#2566 Uncached SIDs cannot be resolved
Closed: Fixed None Opened 4 years ago by jhrozek.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1185188

Description of problem:
If a SID should be resolved to a user or group name which is not in the cache
the request fails. This breaks e.g. some features on the IPA server.

Version-Release number of selected component (if applicable):
sssd-1.12.2-45.el7

How reproducible:
To reproduce call

python -c "import pysss_nss_idmap; print
pysss_nss_idmap.getnamebysid('S-1-5-21-3456664713-2053453454-4165325232-500')"

on a IPA client or server with a trust to AD where the SID (S-1-5-....) exists
in AD but is not in the cache of SSSD, e.g. start SSSD with an empty cache.

Actual results:
Nothing is returned

Expected results:
The nane of the user or group related to the given SID should be returned.

Additional info:
Patch available upstream

Fields changed

blockedby: =>
blocking: =>
changelog: =>
coverity: =>
design: =>
design_review: => 0
feature_milestone: =>
fedora_test_page: =>
mark: no => 0
owner: somebody => sbose
patch: 0 => 1
review: True => 0
selected: =>
testsupdated: => 0

resolution: => fixed
status: new => closed

Metadata Update from @jhrozek:
- Issue assigned to sbose
- Issue set to the milestone: SSSD 1.12.4

2 years ago

Login to comment on this ticket.

Metadata