Last active
December 1, 2022 09:47
-
-
Save Amrita42/8d03435b5e5bc44d7c7ff82d7ebfdcad to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| asakthiv@localhost:~ $ klist | |
| Ticket cache: KEYRING:persistent:1000:1000 | |
| Default principal: [email protected] | |
| Valid starting Expires Service principal | |
| 12/01/2022 11:24:15 12/01/2022 21:24:15 krbtgt/[email protected] | |
| renew until 12/02/2022 11:24:07 | |
| asakthiv@localhost:~ $ KRB5_TRACE=/dev/stderr curl -vvv -k --negotiate -u: https://errata.engineering.redhat.com/advisory/105527.json | |
| * Trying 10.19.164.43:443... | |
| * Connected to errata.engineering.redhat.com (10.19.164.43) port 443 (#0) | |
| * ALPN, offering h2 | |
| * ALPN, offering http/1.1 | |
| * TLSv1.0 (OUT), TLS header, Certificate Status (22): | |
| * TLSv1.3 (OUT), TLS handshake, Client hello (1): | |
| * TLSv1.2 (IN), TLS header, Certificate Status (22): | |
| * TLSv1.3 (IN), TLS handshake, Server hello (2): | |
| * TLSv1.2 (IN), TLS header, Certificate Status (22): | |
| * TLSv1.2 (IN), TLS handshake, Certificate (11): | |
| * TLSv1.2 (IN), TLS header, Certificate Status (22): | |
| * TLSv1.2 (IN), TLS handshake, Server key exchange (12): | |
| * TLSv1.2 (IN), TLS header, Certificate Status (22): | |
| * TLSv1.2 (IN), TLS handshake, Server finished (14): | |
| * TLSv1.2 (OUT), TLS header, Certificate Status (22): | |
| * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): | |
| * TLSv1.2 (OUT), TLS header, Finished (20): | |
| * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1): | |
| * TLSv1.2 (OUT), TLS header, Certificate Status (22): | |
| * TLSv1.2 (OUT), TLS handshake, Finished (20): | |
| * TLSv1.2 (IN), TLS header, Finished (20): | |
| * TLSv1.2 (IN), TLS header, Certificate Status (22): | |
| * TLSv1.2 (IN), TLS handshake, Finished (20): | |
| * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 | |
| * ALPN, server did not agree to a protocol | |
| * Server certificate: | |
| * subject: O=Red Hat, Inc.; CN=errata-tool.hosts.prod.psi.bos.redhat.com; ST=North Carolina; C=US | |
| * start date: Nov 18 09:04:36 2022 GMT | |
| * expire date: Nov 13 09:04:36 2023 GMT | |
| * issuer: O=IPA.REDHAT.COM; CN=Certificate Authority | |
| * SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway. | |
| [20743] 1669887600.599164: TXT record _kerberos.errata.engineering.redhat.com. found: IPA.REDHAT.COM | |
| [20743] 1669887600.599165: ccselect module hostname chose cache KEYRING:persistent:1000:1000 with client principal [email protected] for server principal HTTP/[email protected] | |
| [20743] 1669887600.599166: Getting credentials [email protected] -> HTTP/errata.engineering.redhat.com@ using ccache KEYRING:persistent:1000:1000 | |
| [20743] 1669887600.599167: Retrieving [email protected] -> krb5_ccache_conf_data/start_realm@X-CACHECONF: from KEYRING:persistent:1000:1000 with result: -1765328243/Matching credential not found | |
| [20743] 1669887600.599168: Retrieving [email protected] -> HTTP/errata.engineering.redhat.com@ from KEYRING:persistent:1000:1000 with result: -1765328243/Matching credential not found | |
| [20743] 1669887600.599169: Retrying [email protected] -> HTTP/[email protected] with result: -1765328243/Matching credential not found | |
| [20743] 1669887600.599170: Server has referral realm; starting with HTTP/[email protected] | |
