Bug 2013263

Summary: [RHEL9] Add ability to parse child log files
Product: Red Hat Enterprise Linux 9 Reporter: jstephen
Component: sssdAssignee: jstephen
Status: CLOSED ERRATA QA Contact: shridhar <sgadekar>
Severity: medium Docs Contact:
Priority: medium    
Version: 9.0CC: aboscatt, atikhono, dlavu, grajaiya, jhrozek, lslebodn, mzidek, pbrezina, sgadekar, sgoveas, tscherf
Target Milestone: rcKeywords: Triaged
Target Release: ---Flags: pm-rhel: mirror+
Hardware: All   
OS: Linux   
Whiteboard: sync-to-jira
Fixed In Version: sssd-2.6.2-1.el9 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-05-17 16:00:58 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description jstephen 2021-10-12 13:26:03 UTC 
The tevent chain ID/SSSD request tracking internals do not print any request ID in SSSD child log messages, we need to extend this functionality to allow the parsing tool to give more useful information. One very basic example is authentication failing in the krb5_child log.
Comment 5 Alexey Tikhonov 2021-11-04 15:02:10 UTC 
Upstream PR: https://github.com/SSSD/sssd/pull/5863
Comment 8 Alexey Tikhonov 2021-12-23 10:24:20 UTC 
Pushed PR: https://github.com/SSSD/sssd/pull/5863

* `master`
    * 1110bd59e62dc9a9886612f59eb6358fa53fb0cc - Analyzer: Fail if chain ID support is missing
    * 9d62708176ce1c9d50f8f83f18497321aa86b6ae - Analyzer: Avoid circular import
    * ca1d7e29103c5720a639ae5b734846077e097d05 - sss-analyze: Fix self imports
    * 7825e0d3223a374d002d0feb23441f0a8f8687f7 - Analyzer: Search all responder log files
    * 0ba456f9edb978bb7b28452a8d3afa32fdba66cc - Analyzer: Add --child argument to 'request show'
    * 1959a2bb47c6f4e08f5bcddb4697e2ddde719c42 - Analyzer: Parse the responder request ID
    * 06d3e79c3baba5f9eae8f5c814a0b47ccc8856a7 - proxy_child: Add chain ID logging support
    * be482ac39075ce7d9112dfaeb962d2a01ba2a910 - p11_child: Add chain ID logging support
    * c92d39a30fa0162d4efdfbe5883c8ea9911a2249 - ipa_selinux: Add chain ID logging support
    * 60712f31fbc17fe2fd49364327c18e5da2697016 - gpo: Add chain ID logging support
    * cb70739f31f4051f52af03e1e2ba1e079689a231 - krb5_child: Add chain ID logging support
    * 526f731495c5a7fd13309a41bad61b4f95c5d2b4 - chain_id: Add support for custom debug format
    * 2b6edf7733fc69b7c7fb79ee935e77a9a1ec181d - RESPONDER: Support chain ID logging
    * 9296eaf9af04503807a0015e0405e2ff651ee532 - sbus: Remember outgoing request chain ID
    * 6f217eac888bb25c875f1bb060f6cef5a052e2f3 - RESPONDER: Remove extraneous client ID logging
    * e8e7e23afeb5f07c82dcb05341f26f92ee548ab7 - util: Split chain ID tevent functions
Comment 10 Alexey Tikhonov 2022-01-04 12:10:13 UTC 
Additional patch (on top of 2.6.2 release): 

Pushed PR: https://github.com/SSSD/sssd/pull/5940

* `master`
    * 5a2e0ebe83913e317f66478daeff35987c278e27 - ipa: fix reply socket of selinux_child
Comment 19 errata-xmlrpc 2022-05-17 16:00:58 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (new packages: sssd), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2022:4015