Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | SSH: Ensure that cmd_ctx->name will not be NULL. | Lukas Slebodnik | 2013-08-05 | 1 | -4/+6 |
| | | | | | | | | If cmd_ctx->name was not initialized by sss_parse_name then copy of name will be used. https://fedorahosted.org/sssd/ticket/1970 Coverity ID: 11647 | ||||
* | SSH: Update known_hosts file after unsuccessful requests as well. | Jan Cholasta | 2013-06-27 | 1 | -20/+36 |
| | | | | https://fedorahosted.org/sssd/ticket/1949 | ||||
* | SSH: Do not skip domains with use_fully_qualified_names in host key requests | Jan Cholasta | 2013-05-07 | 1 | -6/+0 |
| | |||||
* | SSH: Use separate field for domain name in client requests | Jan Cholasta | 2013-05-07 | 1 | -27/+64 |
| | | | | | Instead of appending @domain to names when the --domain option of sss_ssh_* is used, put domain name in a separate field in client requests. | ||||
* | SSH: Fix parsing of names from client requests | Jan Cholasta | 2013-05-07 | 1 | -3/+20 |
| | | | | | | Try to parse names in the form user@domain first, as that's what sss_ssh_* send in requests when the --domain option is used. Do not parse host names using domain-specific regular expression. | ||||
* | Remove unused TALLOC_CTX from responder_get_domain() | Sumit Bose | 2013-05-02 | 1 | -4/+2 |
| | | | | | | Recent refactoring removed the need to copy the domain info data of sub-domains because the related objects will not be removed from memory anymore. | ||||
* | Add function get_next_domain() | Simo Sorce | 2013-02-10 | 1 | -5/+5 |
| | | | | | | | Use this function instead of explicitly calling domain->next This function allows to get the next primary domain or to descend into the subdomains and replaces also get_next_dom_or_subdom() | ||||
* | Check that strings do not go beyond the end of the packet body in autofs and ↵ | Jan Cholasta | 2013-01-23 | 1 | -4/+4 |
| | | | | | | | | SSH requests. This fixes CVE-2013-0220. https://fedorahosted.org/sssd/ticket/1781 | ||||
* | Add domain arguments to sysdb ssh functions | Simo Sorce | 2013-01-15 | 1 | -3/+4 |
| | |||||
* | Add domain argument to sysdb_get_user_attr() | Simo Sorce | 2013-01-15 | 1 | -1/+1 |
| | |||||
* | SSH: Reject requests for authorized keys of root | Jan Cholasta | 2012-12-10 | 1 | -0/+5 |
| | | | | https://fedorahosted.org/sssd/ticket/1687 | ||||
* | Fix uninitialized pointer read in ssh_host_pubkeys_update_known_hosts | Jakub Hrozek | 2012-10-09 | 1 | -1/+2 |
| | |||||
* | SSH: Expire hosts in known_hosts | Jan Cholasta | 2012-10-05 | 1 | -1/+9 |
| | |||||
* | SSH: Refactor sysdb and related code | Jan Cholasta | 2012-10-05 | 1 | -71/+51 |
| | |||||
* | Add new option default_domain_suffix | Sumit Bose | 2012-10-01 | 1 | -1/+2 |
| | |||||
* | SSH: Fix possible infinite loop when updating known_hosts | Jan Cholasta | 2012-09-20 | 1 | -3/+1 |
| | |||||
* | SSH: Simplify public key formatting function | Jan Cholasta | 2012-09-04 | 1 | -4/+2 |
| | |||||
* | SSH: Return error code in SSH utility functions | Jan Cholasta | 2012-09-04 | 1 | -6/+7 |
| | |||||
* | Make re_expression and full_name_format per domain options | Stef Walter | 2012-06-12 | 1 | -2/+2 |
| | | | | | | | | | | | * Allows different user/domain qualified names for different domains. For example Domain\User or user@domain. * The global re_expression and full_name_format options remain as defaults for the domains. * Subdomains get the re_expression and full_name_format of their parent domain. https://bugzilla.redhat.com/show_bug.cgi?id=811663 | ||||
* | SSH: Add dp_get_host_send to common responder code | Jakub Hrozek | 2012-05-03 | 1 | -8/+6 |
| | | | | | | | | Instead of using account_info request, creates a new ssh specific request. This improves code readability and will make the code more flexible in the future. https://fedorahosted.org/sssd/ticket/1176 | ||||
* | SSH: return NULL on error in ssh_host_pubkeys_format_known_host_plain | Jakub Hrozek | 2012-05-02 | 1 | -1/+2 |
| | | | | | The 'result' pointer must be initialized tin order to always return a defined value. | ||||
* | SSH: Add support for hashed known_hosts | Jan Cholasta | 2012-04-24 | 1 | -36/+156 |
| | | | | https://fedorahosted.org/sssd/ticket/1203 | ||||
* | Modified responder_get_domain() | Jan Zeleny | 2012-04-24 | 1 | -2/+2 |
| | | | | Now it checks for subdomains as well as for the domain itself | ||||
* | Convert read and write operations to sss_atomic_read | Jakub Hrozek | 2012-04-20 | 1 | -1/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/1209 | ||||
* | SSH: Allow clients to explicitly specify host alias | Jan Cholasta | 2012-03-15 | 1 | -59/+38 |
| | | | | | This change removes the need to canonicalize host names on the responder side - the relevant code was removed. | ||||
* | SSH: Fix missing semicolon | Stephen Gallagher | 2012-03-09 | 1 | -1/+1 |
| | |||||
* | Add umask before mkstemp() call in SSH responder | Jan Zeleny | 2012-03-09 | 1 | -0/+3 |
| | |||||
* | Remove sysdb_get_ctx_from_list() | Sumit Bose | 2012-02-29 | 1 | -8/+6 |
| | |||||
* | SSH: Replace blocking getaddrinfo call in the responder with asynchronous ↵ | Jan Cholasta | 2012-02-27 | 1 | -26/+48 |
| | | | | resolver code | ||||
* | SSH: Use fchmod instead of chmod on known_hosts file | Jan Cholasta | 2012-02-27 | 1 | -8/+4 |
| | |||||
* | SSH: Add more debugging messages | Jan Cholasta | 2012-02-27 | 1 | -0/+8 |
| | |||||
* | SSH: Don't abort known_hosts update when host search fails | Jan Cholasta | 2012-02-27 | 1 | -1/+1 |
| | |||||
* | SSH: Manage global known_hosts file in the responder | Jan Cholasta | 2012-02-26 | 1 | -0/+131 |
| | | | | https://fedorahosted.org/sssd/ticket/1193 | ||||
* | SSH: Save SSH host name aliases | Jan Cholasta | 2012-02-26 | 1 | -1/+25 |
| | |||||
* | SSH: Verify that names received from client are valid UTF-8 in responder | Jan Cholasta | 2012-02-13 | 1 | -0/+4 |
| | | | | | | | Also added a comment describing the wire format of client requests and responses. https://fedorahosted.org/sssd/ticket/1177 | ||||
* | Fix SSH compilation on RHEL5 | Jakub Hrozek | 2012-02-07 | 1 | -0/+3 |
| | |||||
* | SSH: Responder | Jan Cholasta | 2012-02-07 | 1 | -0/+631 |