Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Check closedir call in find_uid | Jakub Hrozek | 2010-06-14 | 1 | -4/+9 |
| | | | | Fixes: #503 | ||||
* | Potential memory leak in _nss_sss_*_r() | Jakub Hrozek | 2010-06-14 | 2 | -0/+5 |
| | | | | Fixes: #516 | ||||
* | Fix potential resource leak in copy_tree_ctx() | Jakub Hrozek | 2010-06-14 | 1 | -2/+10 |
| | | | | Ticket #515 | ||||
* | Don't segfault if ldap_access_filter is unspecified | Stephen Gallagher | 2010-06-14 | 1 | -12/+13 |
| | | | | https://fedorahosted.org/sssd/ticket/539 | ||||
* | Fix invalid talloc_move in groupshow | Jakub Hrozek | 2010-06-14 | 1 | -1/+7 |
| | |||||
* | get_uid_from_pid should use fstat rather than lstat | Jakub Hrozek | 2010-06-14 | 1 | -11/+11 |
| | | | | Fixes: #541 | ||||
* | Properly null-terminate socket path | Stephen Gallagher | 2010-06-14 | 1 | -2/+4 |
| | | | | https://fedorahosted.org/sssd/ticket/540 | ||||
* | Remove the -g option from useradd | Jakub Hrozek | 2010-06-14 | 2 | -93/+2 |
| | |||||
* | Undocument the krb5_changepw_principal option | Jakub Hrozek | 2010-06-14 | 5 | -20/+3 |
| | | | | Fixes: #531 | ||||
* | Addressing initialization issues. | Dmitri Pal | 2010-06-10 | 1 | -6/+6 |
| | | | | | Fixing bug found by coverity. Tciket #519 | ||||
* | Make sure to close varargs before returning from a function | Stephen Gallagher | 2010-06-10 | 2 | -3/+2 |
| | | | | https://fedorahosted.org/sssd/ticket/528 | ||||
* | Eliminate unused variable from pc_init_timeout() | Stephen Gallagher | 2010-06-10 | 1 | -4/+0 |
| | | | | https://fedorahosted.org/sssd/ticket/525 | ||||
* | Check return code of hash_delete in proxy_child_destructor | Stephen Gallagher | 2010-06-10 | 1 | -1/+7 |
| | | | | | | | We can't do much about an error here, but we should be reporting it. https://fedorahosted.org/sssd/ticket/534 | ||||
* | Properly check that the timeout event was created for cleanup/enum | Stephen Gallagher | 2010-06-10 | 2 | -2/+46 |
| | | | | | | | | | We need to make sure that if we didn't create the timeout, that we cancel the request so there's no chance of ending up with two enumerations/cleanups running simultaneously. We'll attempt to reschedule later, if possible. https://fedorahosted.org/sssd/ticket/524 | ||||
* | Check the correct variable for NULL after creating timer | Stephen Gallagher | 2010-06-10 | 3 | -4/+4 |
| | | | | | | | | | In several places, we were creating a new timer and assigning it to the tev variable, but then we were checking for NULL from the te variable (which, incidentally, is guaranteed never to be NULL in this situation) https://fedorahosted.org/sssd/ticket/523 | ||||
* | Don't leak directory access resources on errors in directory_list() | Stephen Gallagher | 2010-06-10 | 1 | -0/+8 |
| | | | | https://fedorahosted.org/sssd/ticket/514 | ||||
* | Properly handle missing originalMemberOf entry in initgroups | Stephen Gallagher | 2010-06-10 | 1 | -0/+1 |
| | | | | | | | Failing to return after the tevent_req_post() here can result in a null-pointer dereference (along with other hard-to-track bugs) https://fedorahosted.org/sssd/ticket/507 | ||||
* | Avoid potential NULL dereference | Stephen Gallagher | 2010-06-10 | 1 | -3/+5 |
| | | | | https://fedorahosted.org/sssd/ticket/506 | ||||
* | Fixing NULL dereferencing in ini_config | Dmitri Pal | 2010-06-10 | 1 | -24/+34 |
| | | | | Addressing ticket #504 | ||||
* | Memory leak in case of empty value | Dmitri Pal | 2010-06-10 | 2 | -0/+44 |
| | | | | | | | Addressing coverity issue. Ticket #513. The memory was really leaked when the configuration value was empty. Added unit test that confirmed the bug. | ||||
* | Fix misuse of errno in find_uid.c | Stephen Gallagher | 2010-06-10 | 1 | -17/+26 |
| | |||||
* | Properly handle read() and write() throughout the SSSD | Stephen Gallagher | 2010-06-10 | 9 | -42/+131 |
| | | | | | | | We need to guarantee at all times that reads and writes complete successfully. This means that they must be checked for returning EINTR and EAGAIN, and all writes must be wrapped in a loop to ensure that they do not truncate their output. | ||||
* | Add a missing free() | Sumit Bose | 2010-06-09 | 1 | -0/+1 |
| | |||||
* | Add a missing break | Sumit Bose | 2010-06-09 | 1 | -0/+1 |
| | |||||
* | Add a missing initializer | Sumit Bose | 2010-06-09 | 1 | -1/+1 |