| [20743] 1669887600.599171: Retrieving [email protected] -> krbtgt/[email protected] from KEYRING:persistent:1000:1000 with result: 0/Success | |
| [20743] 1669887600.599172: Starting with TGT for client realm: [email protected] -> krbtgt/[email protected] | |
| [20743] 1669887600.599173: Requesting tickets for HTTP/[email protected], referrals on | |
| [20743] 1669887600.599174: Generated subkey for TGS request: aes256-cts/C0C9 | |
| [20743] 1669887600.599175: etypes requested in TGS request: aes256-cts, aes128-cts, aes256-sha2, aes128-sha2, rc4-hmac, camellia128-cts, camellia256-cts | |
| [20743] 1669887600.599177: Encoding request body and padata into FAST request | |
| [20743] 1669887600.599178: Sending request (970 bytes) to REDHAT.COM | |
| [20743] 1669887601.000001: Sending DNS URI query for _kerberos.REDHAT.COM. | |
| [20743] 1669887601.000002: No URI records found | |
| [20743] 1669887601.000003: Sending DNS SRV query for _kerberos._udp.REDHAT.COM. | |
| [20743] 1669887601.000004: SRV answer: 100 100 88 "kerberos.corp.redhat.com." | |
| [20743] 1669887601.000005: SRV answer: 10 0 88 "s2.kerb-001.prod.iad2.dc.redhat.com." | |
| [20743] 1669887601.000006: SRV answer: 10 0 88 "s1.kerb-001.prod.iad2.dc.redhat.com." | |
| [20743] 1669887601.000007: SRV answer: 5 0 88 "kerberos02.core.prod.int.rdu2.redhat.com." | |
| [20743] 1669887601.000008: SRV answer: 5 0 88 "kerberos01.core.prod.int.rdu2.redhat.com." | |
| [20743] 1669887601.000009: Sending DNS SRV query for _kerberos._tcp.REDHAT.COM. | |
| [20743] 1669887601.000010: SRV answer: 10 0 88 "s1.kerb-001.prod.iad2.dc.redhat.com." | |
| [20743] 1669887601.000011: SRV answer: 10 0 88 "s2.kerb-001.prod.iad2.dc.redhat.com." | |
| [20743] 1669887601.000012: SRV answer: 100 100 88 "kerberos.corp.redhat.com." | |
| [20743] 1669887601.000013: SRV answer: 5 0 88 "kerberos01.core.prod.int.rdu2.redhat.com." | |
| [20743] 1669887601.000014: SRV answer: 5 0 88 "kerberos02.core.prod.int.rdu2.redhat.com." | |
| [20743] 1669887601.000015: Resolving hostname kerberos02.core.prod.int.rdu2.redhat.com. | |
| [20743] 1669887601.000016: Resolving hostname kerberos01.core.prod.int.rdu2.redhat.com. | |
| [20743] 1669887601.000017: Resolving hostname s2.kerb-001.prod.iad2.dc.redhat.com. | |
| [20743] 1669887601.000018: Resolving hostname s1.kerb-001.prod.iad2.dc.redhat.com. | |
| [20743] 1669887601.000019: Resolving hostname kerberos.corp.redhat.com. | |
| [20743] 1669887601.000020: Resolving hostname kerberos01.core.prod.int.rdu2.redhat.com. | |
| [20743] 1669887601.000021: Initiating TCP connection to stream 10.11.189.1:88 | |
| [20743] 1669887601.000022: Sending TCP request to stream 10.11.189.1:88 | |
| [20743] 1669887601.000023: Received answer (493 bytes) from stream 10.11.189.1:88 | |
| [20743] 1669887601.000024: Terminating TCP connection to stream 10.11.189.1:88 | |
| [20743] 1669887601.000025: Response was not from primary KDC | |
| [20743] 1669887601.000026: Decoding FAST response | |
| [20743] 1669887601.000027: TGS request result: -1765328377/Server HTTP/[email protected] not found in Kerberos database | |
| [20743] 1669887601.000028: TXT record _kerberos.errata.engineering.redhat.com. found: IPA.REDHAT.COM | |
| [20743] 1669887601.000029: Local realm referral failed; trying fallback realm IPA.REDHAT.COM | |
