Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Move SELinux processing from session to account PAM stack | Timo Aaltonen | 2012-09-07 | 1 | -66/+66 |
| | | | | | | | Stops the session stack from returning an error when SELinux is not used. Partial backport from commit 7016947229edcaa268a82bf69fde37e521b13233 | ||||
* | Use PTHREAD_MUTEX_ROBUST to avoid deadlock in the client | Jakub Hrozek | 2012-09-07 | 1 | -6/+90 |
| | | | | https://fedorahosted.org/sssd/ticket/1460 | ||||
* | Do not send SIGPIPE on disconnection | Shantanu Goel | 2012-06-18 | 1 | -6/+21 |
| | | | | | | | | Note we set MSG_NOSIGNAL to avoid having to fiddle with signal masks but also do not want to die in case SIGPIPE gets raised and the application does not handle it. | ||||
* | Set return errno to the value prior to calling close(). | Shantanu Goel | 2012-06-18 | 1 | -2/+2 |
| | |||||
* | Provide "service filter" for SELinux context | Jan Zeleny | 2012-06-14 | 1 | -0/+28 |
| | | | | | | | At this moment we will support only asterisk, designating "all services". https://fedorahosted.org/sssd/ticket/1360 | ||||
* | Use HTML_TIMESTAMP instead of HTML_FOOTER_DESCRIPTION | Jakub Hrozek | 2012-06-13 | 1 | -3/+4 |
| | | | | https://fedorahosted.org/sssd/ticket/1271 | ||||
* | SSH: Don't abort connection in sss_ssh_knownhostsproxy when DNS records are ↵ | Jan Cholasta | 2012-05-31 | 1 | -36/+49 |
| | | | | | | missing https://fedorahosted.org/sssd/ticket/1356 | ||||
* | SSH: Supress error message output in sss_ssh_knownhostsproxy | Jan Cholasta | 2012-05-31 | 2 | -15/+8 |
| | |||||
* | Revert the client packet length, too, after reverting the packet protocol | Jakub Hrozek | 2012-05-29 | 1 | -1/+1 |
| | |||||
* | NSS: Restore original protocol for getservbyport | Stephen Gallagher | 2012-05-25 | 1 | -2/+3 |
| | | | | When fixing an endianness bug, we changed the protocol unnecessarily. | ||||
* | Send 16bit protocol numbers from the sss_client | Jakub Hrozek | 2012-05-25 | 1 | -6/+7 |
| | | | | https://fedorahosted.org/sssd/ticket/1348 | ||||
* | autofs: Raise the maximum key length to PATH_MAX | Jakub Hrozek | 2012-04-18 | 1 | -2/+4 |
| | | | | https://fedorahosted.org/sssd/ticket/1300 | ||||
* | sudo api: check sss_status instead of errnop in sss_sudo_send_recv_generic() | Pavel Březina | 2012-04-18 | 1 | -2/+4 |
| | |||||
* | pam_sss: improve error handling in SELinux code | Jakub Hrozek | 2012-04-18 | 1 | -3/+5 |
| | |||||
* | Silence Coverity warning in the autofs test tool | Jakub Hrozek | 2012-03-28 | 1 | -8/+22 |
| | | | | https://fedorahosted.org/sssd/ticket/1237 | ||||
* | AUTOFS: fix copy-and-paste bug in the autofs client | Jakub Hrozek | 2012-03-26 | 1 | -1/+1 |
| | |||||
* | SSH: Fix infinite loop in sss_ssh_knownhostsproxy | Jan Cholasta | 2012-03-20 | 1 | -6/+9 |
| | | | | https://fedorahosted.org/sssd/ticket/1268 | ||||
* | SSH: Canonicalize host name and do reverse DNS lookup in sss_ssh_knownhostsproxy | Jan Cholasta | 2012-03-15 | 1 | -26/+38 |
| | | | | https://fedorahosted.org/sssd/ticket/1245 | ||||
* | SSH: Allow clients to explicitly specify host alias | Jan Cholasta | 2012-03-15 | 4 | -6/+25 |
| | | | | | This change removes the need to canonicalize host names on the responder side - the relevant code was removed. | ||||
* | Fixed resource leak in ssh client code | Jan Zeleny | 2012-03-09 | 1 | -0/+1 |
| | |||||
* | Fixed uninitialized pointer in SSH authorized keys client | Jan Zeleny | 2012-03-09 | 1 | -1/+1 |
| | |||||
* | Fixed uninitialized pointer in SSH known host proxy | Jan Zeleny | 2012-03-09 | 1 | -1/+1 |
| | |||||
* | Use of unininitialized value in sss_sudo_parse_response | Pavel Březina | 2012-03-09 | 1 | -0/+2 |
| | | | | https://fedorahosted.org/sssd/ticket/1231 | ||||
* | Two memory leaks in sss_sudo_get_values | Pavel Březina | 2012-03-09 | 1 | -1/+4 |
| | | | | https://fedorahosted.org/sssd/ticket/1235 | ||||
* | Only free returned values on success | Jakub Hrozek | 2012-03-08 | 1 | -3/+3 |
| | | | | https://fedorahosted.org/sssd/ticket/1237 | ||||
* | Autofs: operate on contents of double-pointer, not address | Jakub Hrozek | 2012-03-08 | 1 | -3/+3 |
