#9607 Nightly test failure (f40+) in test_commands.py::TestIPACommand::test_ssh_key_connection
Closed: fixed 7 months ago by frenaud. Opened 7 months ago by frenaud.

Issue

The nightly test test_commands.py::TestIPACommand::test_ssh_key_connection is failing on fedora 40. Relevant report and logs

The journal shows the following error message on the server:

Jun 13 09:17:31 master.ipa.test sshd[16864]: error: Unsafe AuthorizedKeysCommand "/usr/bin/sss_ssh_authorizedkeys": bad ownership or modes for directory /

Test scenario:
1. Install ipa server
2. create a ssh key pair using ssh-keygen, upload the public key to an IPA user
3. try to ssh to the server using the private key

The test fails because the root directory / has wrong file permissions:

# ls -ld /
drwxrwxr-x. 1 root root 242 Jun 14 09:41 /

while it should be rwxr-xr-x according to https://access.redhat.com/solutions/6798261


Metadata Update from @frenaud:
- Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/7383

7 months ago

The test test_integration/test_sssd.py::TestNestedMembers::test_nested_group_members is also failing with the same error

Reported the following issue in cloud-sig:
# 429 Wrong permissions on / for Fedora-Cloud-Base-Vagrant-libvirt f40 image

master:

  • 7513575 ipatests: fix / permissions to allow ssh with private key

ipa-4-12:

  • 60c127d ipatests: fix / permissions to allow ssh with private key

Metadata Update from @frenaud:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

7 months ago

Log in to comment on this ticket.

Metadata