I tried to reproduce bug with your script but I was not successful.
Domain section from sssd.conf
[domain/refLDAP]
id_provider = ldap
auth_provider = ldap
debug_level = 0xFFF0
ldap_uri = ldap://172.17.0.1
ldap_search_base = dc=example,dc=com
ldap_schema = rfc2307bis
ldap_group_object_class = groupOfNames
timeout = 600
ldap_pwd_policy = shadow
I tried different values for number of process and maximum delay in milliseconds
{1..12}x{50ms..300ms/step 10ms}
My laptop has 4 cores and "Intel(R) Core(TM) i7-3520M CPU @ 2.90GHz"
There have to be something different in my configuration.
Could you provide more information how to reproduce?
Mmmm...
This is our domain section :
[domain/pasteur_ldap_home]
ldap_tls_reqcert = allow
auth_provider = ldap
ldap_schema = rfc2307
ldap_search_base = xxxx
ldap_group_search_base = xxxx
id_provider = ldap
ldap_id_use_start_tls = True
chpass_provider = none
ldap_uri = ldap://xxxx/
cache_credentials = True
ldap_tls_cacertdir = /etc/openldap/certs
ldap_network_timeout = 3
ldap_page_size = 500
debug_level = 0x77F0
We're using rfc2307 schema and default ldap_group_object_class value
(posixGroup). Besides that, I don't see what could explain that you can't
reproduce the problem. Chris Petty is using AD hence rc2307bis schema. So I
don't know if it is relevant.
Just to sure, did you log as root (no sudo), stopped sssd, cleanup the cache,
restarting it (all as root without sudo), and ran the script (as root) ?
# (logged as root)
# /etc/init.d/sssd stop && rm -f /var/lib/sss/mc/* /var/lib/sss/db/* &&
/etc/init.d/sssd start
# python initgroups.py jbdenis 110 5 24 200
Sometimes I have to perform these steps multiple time to catch the problem.
Jean-Baptiste