| | |||||
* | Add a missing return value | Sumit Bose | 2010-06-09 | 1 | -0/+1 |
| | |||||
* | Add missing break to switch statement | Jakub Hrozek | 2010-06-09 | 1 | -0/+1 |
| | | | | | | | Switch statement missing a break causes unintended implicit setting of 'm' options in sss_useradd. Fixes: #512 | ||||
* | Allow ldap_access_filter values wrapped in parentheses | Stephen Gallagher | 2010-06-09 | 2 | -3/+21 |
| | |||||
* | Avoid a potential double-free | Sumit Bose | 2010-06-09 | 1 | -0/+1 |
| | |||||
* | Change default min_id to 1 | Stephen Gallagher | 2010-06-09 | 4 | -9/+16 |
| | | | | | Also update manpage for min_id/max_id to be more clear about how it relates to primary GID. | ||||
* | Disable connection callbacks when going online | Stephen Gallagher | 2010-06-09 | 3 | -0/+27 |
| | | | | | | | | Under certain circumstances, the openldap libraries will continue internally trying to reconnect to a connection lost (as during a cable-pull test). We need to drop the reconnection callbacks when marking the backend offline in order to guarantee that they are not called with an invalid sdap_handle. | ||||
* | Fix Incorrect NULL check in get_server_common() | Jakub Hrozek | 2010-06-09 | 1 | -1/+1 |
| | | | | Fixes: #518 | ||||
* | Fix potential NULL dereference in fail_over.c | Jakub Hrozek | 2010-06-09 | 1 | -2/+5 |
| | | | | Fixes: #505 | ||||
* | Fix potential NULL dereference in sss_groupshow | Jakub Hrozek | 2010-06-09 | 1 | -0/+2 |
| | | | | Fixes: #510 | ||||
* | Fix realm_str dereference | Jakub Hrozek | 2010-06-09 | 1 | -1/+1 |
| | | | | Fixes: #508 | ||||
* | Fix typo in Makefile.am | Stephen Gallagher | 2010-06-09 | 1 | -1/+1 |
| | | | | We weren't properly linking libsss_krb5.so against libkeyutils | ||||
* | Skip empty attributes with warning | Jakub Hrozek | 2010-06-09 | 1 | -0/+4 |
| | | | | Fixes: #488 | ||||
* | Fix broken build against older versions of OpenLDAP | Stephen Gallagher | 2010-06-06 | 2 | -2/+12 |
| | | | | | | OpenLDAP < 2.4 used LDAP_OPT_ERROR_STRING. It was changed to LDAP_OPT_DIAGNOSTIC_MESSAGE in 2.4. This patch will allow the TLS error messages to be displayed on either version. | ||||
* | Initialize pam_data in Kerberos child. | Sumit Bose | 2010-06-06 | 1 | -1/+1 |
| | |||||
* | Man page fixes | Jakub Hrozek | 2010-06-06 | 2 | -2/+6 |
| | | | | Fixes: #496 | ||||
* | Fix typo in Makefile | Stephen Gallagher | 2010-06-02 | 1 | -1/+1 |
| | | | | Caused the kerberos provider to not use the kernel keyring | ||||
* | Use sysdb_attrs_get_string_array() instead of sysdb_attrs_get_el() | Sumit Bose | 2010-06-02 | 1 | -23/+12 |
| | | | | | | | | sysdb_attrs_get_el() creates an empty element in the sysdb_attrs structure if the requested element does not exist. Recent versions of libldb do not accept empty elements when writing new objects to disk. sysdb_attrs_get_string_array() does not create an empty element but returns ENOENT. | ||||
* | Add sysdb_attrs_get_string_array() | Sumit Bose | 2010-06-02 | 2 | -0/+35 |
| | |||||
* | Compare full service name | Sumit Bose | 2010-06-02 | 1 | -1/+2 |
| | |||||
* | Fix handling of ccache file when going offline | Sumit Bose | 2010-06-02 | 2 | -32/+77 |
| | | | | | | | The ccache file was removed too early if system is offline but the backend was not already marked offline. Now we remove the ccache file only if the successfully got a new one and it is not the same as the old one. | ||||
* | Update sv translation | Göran Uddeborg | 2010-06-02 | 1 | -36/+32 |
| | |||||
* | Updating sv translation | Göran Uddeborg | 2010-05-27 | 1 | -62/+53 |
| | |||||
* | Release SSSD version 1.2.0sssd-1_2_0 | Stephen Gallagher | 2010-05-24 | 15 | -129/+129 |
| | |||||
* | Support password changes in chpass_provider = proxy | Stephen Gallagher | 2010-05-24 | 1 | -5/+73 |
| | | | | | We were not passing the old authtok to the pam_chauthtok() function, causing it to return PAM_AUTH_ERR. | ||||
* | Fix queuing bug in proxy provider | Stephen Gallagher | 2010-05-24 | 1 | -5/+7 |
| | | | | | | | We weren't zeroing out the proxy_auth_ctx when we created it, so the 'running' element was sometimes being filled with garbage data that exceeded the maximum number of child processes. This meant that no requests were ever sent to the child processes. |