Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | sysdb: try dealing with binary-content attributessssd-1-8 | Jan Engelhardt | 2013-02-26 | 2 | -0/+12 |
| | | | | | | | | | | | | | | | | | | | | | | | | | https://fedorahosted.org/sssd/ticket/1818 I have here a LDAP user entry which has this attribute loginAllowedTimeMap:: AAAAAAAAAP///38AAP///38AAP///38AAP///38AAP///38AAAAAAAAA In the function sysdb_attrs_add_string(), called from sdap_attrs_add_ldap_attr(), strlen() is called on this blob, which is the wrong thing to do. The result of strlen is then used to populate the .v_length member of a struct ldb_val - and this will set it to zero in this case. (There is also the problem that there may not be a '\0' at all in the blob.) Subsequently, .v_length being 0 makes ldb_modify(), called from sysdb_set_entry_attr(), return LDB_ERR_INVALID_ATTRIBUTE_SYNTAX. End result is that users do not get stored in the sysdb, and programs like `id` or `getent ...` show incomplete information. The bug was encountered with sssd-1.8.5. sssd-1.5.11 seemed to behave fine, but that may not mean that is the absolute lower boundary of introduction of the problem. | ||||
* | SYSDB: Make sysdb_attrs_get_el_int() public | Jakub Hrozek | 2012-08-21 | 2 | -8/+10 |
| | | | | Also rename it to sysdb_attrs_get_el_ext() | ||||
* | SYSDB: Handle user and group renames better | Jakub Hrozek | 2012-05-11 | 1 | -7/+39 |
| | | | | | | | | | | | | Fixes a regression in the local domain tools where sss_groupadd no longer detected a GID duplicate. The check for EEXIST is moved one level up into more high level function. The patch also adds the same rename support for users. I found it odd that we allowed a rename of groups but not users. There is a catch when storing a user -- his cached password would be gone. I think that renaming a user is such a rare operation that it's not severe, plus there is a warning in the logs. | ||||
* | Save alias of the primary name, too | Jakub Hrozek | 2012-03-21 | 1 | -3/+9 |
| | |||||
* | SYSDB: Save only lowercased aliases in case-insensitive domains | Stephen Gallagher | 2012-03-16 | 1 | -19/+28 |
| | | | | https://fedorahosted.org/sssd/ticket/1253 | ||||
* | Search netgroups by alias, too | Jakub Hrozek | 2012-03-06 | 2 | -3/+5 |
| | | | | https://fedorahosted.org/sssd/ticket/1228 | ||||
* | SSH: Add more debugging messages | Jan Cholasta | 2012-02-27 | 1 | -4/+11 |
| | |||||
* | SSH: Save SSH host name aliases | Jan Cholasta | 2012-02-27 | 2 | -11/+83 |
| | |||||
* | Delete missing attributes from netgroups to be stored | Jan Zeleny | 2012-02-24 | 2 | -0/+16 |
| | | | | https://fedorahosted.org/sssd/ticket/1136 | ||||
* | Redesign purging of the sudo cache | Pavel Březina | 2012-02-17 | 2 | -75/+315 |
| | | | | https://fedorahosted.org/sssd/ticket/1173 | ||||
* | Fix uninitialized in_transaction | Stephen Gallagher | 2012-02-13 | 1 | -1/+1 |
| | | | | Coverity #12521 and #12491 | ||||
* | Improve debug messages in sysdb_sudo_check_time() | Pavel Březina | 2012-02-10 | 1 | -4/+16 |
| | |||||
* | IPA: Add host info handler | Jan Cholasta | 2012-02-07 | 2 | -0/+159 |
| | |||||
* | LDAP: Add support for SSH user public keys | Jan Cholasta | 2012-02-07 | 1 | -0/+2 |
| | |||||
* | SUDO Integration - sysdb_sudo_check_time() fix | Pavel Březina | 2012-02-06 | 1 | -6/+8 |
| | |||||
* | Added some SELinux-related sysdb routines | Jan Zeleny | 2012-02-06 | 3 | -1/+545 |
| | |||||
* | Renamed some sysdb constants for their wider usage | Jan Zeleny | 2012-02-06 | 1 | -5/+3 |
| | |||||
* | AUTOFS: sysdb interface | Jakub Hrozek | 2012-02-05 | 4 | -7/+520 |
| | |||||
* | SYSDB: Remove code duplication between member_add and member_del | Jakub Hrozek | 2012-02-05 | 1 | -39/+14 |
| | |||||
* | Fixes for sudo_timed | Jakub Hrozek | 2012-02-04 | 1 | -23/+40 |
| | | | | https://fedorahosted.org/sssd/ticket/1116 | ||||
