sssd.git/src/tools, branch ldapdebug sssd with jhrozek's patches Unchecked return value in files.c 2013-01-29T15:02:34+00:00 Michal Zidek mzidek@redhat.com 2013-01-25T15:41:07+00:00 cc542ca566355d8dd71bca62e3c564243120455e Found by coverity. https://fedorahosted.org/sssd/ticket/1791 
Found by coverity.
https://fedorahosted.org/sssd/ticket/1791
TOOLS: Compile on old platforms such as RHEL5 2013-01-28T15:09:18+00:00 Jakub Hrozek jhrozek@redhat.com 2013-01-25T15:57:54+00:00 48130eef6c5c64a07094b9e8582ba358b2048f24 Provides compatible declarations for modern file management functions such as futimens or opening with the O_CLOEXEC flag 
Provides compatible declarations for modern file management functions
such as futimens or opening with the O_CLOEXEC flag
TOOLS: Use file descriptor to avoid races when creating a home directory 2013-01-23T13:27:58+00:00 Jakub Hrozek jhrozek@redhat.com 2013-01-20T19:27:05+00:00 94cbf1cfb0f88c967f1fb0a4cf23723148868e4a When creating a home directory, the destination tree can be modified in various ways while it is being constructed because directory permissions are set before populating the directory. This can lead to file creation and permission changes outside the target directory tree, using hard links. This security problem was assigned CVE-2013-0219 https://fedorahosted.org/sssd/ticket/1782 
When creating a home directory, the destination tree can be modified in
various ways while it is being constructed because directory permissions
are set before populating the directory. This can lead to file creation
and permission changes outside the target directory tree, using hard links.

This security problem was assigned CVE-2013-0219

https://fedorahosted.org/sssd/ticket/1782
TOOLS: Use openat/unlinkat when removing the homedir 2013-01-23T13:27:58+00:00 Jakub Hrozek jhrozek@redhat.com 2012-12-12T18:02:33+00:00 020bf88fd1c5bdac8fc671b37c7118f5378c7047 The removal of a home directory is sensitive to concurrent modification of the directory tree being removed and can unlink files outside the directory tree. This security issue was assigned CVE-2013-0219 https://fedorahosted.org/sssd/ticket/1782 
The removal of a home directory is sensitive to concurrent modification
of the directory tree being removed and can unlink files outside the
directory tree.

This security issue was assigned CVE-2013-0219

https://fedorahosted.org/sssd/ticket/1782
TOOLS: invalidate parent groups in memory cache, too 2013-01-21T15:09:41+00:00 Jakub Hrozek jhrozek@redhat.com 2013-01-21T12:23:30+00:00 7a92ae1598735ff69e36c72a7be60292ccad41d3 https://fedorahosted.org/sssd/ticket/1775 In addition to invalidating the group being added to when adding a member group/user, we also need to invalidate all its parent groups, otherwise this getgrnam("parent") wouldn't report the members newly added to its child groups. 
https://fedorahosted.org/sssd/ticket/1775

In addition to invalidating the group being added to when adding a
member group/user, we also need to invalidate all its parent groups,
otherwise this getgrnam("parent") wouldn't report the members newly
added to its child groups.
tools: Respect use_fully_qualified_names 2013-01-16T14:40:19+00:00 Michal Zidek mzidek@redhat.com 2013-01-09T19:30:58+00:00 6a16292fe61e6ee01895d1d9e99bf5fc92b869bb Tools for LOCAL domain should require FQDN if option 'use_fuly_quallified_names = TRUE' was configured. https://fedorahosted.org/sssd/ticket/1746 
Tools for LOCAL domain should require FQDN if option
'use_fuly_quallified_names = TRUE' was configured.

https://fedorahosted.org/sssd/ticket/1746
sss_cache: Call DEBUG_INIT sooner 2013-01-16T14:35:55+00:00 Michal Zidek mzidek@redhat.com 2013-01-10T13:11:55+00:00 f82135b75f0574e65c73269d6f24d42ba025b8e2 If bad parameteres were passed to sss_cache, the init function returned without calling DEBUG_INIT macro and unnecessary level 1 debug message was printed. https://fedorahosted.org/sssd/ticket/1745 
If bad parameteres were passed to sss_cache, the init
function returned without calling DEBUG_INIT macro and
unnecessary level 1 debug message was printed.

https://fedorahosted.org/sssd/ticket/1745
TOOLS: Refresh memcache after changes to local users and groups 2013-01-15T19:16:05+00:00 Jakub Hrozek jhrozek@redhat.com 2013-01-15T11:36:24+00:00 2c0a971010596c122d7a0c0d76c8eb85f16f6d06 






TOOLS: Provide a convenience function to refresh a list of groups
2013-01-15T19:16:04+00:00

Jakub Hrozek
jhrozek@redhat.com

2013-01-15T11:35:58+00:00

2bb2eadf2b1b7854f430e37689b3e7a25bedfebd












TOOLS: Split querying nss responder into a separate function
2013-01-15T19:16:04+00:00

Jakub Hrozek
jhrozek@redhat.com

2013-01-15T10:40:19+00:00

543676afec3c08fdc0a5a794976adc8dfdca974b

The tools query the responder in order to sync the memcache after
performing changes to the local database. The functions will be reused
by other tools so I split them into a separate functions.





The tools query the responder in order to sync the memcache after
performing changes to the local database. The functions will be reused
by other tools so I split them into a separate functions.