| [20743] 1669887601.000030: Retrieving [email protected] -> krbtgt/[email protected] from KEYRING:persistent:1000:1000 with result: -1765328243/Matching credential not found | |
| [20743] 1669887601.000031: Retrieving [email protected] -> krbtgt/[email protected] from KEYRING:persistent:1000:1000 with result: 0/Success | |
| [20743] 1669887601.000032: Starting with TGT for client realm: [email protected] -> krbtgt/[email protected] | |
| [20743] 1669887601.000033: Retrieving [email protected] -> krbtgt/[email protected] from KEYRING:persistent:1000:1000 with result: -1765328243/Matching credential not found | |
| [20743] 1669887601.000034: Requesting TGT krbtgt/[email protected] using TGT krbtgt/[email protected] | |
| [20743] 1669887601.000035: Generated subkey for TGS request: aes256-cts/1063 | |
| [20743] 1669887601.000036: etypes requested in TGS request: aes256-cts, aes128-cts, aes256-sha2, aes128-sha2, rc4-hmac, camellia128-cts, camellia256-cts | |
| [20743] 1669887601.000038: Encoding request body and padata into FAST request | |
| [20743] 1669887601.000039: Sending request (942 bytes) to REDHAT.COM | |
| [20743] 1669887601.000040: Sending DNS URI query for _kerberos.REDHAT.COM. | |
| [20743] 1669887601.000041: No URI records found | |
| [20743] 1669887601.000042: Sending DNS SRV query for _kerberos._udp.REDHAT.COM. | |
| [20743] 1669887601.000043: SRV answer: 10 0 88 "s1.kerb-001.prod.iad2.dc.redhat.com." | |
| [20743] 1669887601.000044: SRV answer: 5 0 88 "kerberos01.core.prod.int.rdu2.redhat.com." | |
| [20743] 1669887601.000045: SRV answer: 10 0 88 "s2.kerb-001.prod.iad2.dc.redhat.com." | |
| [20743] 1669887601.000046: SRV answer: 5 0 88 "kerberos02.core.prod.int.rdu2.redhat.com." | |
| [20743] 1669887601.000047: SRV answer: 100 100 88 "kerberos.corp.redhat.com." | |
| [20743] 1669887601.000048: Sending DNS SRV query for _kerberos._tcp.REDHAT.COM. | |
| [20743] 1669887601.000049: SRV answer: 5 0 88 "kerberos02.core.prod.int.rdu2.redhat.com." | |
| [20743] 1669887601.000050: SRV answer: 100 100 88 "kerberos.corp.redhat.com." | |
| [20743] 1669887601.000051: SRV answer: 5 0 88 "kerberos01.core.prod.int.rdu2.redhat.com." | |
| [20743] 1669887601.000052: SRV answer: 10 0 88 "s2.kerb-001.prod.iad2.dc.redhat.com." | |
| [20743] 1669887601.000053: SRV answer: 10 0 88 "s1.kerb-001.prod.iad2.dc.redhat.com." | |
| [20743] 1669887601.000054: Resolving hostname kerberos01.core.prod.int.rdu2.redhat.com. | |
| [20743] 1669887601.000055: Resolving hostname kerberos02.core.prod.int.rdu2.redhat.com. | |
| [20743] 1669887601.000056: Resolving hostname s1.kerb-001.prod.iad2.dc.redhat.com. | |
| [20743] 1669887601.000057: Resolving hostname s2.kerb-001.prod.iad2.dc.redhat.com. | |
| [20743] 1669887601.000058: Resolving hostname kerberos.corp.redhat.com. | |
| [20743] 1669887601.000059: Resolving hostname kerberos02.core.prod.int.rdu2.redhat.com. | |
| [20743] 1669887601.000060: Initiating TCP connection to stream 10.11.189.2:88 | |
| [20743] 1669887602.223574: Sending TCP request to stream 10.11.189.2:88 | |
| [20743] 1669887602.223575: Received answer (856 bytes) from stream 10.11.189.2:88 | |
| [20743] 1669887602.223576: Terminating TCP connection to stream 10.11.189.2:88 | |
| [20743] 1669887602.223577: Response was not from primary KDC | |
| [20743] 1669887602.223578: Decoding FAST response | |
| [20743] 1669887602.223579: FAST reply key: aes256-cts/5486 | |
