Issue #3733: sssd fails to download known_hosts from freeipa - sssd

SSSD / sssd

#3733 sssd fails to download known_hosts from freeipa

Closed: Fixed 5 years ago Opened 5 years ago by fidencio.

This bug is an upstream version of https://bugzilla.redhat.com/show_bug.cgi?id=1574778

Description of problem:
After upgrading to sssd 1.16.1-3.fc27 and its dependencies, file /var/lib/sss/pubconf/known_hosts is empty. The fc27s hosts are joined to a freeipa 4.5.0 domain.

Version-Release number of selected component (if applicable):
sssd-1.16.1-3.fc27.x86_64

How reproducible:
Happens every time sssd is updated to version 1.16.1-3

Steps to Reproduce:
1. Upgrade to sssd-1.16.1-3.fc27.x86_64 and associated packages
2. Try to ssh to another ipa-joined host that has an SSH host key trusted in ipa

Actual results:
Running "ssh hostname2.ipa.example.com" prompts the user to accept a new SSH host key.

Expected results:
No prompt about trusting the host ssh key should appear, because the host key is trusted in ipa already.

Additional info:
Running "dnf downgrade sssd" resumes the normal behavior of receiving the known_hosts from the freeipa domain.

The patch that introduced the issue is: https://github.com/SSSD/sssd/commit/cd4590de2a84b8143a6c75b5198f5e1b3c0a6d63

fidencio commented 5 years ago

I'm assigning this issue to @pbrezina as he agreed to take a look on it.

The rhbz will most likely be closed as a Fedora build has been provided removing the problematic patch from there.

Metadata Update from @fidencio:
- Issue assigned to pbrezina
- Issue tagged with: regression

5 years ago

Metadata Update from @fidencio:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1574778

5 years ago

Metadata Update from @jhrozek:
- Issue priority set to: blocker (was: minor)
- Issue set to the milestone: SSSD 1.16.2

5 years ago

Metadata Update from @fidencio:
- Issue assigned to fidencio (was: pbrezina)

5 years ago

Metadata Update from @fidencio:
- Issue tagged with: PR

5 years ago

fidencio commented 5 years ago

PR: https://github.com/SSSD/sssd/pull/583

fidencio commented 5 years ago

master:
0f897b1

Metadata Update from @fidencio:
- Issue close_status updated to: Fixed
- Issue status updated to: Closed (was: Open)

5 years ago

pbrezina commented 3 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/4741

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata

Assignee

fidencio

Tags

Blocking

None

Depending on

None

Priority

blocker

Milestone

SSSD 1.16.2

type

None

component

None

version

None

selected

None

testsupdated

None

patch

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=1574778

design_review

None

review

None

changelog

None

keywords

None

coverity

None

mark

None

blocking

None

design

None

sensitive

None

blockedby

None

feature_milestone

None

SSSD / sssd

Source Code

Documentation

#3733 sssd fails to download known_hosts from freeipa Closed: Fixed 5 years ago Opened 5 years ago by fidencio.

Metadata

regression PR

#3733 sssd fails to download known_hosts from freeipa

Closed: Fixed 5 years ago Opened 5 years ago by fidencio.