#2607 sssd should not always read entire autofs map from ldap
Closed: Fixed 2 days ago by pbrezina. Opened 4 years ago by henson.

Currently sssd always reads the entire autofs map from ldap, even when that is not necessary. This makes using sssd with large maps infeasible.

Rather than always reading the entire map, sssd should lookup individual entries as needed when getautomntbyname is called, and only pull in the entire map when getautomntent is called.

This is equivalent to how autofs works with its native ldap backend and will be much more efficient for indirect maps as well as allowing large maps to work without excessive load and resource utilization.

It appears the sss autofs backend does not need any modification, as it already passes through getautomntbyname, the only change is on the sssd side.


Legitimate request, but so far out of scope of 1.13

milestone: NEEDS_TRIAGE => SSSD 1.14 beta

Fields changed

milestone: SSSD 1.14 beta => SSSD 1.14.0
sensitive: => 0

Unfortunately the autofs responder/provider work is still not started and we need to release the 1.14 version soon. Therefore, I'm bumping this ticket to the next version.

milestone: SSSD 1.14.0 => SSSD 1.16 beta

Fields changed

milestone: SSSD Future releases (no date set yet) => SSSD 1.15.2

Metadata Update from @henson:
- Issue set to the milestone: SSSD 1.15.2

2 years ago

Metadata Update from @jhrozek:
- Custom field design_review reset
- Custom field mark reset
- Custom field patch reset
- Custom field review reset
- Custom field sensitive reset
- Custom field testsupdated reset
- Issue close_status updated to: None
- Issue set to the milestone: SSSD 1.15.3 (was: SSSD 1.15.2)

2 years ago

Metadata Update from @jhrozek:
- Custom field design_review reset
- Custom field mark reset
- Custom field patch reset
- Custom field review reset
- Custom field sensitive reset
- Custom field testsupdated reset
- Issue set to the milestone: SSSD 1.15.2 (was: SSSD 1.15.3)

2 years ago

Metadata Update from @jhrozek:
- Custom field design_review reset
- Custom field mark reset
- Custom field patch reset
- Custom field review reset
- Custom field sensitive reset
- Custom field testsupdated reset
- Issue set to the milestone: SSSD 1.15.3 (was: SSSD 1.15.2)

2 years ago

Metadata Update from @jhrozek:
- Custom field design_review reset
- Custom field mark reset
- Custom field patch reset
- Custom field review reset
- Custom field sensitive reset
- Custom field testsupdated reset
- Issue set to the milestone: SSSD 1.15.4 (was: SSSD 1.15.3)

2 years ago

Metadata Update from @jhrozek:
- Custom field design_review reset (from false)
- Custom field mark reset (from false)
- Custom field patch reset (from false)
- Custom field review reset (from false)
- Custom field sensitive reset (from false)
- Custom field testsupdated reset (from false)
- Issue tagged with: cleanup-one-sixteen

2 years ago

Metadata Update from @jhrozek:
- Custom field design_review reset (from false)
- Custom field mark reset (from false)
- Custom field patch reset (from false)
- Custom field review reset (from false)
- Custom field sensitive reset (from false)
- Custom field testsupdated reset (from false)
- Issue untagged with: cleanup-one-sixteen
- Issue tagged with: cleanup-future

2 years ago

Metadata Update from @jhrozek:
- Custom field design_review reset (from false)
- Custom field mark reset (from false)
- Custom field patch reset (from false)
- Custom field review reset (from false)
- Custom field sensitive reset (from false)
- Custom field testsupdated reset (from false)
- Issue untagged with: cleanup-future
- Issue set to the milestone: SSSD Future releases (no date set yet) (was: SSSD 1.15.4)

2 years ago
  • sssd-1-16
    • 9131b90 - sss_cache: invalidate also autofs entries
    • 58f3d54 - sysdb: invalidate also autofs entries
    • ac71265 - autofs: always refresh auto.master
    • 3e04a81 - autofs: allow to run only setent without enumeration in test tool
    • 2e45258 - ldap: implement autofs get entry
    • fcb6f55 - ldap: implement autofs get map
    • bd15a13 - ldap: rename sdap_autofs_get_map to sdap_autofs_enumerate
    • fb9a42d - ldap: add base_dn to sdap_search_bases
    • 0b780a0 - dp: add additional autofs methods
    • ca1ee99 - dp: replace autofs handler with enumerate method
    • 61a7bf4 - autofs: use cache_req to obtain map in setent
    • 27d2dcf - autofs: use cache_req to obtain single entry in getentrybyname
    • b0043a9 - autofs: convert code to cache_req
    • 6fe479a - cache_req: add autofs entry by name plugin
    • e683556 - cache_req: add autofs map by name plugin
    • 01b7dc9 - cache_req: add autofs map entries plugin
    • 4665606 - autofs: move data provider functions to responder common code
    • 49b5baf - sysdb: add sysdb_del_autofsentry_by_key
    • efe4459 - sysdb: store original dn in autofs map
    • 11ffb77 - sysdb: store enumeration expiration time in autofs map
    • c366050 - sysdb: add enumerationExpireTimestamp
    • 57e3340 - sysdb: add sysdb_get_autofsentry
    • ccf14f4 - sysdb: add expiration time to autofs entries
    • 49ad0b9 - autofs: fix typo in test tool
    • 00926ab - sss_ptr_hash: keep value pointer when destroying spy
    • 7956061 - sss_ptr_hash: add sss_ptr_get_value to make it useful in delete callbacks

Metadata Update from @pbrezina:
- Issue close_status updated to: Fixed
- Issue status updated to: Closed (was: Open)

2 days ago
  • master
    • 399b2a6 - sss_cache: invalidate also autofs entries
    • e016ada - sysdb: invalidate also autofs entries
    • 09781a3 - autofs: always refresh auto.master
    • e050872 - autofs: allow to run only setent without enumeration in test tool
    • f3aaaca - ldap: implement autofs get entry
    • 66e1eda - ldap: implement autofs get map
    • f3f2232 - ldap: rename sdap_autofs_get_map to sdap_autofs_enumerate
    • d096eeb - ldap: add base_dn to sdap_search_bases
    • 2a0b74a - dp: replace autofs handler with enumerate method
    • 0e72986 - dp: add additional autofs methods
    • 0d56c1a - dp: add dp_no_output type to be used in dp_set_method
    • ad8b4c1 - dp: add dp_error_to_ret
    • 29b1ffd - autofs: use cache_req to obtain map in setent
    • e516519 - autofs: use cache_req to obtain single entry in getentrybyname
    • 7726093 - autofs: convert code to cache_req
    • 85c8668 - cache_req: add autofs entry by name plugin
    • 1fc3e4a - cache_req: add autofs map by name plugin
    • 8b2ab48 - cache_req: add autofs map entries plugin
    • 4efe83c - sysdb: add sysdb_del_autofsentry_by_key
    • e9fc009 - sysdb: store original dn in autofs map
    • d01ddb0 - sysdb: store enumeration expiration time in autofs map
    • fb83d82 - sysdb: add enumerationExpireTimestamp
    • eadfba5 - sysdb: add sysdb_get_autofsentry
    • 5097684 - sysdb: add expiration time to autofs entries
    • 0d47776 - autofs: fix typo in test tool
    • 65de0d3 - sss_ptr_hash: keep value pointer when destroying spy

Login to comment on this ticket.

Metadata