[Pkg-sssd-devel] Bug#788420: sssd caching doesn't remember attribs like unixHomeDirectory
Jason Lingohr
jason at lucid.net.au
Thu Jun 11 09:00:00 UTC 2015
Package: sssd
Version: 1.11.7-3
Severity: important
Dear Maintainer,
I've discovered, after a few days of troubleshooting, that sssd's caching is
doing strange things.
With a clean cache (via sss_cache -E), the first query (getent, an ssh login,
etc), things work. Subsequent queries fail to return unixHomeDirectory and
probably other things, dumping the user at /.
I've confirmed that sssd appears to do this (amongst other attributes):
[sssd[be[some.domain]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [unixHomeDirectory]
And then does:
[sssd[be[some.domain]]] [sysdb_remove_attrs] (0x2000): Removing attribute [homeDirectory] from [username]
It then commits this to its cache -- ie. it is entirely missing.
Then, further queries consult the cache, get a hit from it, but don't re-query
for these attributes, returning empty/null.
I've confired the cache is empty using ldbsearch, and seeing sssd log this:
[sssd[be[some.domain]]] [krb5_auth_send] (0x0100): Home directory for user [username] not known.
I've worked around this by setting entry_cache_timeout = 0 and the issue is
"fixed".
-- System Information:
Debian Release: 8.1
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages sssd depends on:
ii python-sss 1.11.7-3
ii sssd-ad 1.11.7-3
ii sssd-common 1.11.7-3
ii sssd-ipa 1.11.7-3
ii sssd-krb5 1.11.7-3
ii sssd-ldap 1.11.7-3
ii sssd-proxy 1.11.7-3
sssd recommends no packages.
sssd suggests no packages.
-- no debconf information
More information about the Pkg-sssd-devel
mailing list