summaryrefslogtreecommitdiffstats
path: root/server
Commit message (Collapse)AuthorAgeFilesLines
* Add ignore_not_found parameter to sysdb delete functionsJakub Hrozek2009-07-314-21/+182
| | | | Also add tests
* Improve error messagesJakub Hrozek2009-07-314-5/+32
| | | | | | | | | | | Fixes: * RHBZ 513282 - Error Message Incorrect when Trying to add Group with GID already in use * RHBZ 513284 - Error Message Incorrect when Trying to add User with UID already in use * RHBZ 513242 - Better error Message when modifying a user that doesn't exist * RHBZ 513244 - Better error Message when adding a user to a group that doesn't exist
* Address CVE-2009-2410Stephen Gallagher2009-07-291-1/+1
| | | | Fix incorrect error code return in local_handler_callback
* Add async resolver testsJakub Hrozek2009-07-242-1/+455
| | | | | | Add some basic unit tests of the async resolver module. One of the tests resolves a name on the Internet, therefore it is off by default and is turned on with the -n switch.
* Add ares helpers into sssdJakub Hrozek2009-07-249-1/+498
| | | | | | | | | | This patch adds ares parsing functions that are not yet upstreamed together with a private ares header file (ares_dns.h) that contains some necessary macros for parsing common structures in the replies. Users of these two parsing functions must also include the header files ares_parse_{srv,txt}_reply.h that contain the function and structures declarations that should eventually end up in upstream ares.h
* Async DNS integrationJakub Hrozek2009-07-245-1/+739
| | | | Integrates the c-ares asynchronous resolved library into SSSD.
* Fix race condition that was causing segfaultsSimo Sorce2009-07-241-80/+136
| | | | | | | | The sdap_handle might be freed when processing a message. Rearrange data flow so that the sdap_handle is never used after a message is processed but a new event (dependent on the handle) is instead scheduled. If the sdap_handle is freed, the scheduled event is also removed and not fired
* Minor cleanups in monitor.cStephen Gallagher2009-07-221-1/+5
| | | | | 1) Forgot to check for successful allocation 2) Used the wrong mem_ctx when allocating a timer event.
* added LDAP change password backend targetSumit Bose2009-07-214-4/+307
|
* add handling of the new backend targets to proxy backendSumit Bose2009-07-211-0/+30
|
* Rework the engine that deals with openldap librariesSimo Sorce2009-07-203-497/+403
| | | | | | | The way openldap libraries work, require to have a single engine per connection as all replies are read at the same time. So we need to always read anything that comes in from the wire and then loop to dispatch results to the requests that are waiting.
* Raise debug level for version negotiationSimo Sorce2009-07-201-2/+2
|
* Add option to add timestamps to debug outputSimo Sorce2009-07-204-8/+39
| | | | | use '--debug-timestamps' at the command line or set 'debug-timestamps = TRUE' in the configuration file.
* Remove unused InfoPipe and PolicyKit codeStephen Gallagher2009-07-2016-5530/+2
|
* Instrument memberof for debuggingSimo Sorce2009-07-202-1/+57
| | | | Fix ldb debug to avoid printing the debug function name, it's useless.
* Start rationalizing user tools a bitSimo Sorce2009-07-207-408/+299
| | | | | There is a lot of duplication in user tools. First steps to remove as much duplication as possible.
* Implement resInit for monitor, NSS, PAM, DP and the backendsStephen Gallagher2009-07-205-1/+91
|
* Monitor resolv.conf for changesStephen Gallagher2009-07-204-128/+234
| | | | | | | | | | | | | | | | | | | This patch updates the monitor_config_file() functions so that they can monitor any number of files and invoke a specified callback whenever they are modified. When inotify is available, we will add an additional watch descriptor to the inotify file descriptor. When inotify is not available, the polling function will simply loop to check each file in the monitor list. When changes are discovered in resolv.conf, the monitor will send a "resInit" signal to all of its known children. They are only required to handle this function if they need updated DNS information. Services that do not implement resInit should return DBUS_ERROR_UNKNOWN_METHOD (rather than timing out) with no ill effects.
* Improvements to config file updatesStephen Gallagher2009-07-202-41/+152
| | | | | | | | | | | | | | | 1) Some text editors will create a new file and move it into place on top of the existing file. When this happens, the kernel issues an IN_IGNORE inotify event and automatically removes the watch descriptor for that file. We'll handle the event and create a new watch descriptor for the new file. We will attempt to rewatch the file six times at five-second intervals. 2) Some scripts may append new data to the config file in several steps (such as calling echo "foo" >> sssd.conf several times). In order to handle these scripts safely, we'll defer processing of inotify events for one second after the first is detected. This should be ample time for the remainder of the script to complete.
