Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix: always check return value of unlink() | Pavel Reichl | 2014-11-28 | 1 | -2/+12 |
| | | | | | | | Resolves: https://fedorahosted.org/sssd/ticket/2506 Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> | ||||
* | Views: apply user SSH public key override | Sumit Bose | 2014-11-05 | 1 | -29/+94 |
| | | | | | | | | | | | | | With this patch the SSH public key override attribute is read from the FreeIPA server and saved in the cache with the other override data. Since it is possible to have multiple public SSH keys this override value does not replace any other data but will be added to existing values. Fixes https://fedorahosted.org/sssd/ticket/2454 Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> | ||||
* | Make DEBUG macro invocations variadic | Nikolai Kondrashov | 2014-02-12 | 1 | -47/+47 |
| | | | | | | | | | | | | | | | | | | | | | | | | Use a script to update DEBUG macro invocations to use it as a variadic macro, supplying format string and its arguments directly, instead of wrapping them in parens. This script was used to update the code: grep -rwl --include '*.[hc]' DEBUG . | while read f; do mv "$f"{,.orig} perl -e \ 'use strict; use File::Slurp; my $text=read_file(\*STDIN); $text=~s#(\bDEBUG\s*\([^(]+)\((.*?)\)\s*\)\s*;#$1$2);#gs; print $text;' < "$f.orig" > "$f" rm "$f.orig" done Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> Reviewed-by: Stephen Gallagher <sgallagh@redhat.com> Reviewed-by: Simo Sorce <simo@redhat.com> | ||||
* | SYSDB: Drop the sysdb_ctx parameter from the sysdb_ssh module | Michal Zidek | 2013-11-15 | 1 | -4/+3 |
| | |||||
* | SYSDB: Drop the sysdb_ctx parameter from the sysdb_search module | Michal Zidek | 2013-11-15 | 1 | -4/+2 |
| | |||||
* | SSH: Ensure that cmd_ctx->name will not be NULL. | Lukas Slebodnik | 2013-08-05 | 1 | -4/+6 |
| | | | | | | | | If cmd_ctx->name was not initialized by sss_parse_name then copy of name will be used. https://fedorahosted.org/sssd/ticket/1970 Coverity ID: 11647 | ||||
* | SSH: Update known_hosts file after unsuccessful requests as well. | Jan Cholasta | 2013-06-27 | 1 | -20/+36 |
| | | | | https://fedorahosted.org/sssd/ticket/1949 | ||||
* | SSH: Do not skip domains with use_fully_qualified_names in host key requests | Jan Cholasta | 2013-05-07 | 1 | -6/+0 |
| | |||||
* | SSH: Use separate field for domain name in client requests | Jan Cholasta | 2013-05-07 | 1 | -27/+64 |
| | | | | | Instead of appending @domain to names when the --domain option of sss_ssh_* is used, put domain name in a separate field in client requests. | ||||
* | SSH: Fix parsing of names from client requests | Jan Cholasta | 2013-05-07 | 1 | -3/+20 |
| | | | | | | Try to parse names in the form user@domain first, as that's what sss_ssh_* send in requests when the --domain option is used. Do not parse host names using domain-specific regular expression. | ||||
* | Remove unused TALLOC_CTX from responder_get_domain() | Sumit Bose | 2013-05-02 | 1 | -4/+2 |
| | | | | | | Recent refactoring removed the need to copy the domain info data of sub-domains because the related objects will not be removed from memory anymore. | ||||
* | Add function get_next_domain() | Simo Sorce | 2013-02-10 | 1 | -5/+5 |
| | | | | | | | Use this function instead of explicitly calling domain->next This function allows to get the next primary domain or to descend into the subdomains and replaces also get_next_dom_or_subdom() | ||||
* | Check that strings do not go beyond the end of the packet body in autofs and ↵ | Jan Cholasta | 2013-01-23 | 1 | -4/+4 |
| | | | | | | | | SSH requests. This fixes CVE-2013-0220. https://fedorahosted.org/sssd/ticket/1781 | ||||
* | Add domain arguments to sysdb ssh functions | Simo Sorce | 2013-01-15 | 1 | -3/+4 |
| | |||||
* | Add domain argument to sysdb_get_user_attr() | Simo Sorce | 2013-01-15 | 1 | -1/+1 |
| | |||||
