sssd.git - sssd with jhrozek's patches

	Commit message (Collapse)	Author	Age	Files	Lines
...
*	sysdb: convert sysdb_mod/add/remove_group_member	Simo Sorce	2010-04-12	1	-36/+6
\|
*	sysdb: convert sysdb_store/add(_basic)_group	Simo Sorce	2010-04-12	1	-56/+9
\|
*	sysdb: convert sysdb_store/add(_basic)_user	Simo Sorce	2010-04-12	1	-43/+9
\|
*	sysdb: convert sysdb_set_entry/user/group_attr	Simo Sorce	2010-04-12	1	-18/+3
\|
*	sysdb: convert sysdb_search_group_by_name/gid	Simo Sorce	2010-04-12	1	-120/+63
\|
*	sysdb: convert sysdb_search_entry and sysdb_delete_recursive	Simo Sorce	2010-04-12	1	-37/+6
\|
*	sysdb: convert sysdb_delete_custom	Simo Sorce	2010-04-12	1	-18/+2
\|
*	sysdb: convert sysdb_delete_entry	Stephen Gallagher	2010-04-12	1	-36/+2
\|
*	Protect against check-and-open race conditions	Stephen Gallagher	2010-04-06	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	There is a small window between running lstat() on a filename and opening it where it's possible for the file to have been modified. We were protecting against this by saving the stat data from the original file and verifying that it was the same file (by device and inode) when we opened it again, but this is an imperfect solution, as it is still possible for an attacker to modify the permissions during this window. It is much better to simply open the file and test on the active file descriptor. Resolves https://fedorahosted.org/sssd/ticket/425 incidentally, as without the initial lstat, we are implicitly accepting symlinks and only verifying the target file.
*	Add a test for domain_to_basedn()	Sumit Bose	2010-03-25	1	-0/+47
\|
*	Regression test against RHBZ #576856	Jakub Hrozek	2010-03-25	1	-0/+2
\|
*	Fix build when check-devel is not installed	Stephen Gallagher	2010-03-12	2	-82/+109
\| \| \| \| \|	tests/common.c is now required by all tests (check-based and not), so we need to properly ifdef it
*	Add expandable sequences to krb5_ccachedir	Sumit Bose	2010-03-11	1	-92/+470
\| \| \| \| \| \| \|	As with krb5_ccname_template sequences like %u can be used in the krb5_ccachedir parameter which are expanded at runtime. If the directory does not exist, it will be created. Depending on the used sequences it is created as a public or private directory.
*	Add simple access provider	Sumit Bose	2010-03-08	1	-0/+173
\|
*	Do not run negative resolv test with no network	Jakub Hrozek	2010-03-08	1	-3/+73
\| \| \| \| \| \|	One of our resolv tests tries to resolve a nonexistent hostname. Do not run this test unless we are explicitly told that a network connection is available (-n). Also do not automatically resolving localhost.
*	Add forgotten \n in DEBUG statements	Martin Nagy	2010-03-04	2	-3/+3
\| \| \| \| \| \|	Logs from confdb with missing '\n' in the DEBUG statements annoyed me so I decided to fix them. I also made a quick grep through the code and found other places so I fixed them too.
*	Add --with-test-dir option to configure	Stephen Gallagher	2010-03-04	15	-1/+58
\| \| \| \| \| \|	All 'make check' tests will chdir() into this directory before running the suite. This provides the option of having temporary files generated in a tmpfs or ramdisk
*	Check and set permissions on SBUS sockets	Sumit Bose	2010-02-23	2	-9/+10
\|
*	Restrict family lookups	Jakub Hrozek	2010-02-22	2	-7/+21
\| \| \| \| \| \| \|	Adds a new option that tells resolver which address family to prefer or use exclusively. Fixes: #404
*	Remove unneeded items from struct pam_data	Sumit Bose	2010-02-19	1	-2/+2
\|
*	Fix licensing issues in SSSD	Stephen Gallagher	2010-02-18	1	-0/+24
\|
*	Rename server/ directory to src/	Stephen Gallagher	2010-02-18	16	-0/+7777
	Also update BUILD.txt