Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 8): Bug 1689908
Description of problem: Following crash is seen when old ccache is left from earlier IPA deployment http://faf.lab.eng.brq.redhat.com/faf/reports/10838/ Version-Release number of selected component (if applicable): [root@ad-test ~]# rpm -q ipa-server ipa-server-4.7.1-11.module+el8+2842+7481110c.x86_64 [root@ad-test ~]# How reproducible: Always Steps to Reproduce: 1. Establish a one-way trust with an AD env 2. Remove one trust 3. Establish a one-way trust again with another AD env Actual results: Crash is seen Expected results: There should be no crash Additional info:
Metadata Update from @pcech: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1689908
I'm sure that the issue was fixed as part of ticket https://pagure.io/freeipa/issue/7895 . The offending line in com.redhat.idm.trust-fetch-domains was corrected and the fix backported to 4.6. https://pagure.io/freeipa/c/076cb69f00db734a378a74f50f5b4b74321c0fa4
com.redhat.idm.trust-fetch-domains
have_ccache = False try: cred = kinit_keytab(principal, keytab_name, ccache_name) if cred.lifetime > 0: have_ccache = True except (gssapi.exceptions.ExpiredCredentialsError, gssapi.raw.misc.GSSError): pass if not have_ccache: # delete stale ccache and try again if os.path.exists(ccache_name): os.unlink(ccache_name) cred = kinit_keytab(principal, keytab_name, ccache_name)
Duplicate of https://pagure.io/freeipa/issue/7895
Metadata Update from @cheimes: - Issue close_status updated to: duplicate - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.