Bug 889168

Summary: krb5 ticket renewal does not read the renewable tickets from cache
Product: Red Hat Enterprise Linux 6 Reporter: Jakub Hrozek <jhrozek>
Component: sssdAssignee: Jakub Hrozek <jhrozek>
Status: CLOSED ERRATA QA Contact: Kaushik Banerjee <kbanerje>
Severity: unspecified Docs Contact:
Priority: medium    
Version: 6.5CC: dpal, grajaiya, jgalipea, okos, pbrezina
Target Milestone: rcKeywords: Regression
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: sssd-1.9.2-59.el6 Doc Type: Bug Fix
Doc Text:
No documentation needed.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2013-02-21 09:42:54 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 895654    

Description Jakub Hrozek 2012-12-20 12:19:02 UTC 
Description of problem:
Due to an indexing bug in the Kerberos renewal, the ccache files are not read correctly from cache after SSSD startup.

Version-Release number of selected component (if applicable):
1.9

How reproducible:
always

Steps to Reproduce:
1. configure renewable tickets
2. acquire ticket, its path will be saved to the cache
3. service sssd restart
  
Actual results:
the tickets won't be renewed after restart

Expected results:
the tickets should be renewed

Additional info:
upstream has a patch
Comment 1 Jakub Hrozek 2012-12-20 12:21:09 UTC 
Upstream ticket:
https://fedorahosted.org/sssd/ticket/1731
Comment 3 Kaushik Banerjee 2013-01-04 09:17:10 UTC 
Verified in version 1.9.2-59

Output from beaker automation run:
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
:: [   LOG    ] :: supportTGTrenewal_004 bz889168 - Does not read renewable ccache at startup.
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

Stopping sssd: [  OK  ]
Starting sssd: [  OK  ]
[  OK  ]
:: [02:50:26] ::  Sleeping for 5 seconds
spawn ssh -o StrictHostKeyChecking=no testuser1@localhost
testuser1@localhost's password: 
Last login: Fri Jan  4 02:48:06 2013 from localhost
Could not chdir to home directory /home/testuser1: No such file or directory
-bash-4.1$ :: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Checking \[FILE:/tmp/krb5_cache/krb5cc_testuser1\] for renewal at'
Stopping sssd: [  OK  ]
Starting sssd: [  OK  ]
[  OK  ]
:: [02:50:51] ::  Sleeping for 25 seconds
:: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Checking \[FILE:/tmp/krb5_cache/krb5cc_testuser1\] for renewal at'
:: [02:51:16] ::  Stopping KDC on SERVER and sleeping for 60 seconds
Stopping Kerberos 5 KDC: [  OK  ]

:: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Going offline!'
:: [02:51:47] ::  Starting KDC on SERVER1 and sleeping for 60 seconds
Starting Kerberos 5 KDC: [  OK  ]

:: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Checking \[FILE:/tmp/krb5_cache/krb5cc_testuser1\] for renewal at'
:: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Added \[FILE:/tmp/krb5_cache/krb5cc_testuser1\] for renewal at'
'9ea279a6-c1ed-4947-8bde-2f3ba452bc6b'
supportTGTrenewal-004-bz889168-Does-not-read-renewable-ccache-at-startup- result: PASS
Comment 4 errata-xmlrpc 2013-02-21 09:42:54 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHSA-2013-0508.html