* | SUDO Integration - responder 'sudo_timed' option | Pavel Březina | 2012-02-04 | 2 | -37/+132 |
| | | | | https://fedorahosted.org/sssd/ticket/1116 | ||||
* | SYSDB: index sudoUser | Jakub Hrozek | 2012-01-31 | 3 | -1/+99 |
| | | | | | Most of the the searches in the Sudo responder include the sudoUser attribute. Indexing it will make the responder faster. | ||||
* | SYSDB: Add sysdb_attrs_get_uint16_t | Stephen Gallagher | 2012-01-31 | 2 | -0/+28 |
| | |||||
* | SYSDB: extend sysdb_store_service() to accept additional attributes | Stephen Gallagher | 2012-01-31 | 4 | -17/+41 |
| | |||||
* | SUDO Integration - make sysdb_get_sudo_filter() more configurable | Pavel Březina | 2012-01-27 | 2 | -46/+68 |
| | | | | https://fedorahosted.org/sssd/ticket/1143 | ||||
* | SYSDB: add support for enumerating services | Stephen Gallagher | 2012-01-27 | 2 | -0/+55 |
| | |||||
* | SYSDB: Add indexes for servicePort and serviceProtocol | Stephen Gallagher | 2012-01-27 | 3 | -2/+104 |
| | |||||
* | SYSDB: Add sysdb routines for manipulating service entries | Stephen Gallagher | 2012-01-27 | 2 | -0/+773 |
| | |||||
* | SYSDB: Move add_string and add_ulong to sysdb_private.h | Stephen Gallagher | 2012-01-23 | 2 | -4/+9 |
| | |||||
* | SYSDB: Redundant check is redundant. | Stephen Gallagher | 2012-01-21 | 1 | -5/+0 |
| | | | | Coverity 12480 | ||||
* | SUDO Integration - functions for manipulating with 'refreshed' attribute | Pavel Březina | 2012-01-17 | 2 | -0/+68 |
| | | | | https://fedorahosted.org/sssd/ticket/1110 | ||||
* | sysdb_get_bool() and sysdb_get_bool() functions | Pavel Březina | 2012-01-17 | 2 | -51/+108 |
| | |||||
* | SUDO Integration review issues | Pavel Březina | 2012-01-17 | 2 | -21/+14 |
| | |||||
* | SUDO Integration - sysdb interface | Jakub Hrozek | 2011-12-16 | 2 | -0/+402 |
| | |||||
* | Export the function to convert ldb_result to sysdb_attrs | Jakub Hrozek | 2011-12-16 | 2 | -0/+33 |
| | | | | It will be reused later in the sudo responder | ||||
* | Use the case sensitivity flag in the LDAP provider | Jakub Hrozek | 2011-12-16 | 2 | -4/+33 |
| | |||||
* | sysdb_get_real_name helper function | Jakub Hrozek | 2011-12-16 | 2 | -0/+50 |
| | |||||
* | Fixed a typo in sysdb_upgrade_07() declaration | Jan Zeleny | 2011-11-28 | 1 | -1/+1 |
| | |||||
* | Added and modified options for IPA netgroups | Jan Zeleny | 2011-11-23 | 1 | -0/+8 |
| | |||||
* | SYSDB: Make ENOENT log messages less threatening | Stephen Gallagher | 2011-11-22 | 1 | -16/+54 |
| | | | | | Previously, they were reported with the prefix "Error:" which caused confusion among end-users while debugging. | ||||
* | Fix FTBFS related to -Werror=format-security | Krzysztof Klimonda | 2011-11-21 | 2 | -2/+2 |
| | |||||
* | SYSDB: add index for nameAlias | Stephen Gallagher | 2011-11-02 | 3 | -1/+97 |
| | |||||
* | Handle group renaming correctly | Jan Zeleny | 2011-11-02 | 1 | -2/+7 |
| | | | | https://fedorahosted.org/sssd/ticket/1040 | ||||
* | Plug memory leaks in sysdb_ops | Jakub Hrozek | 2011-10-31 | 1 | -20/+54 |
| | | | | https://fedorahosted.org/sssd/ticket/1051 | ||||
* | Sanitize DN in sysdb_get_direct_parents | Jakub Hrozek | 2011-10-17 | 1 | -1/+7 |
| | |||||
* | SysDB commands that save lastUpdate allows this value to be passed in | Pavel Březina | 2011-10-13 | 2 | -32/+55 |
| | | | | https://fedorahosted.org/sssd/ticket/836 | ||||
* | SYSDB: New source file for sysdb upgrade routines | Stephen Gallagher | 2011-10-07 | 3 | -888/+929 |
| | |||||
* | Fix typo in sysdb_get_direct_parents | Jakub Hrozek | 2011-10-06 | 1 | -1/+1 |
| | |||||
* | Use explicit base 10 for converting strings to integers | Jakub Hrozek | 2011-10-03 | 2 | -2/+2 |
| | | | | https://fedorahosted.org/sssd/ticket/1013 | ||||
* | Return users and groups based on alias | Jakub Hrozek | 2011-09-28 | 2 | -6/+7 |
| | | | | https://fedorahosted.org/sssd/ticket/926 |