* add infrastructure to handle new backend targetsSumit Bose2009-07-206-150/+228
|
* Fix saving new nextIDJakub Hrozek2009-07-201-1/+1
|
* let krb5 backend safe valid credentials for offline authenticationSumit Bose2009-07-101-0/+43
|
* fixed the default value for tls_reqcertSumit Bose2009-07-101-1/+1
|
* add a short explanation about the used debug levelsSumit Bose2009-07-101-0/+14
|
* fixed typos and a potential memory leakSumit Bose2009-07-091-2/+3
|
* Implement the ldap identity module.Simo Sorce2009-07-087-787/+1408
| | | | This uses and exapands the async helpers.
* Unify password caching ops in sysdbSimo Sorce2009-07-087-291/+178
|
* Use async helpers for ldap auth moduleSimo Sorce2009-07-081-722/+314
| | | | | | This changes the style quite a lot, but the tevent_req style is much more clear and much less error-prone than the giant loop we had previously.
* Add async helper functionsSimo Sorce2009-07-087-25/+2060
| | | | | | These functions use the tevent_req async model, where a pair of _send/_recv functions pilot requests, with additional helpers like _done functions, and where needed multiple stage helpers.
* Expose sysdb function to parse sysdb_attrsSimo Sorce2009-07-082-2/+4
|
* Add dumb way to clean up .X filesSimo Sorce2009-07-081-0/+1
|
* fix return code of krb5 child to indicate that the kdc is unavailableSumit Bose2009-07-081-1/+5
|
* fixed some typos which prevented password cachingSumit Bose2009-07-081-3/+5
|
* fixed a double talloc_free errorSumit Bose2009-07-086-12/+0
|
* Check for root before initializingJakub Hrozek2009-07-069-4/+99
| | | | | Also move setting locale to separate function to be called before anything else to make sure the "Not root" message would be localized.
* Cleanup warnings in client and server codeSimo Sorce2009-07-032-4/+1
|
* Convert proxy internals to tevent_req styleSimo Sorce2009-07-031-865/+1438
|
* Rework transaction code to use tevent_reqSimo Sorce2009-07-0318-2762/+4893
| | | | | | This is part of a set of patches to rewrite sysdb to a hopefully better API, that will also let use use tevent_req async style calls to manipulate our cache.
* Rename sysdb_req to sysdb_handle.Simo Sorce2009-07-0318-416/+410
| | | | | | | | | This sysdb_req has always really been a transaction handle and not a request. This is part of a set of patches to rewrite transaction support in sysdb to a hopefully better API, that will also let use use tevent_req async style to manipulate our cache.
* Adding wrappers to free data in INI API.Dmitri Pal2009-07-022-7/+5
| | | | See ticket #37 in sssd track.
* Gettextize the sss_ toolsJakub Hrozek2009-07-027-109/+176
|
* PRINT and ERROR macrosJakub Hrozek2009-07-022-1/+4
|
* check pending_return after dbus_connection_send_with_replySumit Bose2009-07-024-9/+9
|
* added kerberos backend with tevent_req event handlingSumit Bose2009-07-028-2/+978
|
* added kerberos locator pluginSumit Bose2009-07-026-1/+179
|
* Eliminate segfault on first start-upStephen Gallagher2009-06-301-6/+19
| | | | | | | | There was a typo in the confdb setup portion of the monitor_process_init that was attempting to use the wrong cdb object to initialize. This patch also adds some missing talloc_free() calls on error.
* Remove redundant libPath option from proxy providerStephen Gallagher2009-06-303-17/+7
| | | | | The libPath should be constructed from the libName. There is no benefit to specifying it separately.
* Protect against segfault in service_signal_reloadStephen Gallagher2009-06-191-0/+9
| | | | | | | There is a potential race condition where the monitor may attempt to signal a reload of a child process before the communication sbus channel is available. If this happens, we will just exit this function and let the monitor kill and restart the child process.
* Fix segfault in update_monitor_configStephen Gallagher2009-06-192-8/+30
| | | | | | | We were stealing the memory context of only the first value in the linked-list of domains (and also services). This patch adds a memory context to hold the lists so that can be stolen along with all of the entries.
* Allow the use of custom CFLAGS on the make command lineStephen Gallagher2009-06-193-3/+6
| | | | | | | | | | | Setting CFLAGS explicitly in configure.ac means that they would be overwritten when using e.g. make CFLAGS="-O0 -g" This replaces the explicit setting of CFLAGS with an AM_CONDITIONAL to have Makefile.am set these instead. Also fixes a missing #include that was coincidentally obscured because gcc's -O2 happened to be able to locate it. Setting -O0 revealed the problem.
generated by cgit (git 2.34.1) at 2024-05-05 09:10:13 +0000