summaryrefslogtreecommitdiffstats
path: root/server/nss
Commit message (Collapse)AuthorAgeFilesLines
* Completely rework the nss interface to be able to use 2Simo Sorce2009-02-204-388/+1396
| | | | | | | | | | | | | | | | | | | | | | | | | types of domains: modern and legacy modern uses member/meberof, legacy uses memberUid for group memberships. Rework the proxy backend to use the legacy style as that's the format the data comes in (trying to convert would require too many transformations and increased the number of queries). Add support for fetching groups in nss. Add support for enumerating users and groups (requires to enable enumeration in config) both in nss and in the proxy provider. Remove confdb_get_domain_basedn() and substitute with generic calls in the nss init function. Store a domain structure in the btree not the basedn so that we can add enumeration flags. Also make sure NSS understand how to make multiple calls on enumerations, also make passing the domian parameter always mandatory, passing in domain=* is not valid anymore. This work fixes also a few memory, degfault, and logic bugs found while testing all nss functions (there are still some to fix that are less critical and much harder to find yet).
* Enhancements and bugfixes to util/btreemap.c 1) Remove useless and unused ↵Stephen Gallagher2009-02-161-4/+4
| | | | btreemap_new() 2) Fix potentially serious memory allocation error. btreemap now requires a TALLOC_CTX to be passed in for assignment to the top node of the tree. Previously it was creating a new root TALLOC_CTX 3) Add new function btreemap_get_keys that will return a sorted array (newly allocated using talloc_realloc()) of keys (const void *) 4) Change the btreemap to use (const void *) keys instead of (void *)
* Always pass teh database path explicitly, so that test cases can useSimo Sorce2009-02-131-1/+1
| | | | | throw away databases Check version and init main db if empty
* Adding sysdb_store_group_posix with unit testStephen Gallagher2009-02-121-1/+1
|
* Refactoring the monitor code and SBUS utility functions.Stephen Gallagher2009-01-272-11/+45
|
* Add code to make it easier to reconnect in case the serverSimo Sorce2009-01-141-6/+89
| | | | | is not available immediately or drops the dbus connection. First step is the nss connection to the data provider.
* Now that we have the domain name passed in, dispatch to the rightSimo Sorce2009-01-131-3/+9
| | | | domain when possible.
* Fix return, dbus would abort because we were passing values andSimo Sorce2009-01-131-0/+4
| | | | | not pointers to values. Check domain is never null (or dbus will abort).
* Add checks to make sure we are getting a user from the correct domain.Simo Sorce2009-01-123-1/+72
|
* Add placeholders for new configuration reload methods. The monitor will be ↵Stephen Gallagher2009-01-121-0/+12
| | | | able to call the reloadConfig DBUS method on any or all of its children to force them to reread their configuration from the confdb.
* Regroup database rleated functions under db andSimo Sorce2009-01-126-938/+45
| | | | rename everything with the sysdb suffix.
* Adding parsing code to separate names from domains.Stephen Gallagher2009-01-122-7/+51
| | | | | Currently, if an invalid domain was specified, it will result in EINVAL being returned.
* Use a unified base (temp. dc=sssd), for all domain including LOCAL.Simo Sorce2009-01-114-255/+228
| | | | | | | It makes no sense to have internal attribute names user configurable, remove that option and use macros internally. Also now always pass the domain name to all nss_ldb_* calls.
* Add support for getpwuid in proxy backendSimo Sorce2009-01-111-21/+70
|
* Add caching behavior to nsssrv_cmd.c check cache first andSimo Sorce2009-01-114-20/+82
| | | | dispatch to backends only if we have a cache miss.
* Lots of little nasty bugs fixed.Simo Sorce2009-01-095-28/+112
| | | | | | | I was finally able to get a getpwnam() request go through sssd, hit the remote ldap server and get the answer back with 'getent passwd foo' Yupiee!
* The code now successfully sends a getpwnam request to a remote LDAP server,Simo Sorce2009-01-087-120/+404
| | | | | | and caches the result in LDAP. Still chasing a bug that does not let NSS known that the BE was successful. This makes NSS timeout the client and not return any results yet.
* Check size of incoming packets.Simo Sorce2009-01-073-6/+15
| | | | This should fix a buffer overflow waiting to be exploited :/
* Add initial support to connect nss to the data provider as a frontendSimo Sorce2009-01-063-0/+65
|
* fix typoSimo Sorce2009-01-061-1/+1
|
* Change cli_ctx to include nss_ctx, not just select members of it.Simo Sorce2009-01-063-16/+17
|
* libevents renamed upstream to libteventSimo Sorce2008-12-221-1/+1
| | | | events.h -> tevent.h
* Adding a parameter to the sbus_service_sbus_init function to allow passing ↵Stephen Gallagher2008-12-151-1/+1
| | | | in an sbus_conn_destructor_fn to the sbus_new_connection() function. Fixing minor warning about the usage of talloc_reference.
