |
Target Release: | 8.2 | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | crypto-policies-20191128-1.git23e1bf1.el8 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2020-04-28 16:46:50 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Renaud Métrich
2019-11-14 12:47:22 UTC
I do not think there is any reasonable way to solve this. It might be something to note for future updates of openssh and crypto-policies i.e. do not do any updates of a similar kind where new configuration value is added to openssh and simultaneously used in new crypto-policies version. I agree with Tomas. There is no simple way how to make the system working during the updates by making sure these the packages are updated close to each other. We do not plan any z-strean updates (and this will probably not qualify for one) which could fix this. I think the updates from 8.0 are not very common use case among our customers as many things were stabilizing up to 8.1. The good thing is that the systemd service autorestart solves this problem eventually. We certainly do not plan any big changes like this in future of RHEL8. I will keep this bug open as a landing page in case some other poeple manage to hit this issue, but I do not think there is anything we could do about that now. Hi guys, Thanks for looking into this. Could you give the exact reasons why it fails (until scriptlet runs apparently)? I didn't find any obvious change in the configuration. I'll then document this. Renaud. *** Bug 1774233 has been marked as a duplicate of this bug. *** Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:1811 |