Bug 210591 - nscd bug: no caching for supplementary groups from ldap
Summary: nscd bug: no caching for supplementary groups from ldap
Status: New
Alias: None
Product: Base System
Classification: Unclassified
Component: bin (show other bugs)
Version: 10.2-STABLE
Hardware: Any Any
: --- Affects Only Me
Assignee: freebsd-bugs (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2016-06-26 15:54 UTC by ilyushkeane
Modified: 2018-02-14 21:10 UTC (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description ilyushkeane 2016-06-26 15:54:44 UTC 
I found strange nscd behavior, which I assume is a bug. I've already request help of initial maintainer directly (as it noted in man), but unfortunately he is not an active maintainer (which I also request as #210590). Also I've found, that current development of nscd is barely active, and that's why I suppose 10.2-STABLE is no reason to discard this request.

Prerequisites are the following:
- FreeBSD 10.2-STABLE-r286912
- /etc/nscd.conf:
enable-cache passwd yes
enable-cache group yes
enable-cache hosts yes
enable-cache services yes
enable-cache protocols yes
enable-cache rpc yes
enable-cache networks yes

We have an ldap installation and everything works fine, but there is no caching for supplementary groups. For example:

(nscd restarted, ldap is after files in /etc/nsswitch.conf)
[root@serv /]# id -Gn user
user dns
(ldap commented out in /etc/nsswitch.conf)
[root@serv /]# id -Gn user
user

Also I tried to make use of following /etc/nscd.conf options (but they didn't work out):

threads 1
enable-cache passwd_compat yes
enable-cache group_compat yes

Google doesn't have any information about this behaviour, please check if there is something you can do.
Thanks.
Comment 1 Volodymyr Pushkar 2018-02-14 21:10:28 UTC 
I have a similar error with groups caching. Details here:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=130749