Andreas Schneider via samba-technical
2018-04-13 13:13:39 UTC
Hi,
If the Windbind caches are cold and we look up the user using the UPN will
result in user name with REALM+user instead of the DOMAIN+user. At least this
happens in 4.7. In 4.8 this isn't the case but we store:
EARTH.MILKYWAY.SITE\bob1 in the cache. The patch makes sure if we got a realm,
to lookup the name and use the consistent domain name storing it in the cache
(EARTH\bob1).
Output showing the bug in v4-7:
$ getent passwd ***@EARTH.MILKYWAY.SITE
EARTH.MILKYWAY.SITE\bob1:*:100001107:100000513::/home/EARTH.MILKYWAY.SITE/
bob1:/bin/bash
Please review.
Thanks,
Andreas
If the Windbind caches are cold and we look up the user using the UPN will
result in user name with REALM+user instead of the DOMAIN+user. At least this
happens in 4.7. In 4.8 this isn't the case but we store:
EARTH.MILKYWAY.SITE\bob1 in the cache. The patch makes sure if we got a realm,
to lookup the name and use the consistent domain name storing it in the cache
(EARTH\bob1).
Output showing the bug in v4-7:
$ getent passwd ***@EARTH.MILKYWAY.SITE
EARTH.MILKYWAY.SITE\bob1:*:100001107:100000513::/home/EARTH.MILKYWAY.SITE/
bob1:/bin/bash
Please review.
Thanks,
Andreas
--
Andreas Schneider GPG-ID: CC014E3D
Samba Team ***@samba.org
www.samba.org
Andreas Schneider GPG-ID: CC014E3D
Samba Team ***@samba.org
www.samba.org