diff options
| author | Justin Stephenson <jstephen@redhat.com> | 2017-03-16 14:46:55 -0400 |
|---|---|---|
| committer | Jakub Hrozek <jhrozek@redhat.com> | 2017-03-23 17:25:30 +0100 |
| commit | cd83aead3c9799ac05d8f8977dbb92bbd399c6d5 (patch) | |
| tree | 60477460769401d14dff11065b96eacb00053aa8 /src/providers | |
| parent | a04bef313508c423ed06cc54805a3b8106ab90cd (diff) | |
| download | sssd-cd83aead3c9799ac05d8f8977dbb92bbd399c6d5.tar.gz sssd-cd83aead3c9799ac05d8f8977dbb92bbd399c6d5.tar.xz sssd-cd83aead3c9799ac05d8f8977dbb92bbd399c6d5.zip | |
IPA: Enhance debug logging for ipa s2n operations
Add log messages to provide useful debug logging surrounding
IPA client extended operations to the IPA Server during AD trust
requests to retrieve information. Print more details about the
objects requested and received during the ipa_s2n operations.
This will improve log analysis and troubleshooting efforts during AD
trust user and group resolution failures on IPA clients, such as missing
groups.
Reviewed-by: Sumit Bose <sbose@redhat.com>
Diffstat (limited to 'src/providers')
| -rw-r--r-- | src/providers/ipa/ipa_s2n_exop.c | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/src/providers/ipa/ipa_s2n_exop.c b/src/providers/ipa/ipa_s2n_exop.c index 4fe20689f..c99312274 100644 --- a/src/providers/ipa/ipa_s2n_exop.c +++ b/src/providers/ipa/ipa_s2n_exop.c @@ -1156,6 +1156,13 @@ static errno_t ipa_s2n_get_list_step(struct tevent_req *req) need_v1 = true; } + if (state->req_input.type == REQ_INP_NAME + && state->req_input.inp.name != NULL) { + DEBUG(SSSDBG_TRACE_FUNC, "Sending request_type: [%s] for group [%s].\n", + ipa_s2n_reqtype2str(state->request_type), + state->list[state->list_idx]); + } + subreq = ipa_s2n_exop_send(state, state->ev, state->sh, need_v1, state->exop_timeout, bv_req); if (subreq == NULL) { @@ -1194,6 +1201,9 @@ static void ipa_s2n_get_list_next(struct tevent_req *subreq) goto fail; } + DEBUG(SSSDBG_TRACE_FUNC, "Received [%s] attributes from IPA server.\n", + state->attrs->a.name); + if (is_default_view(state->ipa_ctx->view_name)) { ret = ipa_s2n_get_list_save_step(req); if (ret == EOK) { @@ -1375,6 +1385,11 @@ struct tevent_req *ipa_s2n_get_acct_info_send(TALLOC_CTX *mem_ctx, goto fail; } + DEBUG(SSSDBG_TRACE_FUNC, "Sending request_type: [%s] for trust user [%s] " + "to IPA server\n", + ipa_s2n_reqtype2str(state->request_type), + req_input->inp.name); + subreq = ipa_s2n_exop_send(state, state->ev, state->sh, is_v1, state->exop_timeout, bv_req); if (subreq == NULL) { @@ -1661,6 +1676,19 @@ static void ipa_s2n_get_user_done(struct tevent_req *subreq) state->attrs = attrs; if (attrs->response_type == RESP_USER_GROUPLIST) { + + if (DEBUG_IS_SET(SSSDBG_TRACE_FUNC)) { + size_t c; + + DEBUG(SSSDBG_TRACE_FUNC, "Received [%zu] groups in group list " + "from IPA Server\n", attrs->ngroups); + + for (c = 0; c < attrs->ngroups; c++) { + DEBUG(SSSDBG_TRACE_FUNC, "[%s].\n", attrs->groups[c]); + } + } + + ret = get_group_dn_list(state, state->dom, attrs->ngroups, attrs->groups, &group_dn_list, &missing_list); |