* | SSH: Reject requests for authorized keys of root | Jan Cholasta | 2012-12-10 | 1 | -0/+5 |
| | | | | https://fedorahosted.org/sssd/ticket/1687 | ||||
* | Fix uninitialized pointer read in ssh_host_pubkeys_update_known_hosts | Jakub Hrozek | 2012-10-09 | 1 | -1/+2 |
| | |||||
* | SSH: Expire hosts in known_hosts | Jan Cholasta | 2012-10-05 | 1 | -1/+9 |
| | |||||
* | SSH: Refactor sysdb and related code | Jan Cholasta | 2012-10-05 | 1 | -71/+51 |
| | |||||
* | Add new option default_domain_suffix | Sumit Bose | 2012-10-01 | 1 | -1/+2 |
| | |||||
* | SSH: Fix possible infinite loop when updating known_hosts | Jan Cholasta | 2012-09-20 | 1 | -3/+1 |
| | |||||
* | SSH: Simplify public key formatting function | Jan Cholasta | 2012-09-04 | 1 | -4/+2 |
| | |||||
* | SSH: Return error code in SSH utility functions | Jan Cholasta | 2012-09-04 | 1 | -6/+7 |
| | |||||
* | Make re_expression and full_name_format per domain options | Stef Walter | 2012-06-12 | 1 | -2/+2 |
| | | | | | | | | | | | * Allows different user/domain qualified names for different domains. For example Domain\User or user@domain. * The global re_expression and full_name_format options remain as defaults for the domains. * Subdomains get the re_expression and full_name_format of their parent domain. https://bugzilla.redhat.com/show_bug.cgi?id=811663 | ||||
* | SSH: Add dp_get_host_send to common responder code | Jakub Hrozek | 2012-05-03 | 1 | -8/+6 |
| | | | | | | | | Instead of using account_info request, creates a new ssh specific request. This improves code readability and will make the code more flexible in the future. https://fedorahosted.org/sssd/ticket/1176 | ||||
* | SSH: return NULL on error in ssh_host_pubkeys_format_known_host_plain | Jakub Hrozek | 2012-05-02 | 1 | -1/+2 |
| | | | | | The 'result' pointer must be initialized tin order to always return a defined value. | ||||
* | SSH: Add support for hashed known_hosts | Jan Cholasta | 2012-04-24 | 1 | -36/+156 |
| | | | | https://fedorahosted.org/sssd/ticket/1203 | ||||
* | Modified responder_get_domain() | Jan Zeleny | 2012-04-24 | 1 | -2/+2 |
| | | | | Now it checks for subdomains as well as for the domain itself | ||||
* | Convert read and write operations to sss_atomic_read | Jakub Hrozek | 2012-04-20 | 1 | -1/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/1209 | ||||
* | SSH: Allow clients to explicitly specify host alias | Jan Cholasta | 2012-03-15 | 1 | -59/+38 |
| | | | | | This change removes the need to canonicalize host names on the responder side - the relevant code was removed. | ||||
* | SSH: Fix missing semicolon | Stephen Gallagher | 2012-03-09 | 1 | -1/+1 |
| | |||||
* | Add umask before mkstemp() call in SSH responder | Jan Zeleny | 2012-03-09 | 1 | -0/+3 |
| | |||||
* | Remove sysdb_get_ctx_from_list() | Sumit Bose | 2012-02-29 | 1 | -8/+6 |
| | |||||
* | SSH: Replace blocking getaddrinfo call in the responder with asynchronous ↵ | Jan Cholasta | 2012-02-27 | 1 | -26/+48 |
| | | | | resolver code | ||||
* | SSH: Use fchmod instead of chmod on known_hosts file | Jan Cholasta | 2012-02-27 | 1 | -8/+4 |
| | |||||
* | SSH: Add more debugging messages | Jan Cholasta | 2012-02-27 | 1 | -0/+8 |
| | |||||
* | SSH: Don't abort known_hosts update when host search fails | Jan Cholasta | 2012-02-27 | 1 | -1/+1 |
| | |||||
* | SSH: Manage global known_hosts file in the responder | Jan Cholasta | 2012-02-26 | 1 | -0/+131 |
| | | | | https://fedorahosted.org/sssd/ticket/1193 | ||||
* | SSH: Save SSH host name aliases | Jan Cholasta | 2012-02-26 | 1 | -1/+25 |
| | |||||
* | SSH: Verify that names received from client are valid UTF-8 in responder | Jan Cholasta | 2012-02-13 | 1 | -0/+4 |
| | | | | | | | Also added a comment describing the wire format of client requests and responses. https://fedorahosted.org/sssd/ticket/1177 | ||||
* | Fix SSH compilation on RHEL5 | Jakub Hrozek | 2012-02-07 | 1 | -0/+3 |
| | |||||
* | SSH: Responder | Jan Cholasta | 2012-02-07 | 1 | -0/+631 |