Bug 1704500
Summary: | auditd logs full of sudo events from vdsm | ||
---|---|---|---|
Product: | Red Hat Enterprise Virtualization Manager | Reporter: | Marcus West <mwest> |
Component: | ovirt-hosted-engine-ha | Assignee: | Simone Tiraboschi <stirabos> |
Status: | CLOSED ERRATA | QA Contact: | Wei Wang <weiwang> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 4.2.8-4 | CC: | cshao, dholler, huzhao, lsurette, lsvaty, mavital, mperina, msobczyk, mtessun, nlevy, qiyuan, sbonazzo, srevivo, stirabos, weiwang, yaniwang, ycui, yturgema |
Target Milestone: | ovirt-4.3.6 | Keywords: | ZStream |
Target Release: | 4.3.6 | Flags: | weiwang:
testing_plan_complete+
|
Hardware: | Unspecified | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | ovirt-hosted-engine-ha-2.3.5 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2019-10-10 15:38:05 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | Integration | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1734476 |
Description
Marcus West
2019-04-30 00:29:20 UTC
Simone, might ovirt-hosted-engine-ha trigger getCapabilities frequently? Yes, it's used in mem_load and mgmt_bridge submonitors: https://github.com/oVirt/ovirt-hosted-engine-ha/blob/master/ovirt_hosted_engine_ha/broker/submonitors/mem_load.py#L44 https://github.com/oVirt/ovirt-hosted-engine-ha/blob/master/ovirt_hosted_engine_ha/broker/submonitors/mgmt_bridge.py#L47 so 2 or 3 calls every minute sounds plausible. Test Version rhvh-4.2.11.1-0.20190618.0 ovirt-hosted-engine-setup-2.2.34-1.el7ev.noarch ovirt-hosted-engine-ha-2.2.19-1.el7ev.noarch vdsm-4.20.49-3.el7ev.x86_64 Test Steps: 1. Install RHVH and configure for HostedEngine 2. Wait over 24hrs 3. check auditd logs (ausearch -ua vdsm) Result: Generating only about 24hrs worth of entries QE can reproduce this bug, ack+ Test Version: RHVH-4.3-20190822.2-RHVH-x86_64-dvd1.iso cockpit-195-1.el7.x86_64 cockpit-bridge-195-1.el7.x86_64 cockpit-storaged-195-1.el7.noarch cockpit-dashboard-195-1.el7.x86_64 cockpit-system-195-1.el7.noarch cockpit-ws-195-1.el7.x86_64 cockpit-machines-ovirt-195-1.el7.noarch cockpit-ovirt-dashboard-0.13.6-1.el7ev.noarch ovirt-hosted-engine-ha-2.3.5-1.el7ev.noarch ovirt-hosted-engine-setup-2.3.12-1.el7ev.noarch vdsm-4.30.29-2.el7ev.x86_64 Test Steps: According to comment 8 Result: No logging known (expected) sudo requests initiated by vdsm. bug is fixed, move status to "VERIFIED" sync2jira sync2jira Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2019:3017 |