Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 889168

Summary: krb5 ticket renewal does not read the renewable tickets from cache
Product: Red Hat Enterprise Linux 6 Reporter: Jakub Hrozek <jhrozek>
Component: sssdAssignee: Jakub Hrozek <jhrozek>
Status: CLOSED ERRATA QA Contact: Kaushik Banerjee <kbanerje>
Severity: unspecified Docs Contact:
Priority: medium    
Version: 6.5CC: dpal, grajaiya, jgalipea, okos, pbrezina
Target Milestone: rcKeywords: Regression
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: sssd-1.9.2-59.el6 Doc Type: Bug Fix
Doc Text:
No documentation needed.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2013-02-21 09:42:54 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 895654    

Description Jakub Hrozek 2012-12-20 12:19:02 UTC 
Description of problem:
Due to an indexing bug in the Kerberos renewal, the ccache files are not read correctly from cache after SSSD startup.

Version-Release number of selected component (if applicable):
1.9

How reproducible:
always

Steps to Reproduce:
1. configure renewable tickets
2. acquire ticket, its path will be saved to the cache
3. service sssd restart
  
Actual results:
the tickets won't be renewed after restart

Expected results:
the tickets should be renewed

Additional info:
upstream has a patch
Comment 1 Jakub Hrozek 2012-12-20 12:21:09 UTC 
Upstream ticket:
https://fedorahosted.org/sssd/ticket/1731
Comment 3 Kaushik Banerjee 2013-01-04 09:17:10 UTC 
Verified in version 1.9.2-59

Output from beaker automation run:
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
:: [   LOG    ] :: supportTGTrenewal_004 bz889168 - Does not read renewable ccache at startup.
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

Stopping sssd: [  OK  ]
Starting sssd: [  OK  ]
[  OK  ]
:: [02:50:26] ::  Sleeping for 5 seconds
spawn ssh -o StrictHostKeyChecking=no testuser1@localhost
testuser1@localhost's password: 
Last login: Fri Jan  4 02:48:06 2013 from localhost
Could not chdir to home directory /home/testuser1: No such file or directory
-bash-4.1$ :: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Checking \[FILE:/tmp/krb5_cache/krb5cc_testuser1\] for renewal at'
Stopping sssd: [  OK  ]
Starting sssd: [  OK  ]
[  OK  ]
:: [02:50:51] ::  Sleeping for 25 seconds
:: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Checking \[FILE:/tmp/krb5_cache/krb5cc_testuser1\] for renewal at'
:: [02:51:16] ::  Stopping KDC on SERVER and sleeping for 60 seconds
Stopping Kerberos 5 KDC: [  OK  ]

:: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Going offline!'
:: [02:51:47] ::  Starting KDC on SERVER1 and sleeping for 60 seconds
Starting Kerberos 5 KDC: [  OK  ]

:: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Checking \[FILE:/tmp/krb5_cache/krb5cc_testuser1\] for renewal at'
:: [   PASS   ] :: File '/var/log/sssd/sssd_default.log' should contain 'Added \[FILE:/tmp/krb5_cache/krb5cc_testuser1\] for renewal at'
'9ea279a6-c1ed-4947-8bde-2f3ba452bc6b'
supportTGTrenewal-004-bz889168-Does-not-read-renewable-ccache-at-startup- result: PASS
Comment 4 errata-xmlrpc 2013-02-21 09:42:54 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHSA-2013-0508.html