summaryrefslogtreecommitdiffstats
path: root/src/responder/nss/nsssrv_netgroup.c
Commit message (Collapse)AuthorAgeFilesLines
* NSS: Clear cached netgroups if a request comes in from the sss_cacheLukas Slebodnik2013-08-081-0/+30
| | | | | | | In order for sss_cache to work correctly, we must also signal the nss responder to invalidate the hash table requests. https://fedorahosted.org/sssd/ticket/1759
* NSS: allow removing entries from netgroup hash tableLukas Slebodnik2013-08-081-0/+27
| | | | | | | | | There is a timed desctructor in the nss responder that, when the entry timeout passes, removes the netgroup from the hash table while the netgroup is freed. This patch adds a hash delete callback so that if the netgroup is removed from the hash table with hash_delete, its hash table pointer will be invalidated. Later, when the entry is being freed, the destructor won't attempt to remove it from the hash table.
* Fix netgroup lookup when using fully qualified namePavel Březina2013-07-311-2/+2
|
* Netgroups should ignore the 'use_fully_qualified_names' settingStephen Gallagher2013-07-291-8/+6
| | | | | | | | | | | Netgroups often have memberNisNetgroup entries included in them that will never process correctly if we require fully-qualified names on the nested lookup. This patch alters the behavior of netgroup lookups to check *all* domains for an unqualified netgroup name, instead of only the ones not requiring fully- qualified names. https://fedorahosted.org/sssd/ticket/2013
* Handle too many results from getnetgr.Lukas Slebodnik2013-06-271-1/+13
|
* Remove unused TALLOC_CTX from responder_get_domain()Sumit Bose2013-05-021-1/+1
| | | | | | Recent refactoring removed the need to copy the domain info data of sub-domains because the related objects will not be removed from memory anymore.
* DB: Switch to new libini_config APIOndrej Kos2013-04-261-1/+1
| | | | | | | https://fedorahosted.org/sssd/ticket/1786 Since we need to support the old interface as well, the configure scritp is modified and correct ini interface is chosen.
* Add function get_next_domain()Simo Sorce2013-02-101-5/+5
| | | | | | | Use this function instead of explicitly calling domain->next This function allows to get the next primary domain or to descend into the subdomains and replaces also get_next_dom_or_subdom()
* Add domain option to sysdb_get/netgr/attrs() fnsSimo Sorce2013-01-151-1/+1
|
* NSS: Fix netgroup midpoint cache refreshJakub Hrozek2012-12-041-1/+1
| | | | | | | | https://fedorahosted.org/sssd/ticket/1683 The result of the percent calculation was always 0 as it used plain ints. The patch switches to using explicit floats to avoid reintroducing the bug again even with brackets.
* Add new option default_domain_suffixSumit Bose2012-10-011-1/+2
|
* Make re_expression and full_name_format per domain optionsStef Walter2012-06-121-2/+2
| | | | | | | | | | | * Allows different user/domain qualified names for different domains. For example Domain\User or user@domain. * The global re_expression and full_name_format options remain as defaults for the domains. * Subdomains get the re_expression and full_name_format of their parent domain. https://bugzilla.redhat.com/show_bug.cgi?id=811663
* NSS: Expire in-memory netgroup cache before the nowait timeoutStephen Gallagher2012-05-161-1/+9
| | | | | | | | The fact that we were keeping it in memory for the full duration of the cache timeout meant that we would never reap the benefits of the midpoint cache refresh. https://fedorahosted.org/sssd/ticket/1340
* Retrieve subdomains if there is a request for fully qualified userJan Zeleny2012-04-241-28/+57
|
* Modified responder_get_domain()Jan Zeleny2012-04-241-1/+1
| | | | Now it checks for subdomains as well as for the domain itself
* Prevent printing NULL from DEBUG messagesJakub Hrozek2012-04-181-1/+2
|
* Handle errors from lookup_netgr_step gracefullyJakub Hrozek2012-03-081-3/+10
|
* Save original name into the in-memory cacheJakub Hrozek2012-03-081-1/+1
|
* Remove sysdb_get_ctx_from_list()Sumit Bose2012-02-291-2/+2
|
* Allocate setent structure on state, not on the client contextJakub Hrozek2012-02-131-2/+2
| | | | https://fedorahosted.org/sssd/ticket/1189
* RESPONDERS: Refactor setent_req_listJakub Hrozek2012-02-051-11/+3
| | | | | Makes the setent_add_ref() and setent_notify_*() functions more generic to be reusable by the autofs responder.
