Re: cfd host auth error -- progress I think

[Alan Sparks]

Obviously I speak too soon.  This doesn't entirely eliminate the
problem:

Jan  5 09:32:27 xx.xx.net cfd[28733]: Rereading config files
/opt/cfengine/etc/cfd.conf..
Jan  5 09:32:27 xx.xx.net cfd[28733]: Host authentication failed or
access denied 

Back to the drawing board.
-Alan


Alan Sparks wrote:
> 
> I think I found a reason why I get rejections from cfd after a config
> file reload (I'm still testing this).  It looks like a couple of lines
> are missing in cfd.c starting around line 862 (in CheckFileChanges):
> 
>    DeleteItemList(VHEAP);
>    DeleteItemList(VNEGHEAP);
>    DeleteAuthList(VADMIT);
>    DeleteAuthList(VDENY);                       <== ADDED
>    strcpy(VDOMAIN,"undefined.domain");
> 
>    VADMIT = VADMITTOP = NULL;
>    VDENY = VDENYTOP = NULL;                     <== ADDED
>    VHEAP = VNEGHEAP = NULL;
> 
> I also removed the call to LoadSecretKeys() in this function, since it
> is called by CheckVariables() (called right before it).
> 
> Only thing yet to find is why the following happens... Often after a
> config file reread, the following log messages occur (and cfd exits):
> 
> Jan  2 08:58:46 denverops.quris.net cfd[24918]: Unable to create
> Jan  2 08:58:46 denverops.quris.net cfd[24918]: creat: No such file or
> directory
> Jan  2 08:58:46 denverops.quris.net cfd[24918]: Unable to remove lock
> /var/run/cfengine/lock.cfd_conf.denverops.cfd.exec
> Jan  2 08:58:46 denverops.quris.net cfd[24918]: unlink
> 
> Notice the first message:  The CFLAST variable is empty.  I can't yet
> understand how it gets emptied out.
> 
> -Alan
> 
> --
> Alan Sparks, Sr. UNIX Administrator     asparks@quris.com
> Quris, Inc.                             (720) 836-2058
> 
> _______________________________________________
> Help-cfengine mailing list
> Help-cfengine@gnu.org
> http://mail.gnu.org/mailman/listinfo/help-cfengine

-- 
Alan Sparks, Sr. UNIX Administrator     asparks@quris.com
Quris, Inc.                             (720) 836-2058