Bug 414

Summary: Getting the error unable to cache group <groun_name> already exists
Product: Sudo Reporter: keviny
Component: SudoAssignee: Todd C. Miller <Todd.Miller>
Status: RESOLVED FIXED    
Severity: high CC: keviny
Priority: low    
Version: 1.7.2   
Hardware: All   
OS: Linux   

Description keviny 2010-07-07 19:42:45 MDT 
after upgrading from 1.6.8 to 1.7.2 of sudo we are getting the following error "sudo: unable to cache group VAS Test 2, already exists"

It appears to only manifest itself when groups that are part of the Active Directory integration tool Quest.

I am unaware of how to query the cache that is being checked to verify if group already exists.
Comment 1 Todd C. Miller 2010-07-07 20:48:12 MDT 
Does this still happen if you use the Quest version of sudo from http://rc.quest.com/topics/sudo/ ?
Comment 2 keviny 2010-07-08 16:22:46 MDT 
Using the quest version of sudo we do not see the error. I have been able to reproduce the error consistently by issuing `sudo -l` however getting a consistent error when issuing normal commands via sudo has been difficult. It appears that if the same group is listed more then once on separate lines I can reproduce the error.

$ /opt/quest/bin/sudo -l
Enter your password: 
Matching Defaults entries for test on this host:

User test may run the following commands on this host:
    (oracle) ALL

$ /usr/bin/sudo -l
Enter your password: 
Matching Defaults entries for test on this host:


User test may run the following commands on this host:
sudo: unable to cache group VAS Test 2, already exists

$
Comment 3 Todd C. Miller 2010-07-08 17:16:41 MDT 
This should be fixed in sudo 1.7.2p8, can you give that a try?
Comment 4 keviny 2010-07-08 21:33:55 MDT 
I confirmed that this issue is resolved in 1.7.2p8

Red Hat 5 newest version is sudo-1.7.2p1-7 so i will somehow have to encourage them to update to a newer build.