* NSS: Add individual timeouts for entry typesStephen Gallagher2012-02-041-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1016
* NSS: Use sss_hash_create instead of destructorJakub Hrozek2012-02-041-0/+1
|
* Refactor nss_cmd_send_emptyJakub Hrozek2012-01-311-2/+2
|
* NSS: Improve DEBUG messages for netgroup cacheStephen Gallagher2012-01-171-2/+2
|
* sss_get_cased_name utility functionJakub Hrozek2011-12-211-3/+6
|
* Use the case sensitivity flag in respondersJakub Hrozek2011-12-161-8/+13
|
* Responders: Split getting domain by name into separate functionJakub Hrozek2011-12-161-1/+1
|
* Ignore NULL-terminator when checking UTF8-validity for netgroupsStephen Gallagher2011-12-081-1/+1
| | | | Glib fails if the NULL-terminator is included when a length is specified.
* RESPONDER: Ensure that all input strings are valid UTF-8Stephen Gallagher2011-11-181-0/+7
|
* sysdb refactoring: deleted domain variables in sysdb APIJan Zeleny2011-08-151-2/+1
| | | | | The patch also updates code using modified functions. Tests have also been adjusted.
* Don't use negative cache in netgroup lookupJan Zeleny2011-04-251-20/+19
| | | | | | | | | | | | | | In responder a negative cache is used to indicate that the record has not been found by previous lookup. This approach is however not applicable for netgroup lookup because the design of their lookup is a little different. This patch removes some pieces of code working with negative cache, because they didn't fuction well. Instead a new flag has been added to the positive cache. This flag indicates if the record in the cache is a record of existing netgroup or it's just a placeholder. https://fedorahosted.org/sssd/ticket/820
* Change state of hash entry if netgroup cannot be parsedSumit Bose2011-03-091-0/+2
|
* Refactor set_netgroup_entry()Sumit Bose2011-03-071-4/+7
| | | | | | To avoid wrong or missing netgroup names in the getent_ctx destructor set_netgroup_entry() now takes the name out of the getent_ctx struct instead of using a separate argument.
* Add missing name to struct getent_ctx for missing netgroupSumit Bose2011-03-071-0/+6
| | | | https://fedorahosted.org/sssd/ticket/817
* Fix missing hash table bugStephen Gallagher2011-01-141-0/+1
| | | | | | | When the automatic cleanup happened, if the netgroup had been created with no contents (to indicate an unknown netgroup), we weren't saving the hash table address and the talloc_free() was failing.
* Fix possible NULL-dereference in lookup_netgr_step()Sumit Bose2010-12-171-1/+1
| | | | https://fedorahosted.org/sssd/ticket/735
* Fix uninitialized value error in lookup_netgr_step()Sumit Bose2010-12-151-146/+181
|
* Always use talloc_zero() to allocate cmdctxSumit Bose2010-10-261-1/+1
|
* Also return member groups to the clientSumit Bose2010-10-131-54/+84
|
* Add handling of nested netgroups to nss clientSumit Bose2010-10-131-1/+4
|
* Add missing tevent_req_done()Sumit Bose2010-10-131-0/+1
|
* Add netgroup support to the NSS responderStephen Gallagher2010-10-131-0/+863
generated by cgit (git 2.34.1) at 2024-05-01 14:01:24 +0000