getpwnam/uid for group with ID_TYPE_BOTH

Rowland penny rpenny at
Tue Sep 24 06:34:17 UTC 2019

On 23/09/2019 22:45, Stefan Metzmacher wrote:
> Hi Rowland,
>> On 23/09/2019 20:39, Christof Schmitt via samba-technical wrote:
>>> The behavior of winbindd changed in regards to whether a group with
>>> ID_TYPE_BOTH returns a fake user structure. This surfaced during a test
>>> of creating files from a SMB client and then checking the ownership
>>> directly on the file system.
>>> make testenv SELFTEST_TESTENV=ad_member_idmap_rid
>>> is an environment that provides ID_TYPE_BOTH for testing.
>> Surely if that is a testenv, then it should be removed or modified, a
>> Unix domain member using idmap_rid will not work in that way, using
>> 'getent passwd' against a group returns nothing.
> No, it did with 4.5 and that's how it's supposed to be.
> That's exactly what ID_TYPE_BOTH is all about.
> metze
Well, it doesn't do that on an actual Unix domain member using the 
winbind rid backend, but then, from my understanding, idmap.ldb is only 
read on a DC, or am I missing something ?


More information about the samba-technical mailing list