On Tue, 19 Oct 2010 15:09:48 +0200 Ralf Haferkamp rhafer@suse.de wrote:
That's the problem, for e.g. RFC2307bis this can't be done more efficiently in a reliable manner (see the recent discussion around getgrgid/getgrnam() on the sssd-devel list). So as most callers of getgrnam/getgrgid don't use the member information anyways I think such gid<->groupname mapping function could be quite useful.
I agree on this point. I think such interfaces may have some merit. Although it is clear that they would have a very limited impact on performance until most applications are switched to use these interfaces. And that could take a very long time.
I wonder if it wouldn't be better to start thinking of a completely new approach instead. something that takes in account the need to deal with multiple domains, that ditches enumeration in favor of targeted searches (filter based). Something that can get us out of the dark ages of POSIX where the user database is only local to the machine and there is no concept of local vs network/domain/ldap/makeyourown users that come from an external source.
Simo.