Overview

File 1072694-ldap-skip-sdap_save_grpmem-if-ignore_group_members-i.patch of Package sssd.5306

From 197fa632d0bedc179ded1c3284e91ebd502b1955 Mon Sep 17 00:00:00 2001
From: Sumit Bose <sbose@redhat.com>
Date: Fri, 13 Nov 2015 12:10:17 +0100
Subject: [PATCH 1/2] ldap: skip sdap_save_grpmem() if ignore_group_members is
 set

Related to https://fedorahosted.org/sssd/ticket/2868

Reviewed-by: Pavel Reichl <preichl@redhat.com>
(cherry picked from commit d432482627dc6dd67d44df4f1debcc21448fd6e5)
---
 src/providers/ldap/sdap_async_groups.c | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/src/providers/ldap/sdap_async_groups.c b/src/providers/ldap/sdap_async_groups.c
index ab3691f80..d3e647165 100644
--- a/src/providers/ldap/sdap_async_groups.c
+++ b/src/providers/ldap/sdap_async_groups.c
@@ -741,6 +741,14 @@ static int sdap_save_grpmem(TALLOC_CTX *memctx,
     size_t nuserdns = 0;
     int ret;
 
+    if (dom->ignore_group_members) {
+        DEBUG(SSSDBG_CRIT_FAILURE,
+              ("Group members are ignored, nothing to do. If you see this " \
+              "message it might indicate an error in the group processing " \
+              "logic.\n"));
+        return EOK;
+    }
+
     ret = sdap_get_group_primary_name(memctx, opts, attrs, dom, &group_name);
     if (ret != EOK) {
         DEBUG(SSSDBG_OP_FAILURE, ("Failed to get group name\n"));
-- 
2.16.2
openSUSE Build Service is sponsored by
Places