On Tue, 2012-01-10 at 14:33 -0500, Simo Sorce wrote:
On Tue, 2012-01-10 at 10:15 -0500, Simo Sorce wrote:
> > Sure, we can talk about it. I'm looking at it from the users'
> > perspectives, who I think would generally expect (and be alright
> with)
> > the fast cache being emptied on service restart. Since we still have
> the
> > not-quite-as-fast persistent LDB cache, I think the gain isn't worth
> the
> > user confusion.
>
> Ok, I think I can understand this, it will also simplify the code I
> guess so I'll change the patch.
Attached new set of patches.
I changed the init code to always create a new cache file on restart,
incidentally this also got rid of the stat() call, so that problem has
been put to rest permanently :)
I also changed all functions to use errno_t as the return type in their
declaration when they return a errno code.
I think all the suggestions seen in the thread so far have been
implemented as requested at this point, with the exception of the part
where I should implement and use new options as that required additional
code instead of mere refactoring. I will add those features in a later
rebase.
New revision.
I removed bootid from the cache file header, given we recreate the file
every time sssd restarts it was useles.
I replaced it with a seed, and made the seed used in the hash table
randomly regenerated every time the hash table is recreated.
This is used to avoid collision based attacks [1].
Simo.
[1]
https://lwn.net/Articles/474912/
--
Simo Sorce * Red Hat, Inc * New York