| [20743] 1669887602.223580: TGS reply is for [email protected] -> krbtgt/[email protected] with session key aes256-cts/DED2 | |
| [20743] 1669887602.223581: TGS request result: 0/Success | |
| [20743] 1669887602.223582: Storing [email protected] -> krbtgt/[email protected] in KEYRING:persistent:1000:1000 | |
| [20743] 1669887602.223583: Received TGT for service realm: krbtgt/[email protected] | |
| [20743] 1669887602.223584: Requesting tickets for HTTP/[email protected], referrals off | |
| [20743] 1669887602.223585: Generated subkey for TGS request: aes256-cts/D147 | |
| [20743] 1669887602.223586: etypes requested in TGS request: aes256-cts, aes128-cts, aes256-sha2, aes128-sha2, rc4-hmac, camellia128-cts, camellia256-cts | |
| [20743] 1669887602.223588: Encoding request body and padata into FAST request | |
| [20743] 1669887602.223589: Sending request (940 bytes) to IPA.REDHAT.COM | |
| [20743] 1669887602.223590: Sending DNS URI query for _kerberos.IPA.REDHAT.COM. | |
| [20743] 1669887602.223591: URI answer: 0 100 "krb5srv:m:tcp:idm01.util.rdu2.redhat.com." | |
| [20743] 1669887602.223592: URI answer: 0 100 "krb5srv:m:tcp:idm02.iam.prod.int.rdu2.redhat.com." | |
| [20743] 1669887602.223593: URI answer: 0 100 "krb5srv:m:udp:idm01.util.rdu2.redhat.com." | |
| [20743] 1669887602.223594: URI answer: 0 100 "krb5srv:m:udp:idm-admin.iam.prod.int.rdu2.redhat.com." | |
| [20743] 1669887602.223595: URI answer: 0 100 "krb5srv:m:udp:idm04.iam.prod.int.rdu2.redhat.com." | |
| [20743] 1669887602.223596: URI answer: 0 100 "krb5srv:m:udp:idm02.iam.prod.int.rdu2.redhat.com." | |
| [20743] 1669887602.223597: URI answer: 0 100 "krb5srv:m:tcp:idm-admin.iam.prod.int.rdu2.redhat.com." | |
| [20743] 1669887602.223598: URI answer: 0 100 "krb5srv:m:tcp:idm04.iam.prod.int.rdu2.redhat.com." | |
| [20743] 1669887602.223599: Resolving hostname idm01.util.rdu2.redhat.com. | |
| [20743] 1669887603.043226: Initiating TCP connection to stream 10.11.142.180:88 | |
| [20743] 1669887603.043227: Sending TCP request to stream 10.11.142.180:88 | |
| [20743] 1669887603.043228: Received answer (956 bytes) from stream 10.11.142.180:88 | |
| [20743] 1669887603.043229: Terminating TCP connection to stream 10.11.142.180:88 | |
| [20743] 1669887603.043230: Response was from primary KDC | |
| [20743] 1669887603.043231: Decoding FAST response | |
| [20743] 1669887603.043232: FAST reply key: aes256-cts/6484 | |
| [20743] 1669887603.043233: TGS reply is for [email protected] -> HTTP/[email protected] with session key aes256-cts/E94D | |
| [20743] 1669887603.043234: TGS request result: 0/Success | |
| [20743] 1669887603.043235: Received creds for desired service HTTP/[email protected] | |
| [20743] 1669887603.043236: Storing [email protected] -> HTTP/errata.engineering.redhat.com@ in KEYRING:persistent:1000:1000 | |
| [20743] 1669887603.043238: Creating authenticator for [email protected] -> HTTP/errata.engineering.redhat.com@, seqnum 386506595, subkey aes256-cts/87A4, session key aes256-cts/E94D | |
| * Server auth using Negotiate with user '' | |
| * TLSv1.2 (OUT), TLS header, Supplemental data (23): | |
| > GET /advisory/105527.json HTTP/1.1 | |
| > Host: errata.engineering.redhat.com | |
| > Authorization: Negotiate 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 | |
| > User-Agent: curl/7.82.0 | |
| > Accept: */* | |
| > | |
