autofs CIFS mount with krb5 authetication is broken by last (2015-07-22) update ?

Posted on

After applying the 2015-07-22 update that updated among many things the kernel, autofs, krb5 the system had issues mounting the cifs shares. This system is a Red Hat Enterprise Linux Server release 6.6 (Santiago), Linux ..... 2.6.32-504.16.2.el6.x86_64.

Looking at the logs quickly looks like the creduid argument passed on to cifs.upcall is not set correctly:
key description: cifs.spnego;0;0;3f000000;ver=0x2;host=saspdarcap02v;ip4=10.34.34.41;sec=krb5;uid=0x0;creduid=0x0;user=root;pid=0x4840
Jul 22 13:26:12 DSPYXE-RHL01 cifs.upcall: ver=2
Jul 22 13:26:12 DSPYXE-RHL01 cifs.upcall: host=saspdarcap02v
Jul 22 13:26:12 DSPYXE-RHL01 cifs.upcall: ip=10.34.34.41
Jul 22 13:26:12 DSPYXE-RHL01 cifs.upcall: sec=1
Jul 22 13:26:12 DSPYXE-RHL01 cifs.upcall: uid=0
Jul 22 13:26:12 DSPYXE-RHL01 cifs.upcall: creduid=0
Jul 22 13:26:12 DSPYXE-RHL01 cifs.upcall: user=root
Jul 22 13:26:12 DSPYXE-RHL01 cifs.upcall: pid=18496

After restoring the pre-update state things work fine as before:
cifs.upcall: key description: cifs.spnego;0;0;3f000000;ver=0x2;host=Saspd-PARdb01v;ip4=10.34.33.139;sec=krb5;uid=0x0;creduid=0x801519c;user=root;pid=0x2422
Jul 23 11:13:52 DSPYXE-RHL01 cifs.upcall: ver=2
Jul 23 11:13:52 DSPYXE-RHL01 cifs.upcall: host=Saspd-PARdb01v
Jul 23 11:13:52 DSPYXE-RHL01 cifs.upcall: ip=10.34.33.139
Jul 23 11:13:52 DSPYXE-RHL01 cifs.upcall: sec=1
Jul 23 11:13:52 DSPYXE-RHL01 cifs.upcall: uid=0
Jul 23 11:13:52 DSPYXE-RHL01 cifs.upcall: creduid=134304156
Jul 23 11:13:52 DSPYXE-RHL01 cifs.upcall: user=root
Jul 23 11:13:52 DSPYXE-RHL01 cifs.upcall: pid=9250

I have not had a chance to look into which of the updates (kernel, autofs, krb5) brakes it. Has anyone experienced anything like this?

BN
Log in to join the conversation
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.