#3508 Issues with certificate mapping rules
Closed: Fixed 2 years ago Opened 2 years ago by sbose.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1489895

Description of problem:

Two issues were found related to certificate mapping rules.

1. If <EKU> is used in the matching rule with only OIDs, e.g. <EKU>1.2.3.4, the
SSSD backend will crash. Since the rules are read during startup SSSD might
even fail to start.

2. If the rules are re-read, e.g. during an offline-online cycle with
    kill -USR1 $(pidof sssd)
    kill -USR2 $(pidof sssd)
the SSSD backend might crash if the certificate mapping rules are evaluated for
a trusted AD domain.

Metadata Update from @sbose:
- Issue set to the milestone: None

2 years ago

Metadata Update from @sbose:
- Custom field patch adjusted to on

2 years ago

Metadata Update from @jhrozek:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1489895

2 years ago

Metadata Update from @jhrozek:
- Issue close_status updated to: Fixed
- Issue set to the milestone: SSSD 1.15.4
- Issue status updated to: Closed (was: Open)

2 years ago

Metadata Update from @lslebodn:
- Custom field type adjusted to 1.15.3

2 years ago

Metadata Update from @jhrozek:
- Issue set to the milestone: SSSD 1.16.0 (was: SSSD 1.15.4)

2 years ago

Login to comment on this ticket.

Metadata