| | | | | https://fedorahosted.org/sssd/ticket/1234 | ||||
* | SSH: Remove unused --file option of sss_ssh_knownhostsproxy | Jan Cholasta | 2012-02-27 | 1 | -5/+0 |
| | |||||
* | SSH: Add more debugging messages | Jan Cholasta | 2012-02-27 | 2 | -4/+18 |
| | |||||
* | SSH: Manage global known_hosts file in the responder | Jan Cholasta | 2012-02-27 | 1 | -78/+2 |
| | | | | https://fedorahosted.org/sssd/ticket/1193 | ||||
* | SSH: Continue connecting to SSH server even when SSSD is not running in ↵ | Jan Cholasta | 2012-02-27 | 1 | -112/+85 |
| | | | | | | | | | | sss_ssh_knownhostsproxy Additionally, don't drop the connection when the sss_ssh_knownhostsproxy process receives a signal. https://fedorahosted.org/sssd/ticket/1179 https://fedorahosted.org/sssd/ticket/1184 | ||||
* | SSH: Refactor responder and client common code | Jan Cholasta | 2012-02-27 | 4 | -177/+72 |
| | |||||
* | AUTOFS: speed up the client by requesting multiple entries at once | Jakub Hrozek | 2012-02-27 | 1 | -44/+160 |
| | | | | https://fedorahosted.org/sssd/ticket/1166 | ||||
* | pam_sss: keep selinux optional | Simo Sorce | 2012-02-23 | 1 | -0/+6 |
| | | | | Signed-off-by: Stephen Gallagher <sgallagh@redhat.com> | ||||
* | nss_group: Cache the result from sssd when the glibc provided buffer is too ↵ | Simo Sorce | 2012-02-23 | 1 | -8/+145 |
| | | | | small. | ||||
* | Refactor sss_result into sss_sudo_result | Pavel Březina | 2012-02-14 | 5 | -36/+38 |
| | | | | https://fedorahosted.org/sssd/ticket/1159 | ||||
* | Fix missing NULL check after malloc | Stephen Gallagher | 2012-02-13 | 1 | -0/+4 |
| | | | | Coverity #12528 | ||||
* | SSH: Verify that names received from client are valid UTF-8 in responder | Jan Cholasta | 2012-02-13 | 1 | -0/+17 |
| | | | | | | | Also added a comment describing the wire format of client requests and responses. https://fedorahosted.org/sssd/ticket/1177 | ||||
* | Fix SSH compilation on RHEL5 | Jakub Hrozek | 2012-02-07 | 1 | -1/+3 |
| | |||||
* | Make sudo installation path configurable, install into libdir by default | Jakub Hrozek | 2012-02-07 | 1 | -1/+1 |
| | |||||
* | SSH: OpenSSH known_hosts client | Jan Cholasta | 2012-02-07 | 1 | -0/+401 |
| | |||||
* | SSH: OpenSSH authorized_keys client | Jan Cholasta | 2012-02-07 | 1 | -0/+130 |
| | |||||
* | SSH: Common client code | Jan Cholasta | 2012-02-07 | 4 | -0/+372 |
| | |||||
* | SSH: Responder | Jan Cholasta | 2012-02-07 | 1 | -0/+4 |
| | |||||
* | SELinux support in PAM module | Jan Zeleny | 2012-02-06 | 1 | -1/+60 |
| | |||||
* | SELinux support in PAM responder | Jan Zeleny | 2012-02-06 | 1 | -0/+4 |
| | |||||
* | AUTOFS: a command-line test client | Jakub Hrozek | 2012-02-05 | 1 | -0/+116 |
| | | | | | | | | A very simply binary that can be used to test getting data from the library via SSSD in pretty much the same way SSSD would. A required positional parameter specifies the map name and the tool would print out all the key/value pairs using _sss_getautomntent_r(). You can also specify -n to query a specific key using _sss_getautomntbyname_r(). | ||||
* | AUTOFS: a client library | Jakub Hrozek | 2012-02-05 | 5 | -0/+451 |
| | | | | | | | | | | | | | | | This is the library the autofs client is using. automounter dlopen()s the library so there is no header file, no pkgconfig file and the library is in the libsss_autofs package, not in -devel. The library provides the following interface: * _sss_setautomntent() - select the map for processing * _sss_getautomntent_r() - iterates through key/value pairs in the selected map. The key is usually the mount point, the value is mount information (server:/export) * _sss_getautomntbyname_r() - returns value for a specific key. * _sss_endautomntent() deselect a map, clean up | ||||
* | SUDO: Provide documentation for the SUDO API | Jakub Hrozek | 2012-01-30 | 2 | -0/+1658 |
| | |||||
* | Fix sudo compilation on RHEL5 | Jakub Hrozek | 2012-01-30 | 2 | -0/+3 |
| | |||||
* | SUDO Integration - test client changed | Pavel Březina | 2012-01-27 | 1 | -78/+13 |
| | | | | | | | Without user name given it displays cn=defaults record. Client no longer display raw data. https://fedorahosted.org/sssd/ticket/1143 |