| * TLSv1.2 (IN), TLS header, Supplemental data (23): | |
| * Mark bundle as not supporting multiuse | |
| < HTTP/1.1 200 OK | |
| < Date: Thu, 01 Dec 2022 09:40:03 GMT | |
| < Server: Apache/2.4.34 (Red Hat) OpenSSL/1.0.1e-fips mod_auth_kerb/5.4 Phusion_Passenger/4.0.50 | |
| < WWW-Authenticate: Negotiate oYG3MIG0oAMKAQChCwYJKoZIhvcSAQICooGfBIGcYIGZBgkqhkiG9xIBAgICAG+BiTCBhqADAgEFoQMCAQ+iejB4oAMCARKicQRvb/R4px7fOtdnr8qdzYYFYBGQeytUPkWIny7swmRFlsduyFDC5qUmev0JdvHkyoW7mmCGpxuSeO6PUwJirZoPRxcHsXgDgDm06XzFAx3DPUdAR0ZblDIQkZ7zdC61aKaLnFfIHYjw892uOFGg6/Th | |
| < X-Frame-Options: SAMEORIGIN | |
| < X-XSS-Protection: 1; mode=block | |
| < X-Content-Type-Options: nosniff | |
| < Strict-Transport-Security: max-age=31536000; includeSubDomains | |
| < Cache-Control: max-age=0, private, must-revalidate | |
| < X-Request-Id: 4ae156cf-56a8-4d51-bb32-cda5447e2cf2 | |
| < X-Runtime: 0.039043 | |
| < X-Powered-By: Phusion Passenger 4.0.50 | |
| < ETag: W/"822b95a03358d5a6d1d598f4caa67087" | |
| < Status: 200 OK | |
| < Vary: Accept-Encoding | |
| < Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.redhat.com; connect-src 'self'; img-src 'self' data: https://*.redhat.com; style-src 'self' 'unsafe-inline' https://*.redhat.com; font-src 'self' data: https://*.redhat.com; | |
| < Transfer-Encoding: chunked | |
| < Content-Type: application/json; charset=utf-8 | |
| < | |
| * TLSv1.2 (IN), TLS header, Supplemental data (23): | |
| {"id":105527,"type":"RHBA","text_only":false,"advisory_name":"RHBA-2022:105527","synopsis":"dhcp bug fix and enhancement update","revision":1,"status":"REL_PREP","security_impact":"None","is_operator_hotfix":false,"skip_customer_notifications":false,"prevent_auto_push_ready":false,"suppress_push_request_jira":false,"respin_count":0,"pushcount":0,"content_types":["rpm"],"timestamps":{"issue_date":"2022-11-22T08:30:11Z","update_date":"2022-11-22T08:30:11Z","release_date":null,"status_time":"2022-11-24T10:23:54Z","security_sla":null,"created_at":"2022-11-22T08:30:11Z","updated_at":"2022-11-24T10:23:54Z","actual_ship_date":null,"publish_date":"2023-01-12T00:00:00Z","embargo_date":null},"flags":{"text_ready":true,"mailed":false,"pushed":false,"published":false,"deleted":false,"qa_complete":true,"rhn_complete":false,"doc_complete":false,"rhnqa":true,"closed":false,"sign_requested":false,"embargo_undated":false},"product":{"id":16,"name":"Red Hat Enterprise Linux","short_name":"RHEL"},"release":{"id":1623,"name":"RH* TLSv1.2 (IN), TLS header, Supplemental data (23): | |
| * TLSv1.2 (IN), TLS header, Supplemental data (23): | |
| * Connection #0 to host errata.engineering.redhat.com left intact | |
| EL-8.7.0.Z.MAIN"},"people":{"assigned_to":"[email protected]","reporter":"[email protected]","qe_group":"Infrastructure Services QE","docs_group":"Network Servers","doc_reviewer":"[email protected]","devel_group":"Default","package_owner":"[email protected]","security_reviewer":null},"content":{"topic":"An update for dhcp is now available for Red Hat Enterprise Linux 8.","description":"For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.7 Release Notes linked from the References section.","solution":"Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258","keywords":""},"batch":{"id":1937,"name":"RHEL-8.7.0.1-BaseOS","batch_blocker":false}}asakthiv@localhost:~ $ ^C |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment