Date: Thu, 7 Jan 2016 16:11:37 -0700 From: Christof Schmitt <cs@samba.org> To: samba-technical@lists.samba.org Subject: [PATCHES] Handle expired sessions in winbindd User-Agent: Mutt/1.5.20 (2009-12-10) [-- Attachment #1 [details] --] [-- Type: text/plain, Encoding: 7bit, Size: 0.9K --] A SMB session from winbind to the DC can expire any time, when trying to connect to a pipe or when issuing a RPC call. Depending on which codepath receives the corresponding error code (SESSION_EXPIRED or IO_DEVICE_ERROR for RPC calls), the error is surfaced to the winbindd client, and can e.g. fail a SESSION_SETUP in smbd. This happened recently in a member server that is seeing many short-lived SMB connections and occassionally some of the getpwnam calls to winbindd fail due to the expired sessions. The attached patches catch the error and retry the same request on a new connection. The first patch is a hack to use the admember selftest environment for some testing. I was not sure of the best approach of getting some test coverage here. Maybe change the config of admember to use short-lived tickets, or create a new admember2 environment that uses a short ticket lifetime. Christof
Patchset has been pushed to master. Will back-port to 4.3.x when complete.
Created attachment 11772 [details] git-am fix for 4.3.next. Cherry-picked from master for 4.3.next.
Reassigning to Karolin for inclusion in 4.3.next.
Pushed to v4-3-test.
(In reply to Karolin Seeger from comment #4) Pushed to v4-3-test. Closing out bug report. Thanks!