sssd.git - sssd with jhrozek's patches

	Commit message (Collapse)	Author	Age	Files	Lines
...
*	Clean up kdcinfo and kpasswdinfo files when exiting	Stephen Gallagher	2010-05-07	2	-1/+2
\|
*	Support SRV servers in failover	Jakub Hrozek	2010-04-30	1	-0/+16
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Adds a new failover API call fo_add_srv_server that allows the caller to specify a server that is later resolved into a list of specific servers using SRV requests. Also adds a new failover option that specifies how often should the servers resolved from SRV query considered valid until we need a refresh. The "real" servers to connect to are returned to the user as usual, using the fo_resolve_service_{send,recv} calls. Make SRV resolution work with c-ares 1.6
*	Avoid accessing half-deallocated memory when using talloc_zfree macro.	eindenbom	2010-04-16	1	-1/+5
\| \| \| \| \| \|	The correct memory deallocation sequence is: - clear pointer to memory first - then deallocate memory
*	Protect against check-and-open race conditions	Stephen Gallagher	2010-04-06	2	-28/+77
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	There is a small window between running lstat() on a filename and opening it where it's possible for the file to have been modified. We were protecting against this by saving the stat data from the original file and verifying that it was the same file (by device and inode) when we opened it again, but this is an imperfect solution, as it is still possible for an attacker to modify the permissions during this window. It is much better to simply open the file and test on the active file descriptor. Resolves https://fedorahosted.org/sssd/ticket/425 incidentally, as without the initial lstat, we are implicitly accepting symlinks and only verifying the target file.
*	Allow arbitrary-length PAM messages	Stephen Gallagher	2010-03-25	1	-3/+8
\| \| \| \| \| \| \| \| \|	The PAM standard allows for messages of any length to be returned to the client. We were discarding all messages of length greater than 255. This patch dynamically allocates the message buffers so we can pass the complete message. This resolves https://fedorahosted.org/sssd/ticket/432
*	Reopen logs when SIGHUP is caught	Jakub Hrozek	2010-03-08	3	-0/+33
\| \| \| \| \| \| \| \|	Upon receiving SIGHUP, the monitor signals all services to reopen their debug logs. It is also possible to signal individual services to reopen their particular files. Fixes: #332
*	Fix debug_timestamps	Simo Sorce	2010-03-04	1	-0/+1
\| \| \| \| \|	It was broken when the default was changed, making it impossible to silence from the config file.
*	Improve safe alignment buffer handling macros	Simo Sorce	2010-03-03	1	-15/+24
\| \| \| \| \| \| \| \| \|	Make the counter optional so that alignment safe macros can be used also where there is no counter to update. Change arguments names so that they are not deceiving (ptr normlly identify a pointer) Turn the memcpy substitute into an inline function so that passing a pointer to rp and checking for it doesn't make the compiler spit lots of warnings.
*	Check and set permissions on SBUS sockets	Sumit Bose	2010-02-23	2	-15/+89
\|
*	Fix licensing issues in SSSD	Stephen Gallagher	2010-02-18	1	-0/+24
\|
*	Rename server/ directory to src/	Stephen Gallagher	2010-02-18	26	-0/+3488
	Also update BUILD.txt