summaryrefslogtreecommitdiffstats
path: root/src/providers/ldap/sdap_child_helpers.c
Commit message (Collapse)AuthorAgeFilesLines
* SIGCHLD handler: do not call callback when pvt data was freedPavel Březina2013-08-301-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1992
* Collect krb5 trace on high debug levelsJakub Hrozek2012-10-121-1/+1
| | | | | | | If the debug level contains SSSDBG_TRACE_ALL, then the logs would also include tracing information from libkrb5. https://fedorahosted.org/sssd/ticket/1539
* Remove unused variableJakub Hrozek2012-10-041-6/+0
|
* remove left over principal selectionPavel Březina2012-10-021-21/+0
| | | | | | | | | | | | | | | https://fedorahosted.org/sssd/ticket/1303 Domain start up was taking too long when there are many principals in a kerberos keytab. We were looking up in the keytab two times. The first time we try to select a proper principal and remember it. The second call happens almost right after the first one and it is just a check if the principal exists in the keytab, without any output information other than success/failure. It is probably a left over from https://fedorahosted.org/sssd/ticket/781. This patch removes the second call.
* execv, excvp and exec_child never return EOKStef Walter2012-05-011-5/+3
| | | | * So don't need to handle that case
* Move child_common routines to utilStephen Gallagher2011-12-191-1/+1
|
* Multiline macro cleanupJakub Hrozek2011-09-281-1/+1
| | | | | | | | | | This is mostly a cosmetic patch. The purpose of wrapping a multi-line macro in a do { } while(0) is to make the macro usable as a regular statement, not a compound statement. When the while(0) is terminated with a semicolon, the do { } while(0); block becomes a compound statement again.
* Modify principal selection for keytab authenticationJan Zeleny2011-04-251-2/+7
| | | | | | | | | | | | | | | | Currently we construct the principal as host/fqdn@REALM. The problem with this is that this principal doesn't have to be in the keytab. In that case the provider fails to start. It is better to scan the keytab and find the most suitable principal to use. Only in case no suitable principal is found the backend should fail to start. The second issue solved by this patch is that the realm we are authenticating the machine to can be in general different from the realm our users are part of (in case of cross Kerberos trust). The patch adds new configuration option SDAP_SASL_REALM. https://fedorahosted.org/sssd/ticket/781
* Make ldap_child report kerberos return code to parentJakub Hrozek2010-10-131-7/+16
|
* Validate keytab at startupJakub Hrozek2010-08-031-0/+16
| | | | | | | | In addition to validating the keytab everytime a TGT is requested, we also validate the keytab on back end startup to give early warning that the keytab is not usable. Fixes: #556
* GSSAPI ticket expiry time is returned from ldap_child and stored in ↵eindenbom2010-07-091-5/+18
| | | | sdap_handle for future reference.
* Fix realm_str dereferenceJakub Hrozek2010-06-091-1/+1
| | | | Fixes: #508
* Add ldap_krb5_ticket_lifetime optionSumit Bose2010-05-161-2/+7
|
* Properly set up SIGCHLD handlersStephen Gallagher2010-05-161-10/+8
| | | | | | Instead of having all-purpose SIGCHLD handlers that try to catch every occurrence, we instead create a per-PID handler. This will allow us to specify callbacks to occur when certain children exit.
* Improve safe alignment buffer handling macrosSimo Sorce2010-03-031-11/+11
| | | | | | | | | Make the counter optional so that alignment safe macros can be used also where there is no counter to update. Change arguments names so that they are not deceiving (ptr normlly identify a pointer) Turn the memcpy substitute into an inline function so that passing a pointer to rp and checking for it doesn't make the compiler spit lots of warnings.
* Rename server/ directory to src/Stephen Gallagher2010-02-181-0/+462
Also update BUILD.txt
generated by cgit (git 2.34.1) at 2024-05-07 11:36:02 +0000