Winbind's offline state and idmap_ldap
simo
idra at samba.org
Mon Feb 19 17:10:16 GMT 2007
On Mon, 2007-02-19 at 10:58 -0600, Gerald (Jerry) Carter wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Gerald (Jerry) Carter wrote:
> > simo wrote:
> >
> >>>> I'm fixing it up. Getting closer. So the current idmap_cache is
> >>>> expiring entries when winbindd is offline ?
> >>> No it shouldn't.
> >
> > ok. Cool. I have not seen evidence that it was. Just
> > clarifying your statement. Thanks.
>
> In winbind_msg_offline() we specifically do not send
> the OFFLINE message to teh idmap child. When simo moved
> the sid <->uid/gid lookups to be async, this is now broken.
>
> When I'm going to do is to split the idmap calls so that
> the main winbindd daemon looks in cache and does and async
> call to the idmap child only if the cache is expired
> (which it should not when we are offline).
Ok, when in offline mode you should just ignore the error code:
NT_STATUS_SYNCHRONIZATION_REQUIRED and take the returned struct id_map
as good. When back online such an error should trigger a call to the
backend to refresh and confirm it.
> Make sense?
Yes.
Simo.
--
Simo Sorce
Samba Team GPL Compliance Officer
email: idra at samba.org
http://samba.org
More information about the samba-technical
mailing list