Ticket #1512 (closed defect: fixed)

Opened 3 years ago

Last modified 3 years ago

[sssd[krb5_child[PID]]]: Credential cache directory /run/user/UID/ccdir does not exist

Reported by: dpal Owned by: pbrezina
Priority: major Milestone: SSSD 1.9.5
Component: SSSD Version:
Keywords: Cc: tibbs
Blocked By: Blocking:
Sensitive: Tests Updated: no
Coverity Bug: Patch Submitted: yes
Red Hat Bugzilla: 853558, 857054 Design link:
Feature Milestone:
Design review: no Fedora test page:
Chosen: Candidate to push out:
Release Notes:
Temp mark:

Description

https://bugzilla.redhat.com/show_bug.cgi?id=853558 (Fedora)

Description of problem:
sudo is failing in Fedora 18 (development) with identities via LDAP and
authorization via Kerberos.

Version-Release number of selected component (if applicable):
# rpm -qa | egrep 'krb5|systemd|sssd'
systemd-libs-188-3.fc18.i686
systemd-188-3.fc18.i686
systemd-sysv-188-3.fc18.i686
sssd-1.9.0-19.fc18.beta6.i686
pam_krb5-2.3.14-3.fc18.i686
sssd-client-1.9.0-19.fc18.beta6.i686
krb5-libs-1.10.2-7.fc18.i686

How reproducible:
always

Actual results:
User POV:
sudo date
[sudo] password for my_user_name:
Sorry, try again.
[sudo] password for my_user_name:
sudo: 1 incorrect password attempt

Log POV:
==> /var/log/messages <==
Aug 31 13:39:29 test-host [sssd[krb5_child[10593]]]: Credential cache directory
/run/user/my_uid/ccdir does not exist

==> /var/log/secure <==
Aug 31 13:39:29 test-host sudo: pam_sss(sudo:auth): system info: [Credential
cache directory /run/user/my_uid/ccdir does not exist]

No AVCs reported.

See attachment.

Change History

comment:1 Changed 3 years ago by dpal

  • Milestone changed from NEEDS_TRIAGE to SSSD 1.9.1
  • Tests Updated unset
  • tests set to 0
  • upgrade set to 0

comment:2 Changed 3 years ago by dpal

  • Red Hat Bugzilla changed from [https://bugzilla.redhat.com/show_bug.cgi?id=853558 853558] to [https://bugzilla.redhat.com/show_bug.cgi?id=853558 853558], [https://bugzilla.redhat.com/show_bug.cgi?id=857054 857054]

Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=857054

comment:3 Changed 3 years ago by jhrozek

  • Milestone changed from SSSD 1.9.1 to SSSD 1.9.2

comment:4 Changed 3 years ago by pbrezina

  • Owner changed from somebody to pbrezina
  • Status changed from new to assigned

comment:5 Changed 3 years ago by jhrozek

  • Resolution set to worksforme
  • Status changed from assigned to closed

Neither me, nor Pavel nor the reporter can reproduce the issue anymore. Closing and worksforme. We will reopen the ticket if the bug strikes again.

comment:6 Changed 3 years ago by jhrozek

  • Resolution worksforme deleted
  • Milestone changed from SSSD 1.9.2 to SSSD 1.9.4
  • Design review unset
  • Status changed from closed to reopened

comment:7 Changed 3 years ago by jhrozek

  • Milestone changed from SSSD 1.9.4 to SSSD 1.9.5

We won't block the 1.9.4 release but deliver the fix to Fedora as a patch.

comment:8 Changed 3 years ago by tibbs

I just wanted to add that if there is any patch you'd like tested, please do let me know as this is blocking my F18 deployment. I can easily build my own packages, so feel free to just toss a patch.

comment:9 Changed 3 years ago by jhrozek

I apologize for the delay. I had to finish some pending RHEL tasks. I'll make sure there's a patch by COB Monday..

comment:10 Changed 3 years ago by pbrezina

  • Status changed from reopened to new

comment:11 Changed 3 years ago by pbrezina

I managed to reproduce this issue and I will have patch ready tonight or tomorrow morning.

comment:12 Changed 3 years ago by tibbs

  • Cc tibbs added

comment:13 Changed 3 years ago by pbrezina

  • Patch Submitted set
  • Status changed from new to assigned

comment:14 Changed 3 years ago by jhrozek

  • Resolution set to fixed
  • Status changed from assigned to closed
Note: See TracTickets for help on using tickets.