Bug #16927: Rudder deleting authorized_keys when / is full and 'Flush SSH' enabled - Rudder - Issue Tracker

Actions

Copy link

Bug #16927

open

Rudder deleting authorized_keys when / is full and 'Flush SSH' enabled

Added by Romain Brucker about 4 years ago. Updated almost 2 years ago.

Status:

New

Priority:

N/A

Assignee:

Category:

Techniques

Target version:

old 6.1 issues to relocate

Pull Request:

Severity:

Critical - prevents main use of Rudder | no workaround | data loss | security

UX impact:

User visibility:

Operational - other Techniques | Rudder settings | Plugins

Effort required:

Priority:

Name check:

To do

Fix check:

To do

Regression:

Description

A bug is happening when a disk is being filled (ie: with something spamming the syslog) and 'Flush SSH' is enabled.

The authorized_key happens to be deleted before being recreated, which ends-up not being possible as the disk is full.
This results in a server being totally unreachable.

Actions

Copy link

Updated by François ARMAND about 4 years ago

Thanks for reporting.
We will look if we can add a guard to prevent that case, or change the way it's done (creation, then deletion, then move or something like that)

Actions

Copy link

Updated by François ARMAND about 4 years ago

Category changed from Agent to Techniques
User visibility set to Operational - other Techniques | Rudder settings | Plugins
Priority changed from 0 to 76

Actions

Copy link

Updated by Nicolas CHARLES about 4 years ago

The authorized_keys file is never deleted (at least using technique version 4.0)
It is copied from file authorized_keys.tmp - so what is possible is that this file is created empty because of disk full, and technique doesn't detect that there's been an error

Actions

Copy link