| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
| |
The data provider backends stored a name value besides the domain
name to identify themselves to the data provider. This was the name
of the id provider. Currently the backends can have different
providers for id, authentication etc. So the name may be missleading.
Also when there are more domains with the same id provider the name
is not enough to identify the backend but the domain name is. As a
consequence the backend name is removed completely and only the
domain name is used for identification.
|
| |
|
|
|
|
|
| |
Remove redundant reconnection code that was interfeering with the sbus
reconnection code.
Consolidate include files for sbus relates operations.
Make pamsrv code similar to nsssrv code.
|
| |
|
|
| |
Mirrors what we have done with the monitor.
|
| |
|
|
|
|
|
| |
Let services identify themselves voiluntarily as the first operation
instead of polling from the monitor.
Also consolidate some common functions and make them available as monitor
helpers.
|
| |
|
|
|
|
|
|
| |
The child processes call prctl() and when their parent process is
killed, they are sent SIGTERM using prctl. This is currently
Linux-specific, for non-Linuxes, a similar effect is achieved by
catching a set of common termination signals and sending SIGTERM to the
process group.
|
| |
|
|
|
|
|
| |
Make as much as possible static, and remove use of talloc_reference and
allocation/deallocation of memory when not necessary.
Fix also responder use of rctx->conn, was mistakenly used for both
monitor and dp connections.
|
| |
|
|
|
|
| |
This reduce code duplication as it allows to use one set of watch and timeout
functions, and at the same time also allow not to use a secondary structure just
to unify these functions.
|
| |
|
|
|
| |
Rationalize and rename connection names in preparatoin for merging of server and
connection structures.
|
| |
|
|
| |
Simplify code by removing stuff that is never used or redundant.
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
Implement credentials caching in pam responder.
Currently works only for the proxy backend.
Also cleanup pam responder code and mode common code in data provider.
(the data provider should never include responder private headers)
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Makes LOCAL a normal backend removing some special handling.
Fix/Add id range filtering and name filtering
Filters uid=0 and gid=0 in the proxy backend as 0 is invalid within
sysdb and was causing getxxent calls to fail completely.
Fix nss_ncache_check_xxx calls to avoid dirtying the 'ret' variable and
causing some unwanted failures.
Change sysdb to always return the uid number when searching member entries so
that id range filtering can be perfomed also in group searhes (does not work
with legacy backends)
|
| |
|
|
|
|
|
| |
Now it can load from scratch default configuration that is valid for all
daemons.
First thing, make it possible for each daemon/provider to set its own debug
level in its configuration entry.
|
| | |
|
| |
|
|
|
|
| |
dependencies based on the latest samba code.
Convert all references to the old events library to use the
renamed tevent library.
|
| |
|
|
|
|
|
| |
Also move responders under server/responder with shared code
in server/responder/common
Signed-off-by: Simo Sorce <ssorce@redhat.com>
|
| |
|
|
|
|
|
|
|
|
| |
sbus_message_handler is not responsible anymore for sending
back data in any case.
Transfer this responsibility to the handler function called.
This way both synchronous and asynchronous funstions use the
interface the same way and can properly free memory referenced
by the reply after the send buffer has been filled in and all
copies are done in sbus_conn_send_reply()
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This reverts commit 13421cbe0af4343f9d110600755ffa756690b282.
Conflicts:
server/infopipe/infopipe.c
server/infopipe/infopipe.h
While this solution fixed the contingent memory problem it introduced
other problems in handling asynchronous replies.
Reverting in preparation for a different way to solve it.
Conflicts have been taken care of.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
dbus_message_append_args() adds a reference to memory that is not
copied to the outgoing message until dbus_connection_send() is
called. Since we compile our reply messages in functions and then
return the reply, we need a mechanism for deleting allocated
memory after invoking dbus_connection_send. I have changed the
arguments to sbus_msg_handler_fn so that it takes a talloc ctx
containing the sbus_message_handler_ctx and a pointer to a reply
object. We can now allocate memory as a child of the reply context
and free it after calling dbus_connection_send.
|
| | |
|
| | |
|
| |
|
|
|
| |
not pointers to values.
Check domain is never null (or dbus will abort).
|
| |
|
|
| |
able to call the reloadConfig DBUS method on any or all of its children to force them to reread their configuration from the confdb.
|
| |
|
|
| |
rename everything with the sysdb suffix.
|
| |
|
|
|
|
|
| |
I was finally able to get a getpwnam() request go through sssd,
hit the remote ldap server and get the answer back with
'getent passwd foo'
Yupiee!
|
| |
|
|
|
|
| |
and caches the result in LDAP.
Still chasing a bug that does not let NSS known that the BE was successful.
This makes NSS timeout the client and not return any results yet.
|
| |
|
|
|
| |
Add helper functions to connect to the data provider.
Add some plumbing to the ldap provider (still untested).
|
| | |
|
| |
|
|
| |
as a parent for the new server context object.
|
| |
|
|
| |
in an sbus_conn_destructor_fn to the sbus_new_connection() function. Fixing minor warning about the usage of talloc_reference.
|
| |
|
|
|
|
|
|
| |
sbus_method_ctx entries, meaning that the next connection to attempt to disconnect would receive a segmentation fault also trying to delete them. They are now talloc_reference()-ed to their connection context and talloc_unlink()-ed upon deletion.
I have also modified the sbus_new_server() call to take a reference
to an sbus_srv_ctx object as a return argument, so that the calling
function can keep track of the SBUS server context if it so chooses.
|
| | |
|
| |
|
|
| |
and frontends (pam, nss, ... modules) can connect to.
|
| |
|
|
| |
using the same binary to fork off all services.
|
| |
|
|
| |
the forl/exec model
|
| |
|
|
| |
same config option can be used for the nss service
|
| |
|
|
| |
Changing the default SBUS locations to be configure script parameters
|
| | |
|
| |
|
|
| |
initial connection to the monitor service within the child services. It will create the D-BUS connection to the monitor and configure the service to handle the mandatory getIdentity and ping methods.
|
| | |
|
| |
|
|
|
| |
To start the dameon now you need to pass the option -s monitor
Still have some problems communicating with children.
|
|
|
This currently breacks the dameon because of a problem with
destroying the monitor dbus server in the children after
fork()
|