* Change data provider into a hub, where backends (ldap, nis, ipa providers)Simo Sorce2008-12-081-8/+7
| | | | and frontends (pam, nss, ... modules) can connect to.
* Make a binary out of each major sssd component instead ofSimo Sorce2008-11-251-0/+43
| | | | using the same binary to fork off all services.
* Remove the service stuff that we stopped using when we moved toSimo Sorce2008-11-251-1/+0
| | | | the forl/exec model
* point PIPE_PATH at /var/lib/sss/pipes, not just the private path so that theSimo Sorce2008-11-241-1/+11
| | | | same config option can be used for the nss service
* Replacing hard-coded paths with configure script substitutions.Stephen Gallagher2008-11-242-2/+10
| | | | Changing the default SBUS locations to be configure script parameters
* Fix indentationSimo Sorce2008-11-241-9/+9
|
* Created a helper function sssd_service_sbus_init() to simplify creating the ↵Stephen Gallagher2008-11-202-51/+14
| | | | initial connection to the monitor service within the child services. It will create the D-BUS connection to the monitor and configure the service to handle the mandatory getIdentity and ping methods.
* Remove unused code and fix message handlers in dpSimo Sorce2008-11-201-25/+10
|
* Start conversion from a fork() and live to a fork()/exec() model.Simo Sorce2008-11-202-25/+20
| | | | | To start the dameon now you need to pass the option -s monitor Still have some problems communicating with children.
* Move definition into the header fileSimo Sorce2008-11-193-2/+3
|
* The default message handler will now pass both the method_ctx and theStephen Gallagher2008-11-171-0/+1
| | | | | | | sbus_conn_ctx to all message handling functions. This will allow connection-specific data to be passed in by taking advantage of the sbus_conn_set_private_data() function on the sbus_conn_ctx struct. Presently this private data is global to all methods of the connection context.
* Store all domains served by the SSSD to a binary-tree map for fast NSS lookup.Stephen Gallagher2008-11-073-3/+58
| | | | | | Changed the "section" feature of confdb.c to use '/' as a delimiter instead of '.', because this conflicted with the ability to use dots in domain names.
* Add the ping funtion to the nss service Make the monitor task ping ↵Simo Sorce2008-11-042-1/+18
| | | | connecting services Make it possible to configure timeouts and service ping times.
* Add support for dbus comunication in the nss serviceSimo Sorce2008-11-032-31/+143
| | | | | Add utility function in confdb Make all component fetch the dbus socket from the confdb
* Make return the pid when new process are started.Simo Sorce2008-10-211-6/+32
| | | | | | | | Monitor each service and restart it conditionally if it fails. These monitoring is extremely simple at this moment and just uses waitpid() to check if the client is alive, there is no active probing, that will require dbus. Make nsssrv.c read the sss pipe config option for the config db.
* Add configuration database functions.Simo Sorce2008-10-206-131/+355
| | | | Convert nss responder to use the confdb
* add code for initgroups callsSimo Sorce2008-10-144-0/+206
|
* Fix error in parsing multiple groupsSimo Sorce2008-10-144-29/+346
| | | | | Revert to use 'cn' for group names Implement getgrent()
* Implement getgrgid()Simo Sorce2008-10-134-2/+62
|
* Implement getgrnam()Simo Sorce2008-10-124-14/+354
|
* Implement getpwent() supportSimo Sorce2008-10-095-77/+335
|
* Fix memory handling problem, stuff was allocated on the wrong memory context,Simo Sorce2008-10-091-7/+7
| | | | causing it to be freed ahead of time
* Use classic errno instead of inventing our own, it's broad enough fro atm.Simo Sorce2008-10-094-48/+54
|
* Add getpwuid supportSimo Sorce2008-10-083-8/+93
|
* Use a utility function (to be shared with getpwent)Simo Sorce2008-10-081-60/+75
|
* First retrieval of a user (getpwnam only) from an actual ldb fileSimo Sorce2008-10-086-28/+348
|
* Add primitive debugging capabilities.Simo Sorce2008-10-071-2/+5
| | | | | So far debug goes to stderr so sssd need to be run int interactive mode (-i option)
generated by cgit (git 2.34.1) at 2024-06-11 04:45:09 +0000