SYSDB: lightweight sysdb_entry_in_cache() helper

alexey-tikhonov · alexey-tikhonov · commit 415850ade524 · 2026-02-25T15:59:03.000+01:00
Unlike `sysdb_search_*_by_name()`, which does filter sanitization,
subtree search with filter evaluation, and timestamp attribute merge,
this helper constructs the DN directly and performs a base-scoped
ldb_search with no attributes. This makes it suitable for callers
that only need to check entry existence in the cache.

Implementation assisted-by: Claude Code (Opus 4.6)
diff --git a/src/db/sysdb.h b/src/db/sysdb.h
@@ -1082,6 +1082,10 @@ int sysdb_search_group_by_name(TALLOC_CTX *mem_ctx,
                                const char **attrs,
                                struct ldb_message **msg);
 
+bool sysdb_entry_in_cache(struct sss_domain_info *domain,
+                          const char *name,
+                          enum sysdb_obj_type type);
+
 int sysdb_search_group_by_gid(TALLOC_CTX *mem_ctx,
                               struct sss_domain_info *domain,
                               gid_t gid,
diff --git a/src/db/sysdb_ops.c b/src/db/sysdb_ops.c
@@ -796,6 +796,46 @@ int sysdb_search_group_by_name(TALLOC_CTX *mem_ctx,
     return sysdb_search_by_name(mem_ctx, domain, name, SYSDB_GROUP, attrs, msg);
 }
 
+bool sysdb_entry_in_cache(struct sss_domain_info *domain,
+                          const char *name,
+                          enum sysdb_obj_type type)
+{
+    static const char *no_attrs[] = { NULL };
+    TALLOC_CTX *tmp_ctx;
+    struct ldb_dn *dn;
+    struct ldb_result *res;
+    int lret;
+
+    tmp_ctx = talloc_new(NULL);
+    if (tmp_ctx == NULL) {
+        return false;
+    }
+
+    switch (type) {
+    case SYSDB_USER:
+        dn = sysdb_user_dn(tmp_ctx, domain, name);
+        break;
+    case SYSDB_GROUP:
+        dn = sysdb_group_dn(tmp_ctx, domain, name);
+        break;
+    default:
+        dn = NULL;
+        break;
+    }
+
+    if (dn == NULL) {
+        talloc_free(tmp_ctx);
+        return false;
+    }
+
+    lret = ldb_search(domain->sysdb->ldb, tmp_ctx, &res, dn,
+                      LDB_SCOPE_BASE, no_attrs, NULL);
+
+    talloc_free(tmp_ctx);
+
+    return lret == LDB_SUCCESS && res->count == 1;
+}
+
 static int
 sysdb_search_group_by_id(TALLOC_CTX *mem_ctx,
                          struct sss_domain_info *domain,
