summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Add regression test for https://fedorahosted.org/sssd/ticket/441Stephen Gallagher2010-03-312-0/+6
|
* Fix typo in ldap_id_use_start_tls option descriptionStephen Gallagher2010-03-311-1/+1
|
* Allow arbitrary-length PAM messagesStephen Gallagher2010-03-257-43/+55
| | | | | | | | | The PAM standard allows for messages of any length to be returned to the client. We were discarding all messages of length greater than 255. This patch dynamically allocates the message buffers so we can pass the complete message. This resolves https://fedorahosted.org/sssd/ticket/432
* Add a test for domain_to_basedn()Sumit Bose2010-03-251-0/+47
|
* Fix LDAP search paths for IPA HBACSumit Bose2010-03-256-43/+84
| | | | | | - use domain_to_basedn() to construct LDAP search paths for IPA HBAC - move domain_to_basedn() to a separate file to simplify the build of a test
* Add krb5_kpasswd to IPA providerEugene Indenbom2010-03-252-2/+3
| | | | The krb5 options were out of sync, causing a runtime abort.
* Regression test against RHBZ #576856Jakub Hrozek2010-03-253-5/+7
|
* Allow running with read only rootJakub Hrozek2010-03-252-1/+2
| | | | | | | Packages /etc/rwtab.d/sssd file that allows SSSD to run on a read-only root filesystem. Fixes: #428
* Fix warnings from -Wmissing-field-initializersSumit Bose2010-03-257-26/+28
| | | | This patch removes some tab-indentations from pamsrv.c, too.
* Set LDAP_OPT_RESTART for ldap_sasl_interactive_bind_s()Sumit Bose2010-03-251-0/+7
| | | | | | | This option is needed for the rare case where a poll() call during ldap_sasl_interactive_bind_s() is interrupted by a signal. LDAP_OPT_RESTART enables the handling of the EINTR error instead of returning an error.
* Fix kinit after password changeSumit Bose2010-03-251-2/+6
| | | | | | | | | | In an environment with slave KDCs and a central server where password changes are allowed the request for a new TGT immediately after the password change should be made against this server, because the slave server might not know the new password. To achieve this the Kerberos localtor plugin now returns the address of the kpasswd server as master_kdc.
* Update zh_TW translationCheng-Chia Tseng2010-03-221-69/+101
|
* Improvements for LDAP Password Policy supportRalf Haferkamp2010-03-226-20/+201
| | | | | | | | Display warnings about remaining grace logins and password expiration to the user, when LDAP Password Policies are used. Improved detection if LDAP Password policies are supported by LDAP Server.
* Ensure the SSSDConfig creates sssd.conf with the correct modeStephen Gallagher2010-03-222-4/+87
|
* Lower debug level of unexpected LDAP result codesSumit Bose2010-03-221-0/+5
|
* Add generic error messageJakub Hrozek2010-03-221-0/+4
|
* Fix config file error messageJakub Hrozek2010-03-222-2/+2
|
* Fix multiple errors with destructors.Simo Sorce2010-03-191-2/+22
| | | | | | | | | | | | | | | | | This commits cleans up 3 segfaults/valgrind errors due to access to freed memory. 1. The spy wasn't clearing conn_spy causing the svc_destructor to try to clear the spy destructor when the spy was already freed 2. get_config_service was not setting the svc_destrcutor on services depending on the orderof frees at exit this was causing the spy destructor to try to access freed memory because it was not neutralized when the service was freed. 3. at exit the mt_ctx could be freed before services causing the svc_destrcutor to try to access freed memory when removing the service from the service list in the monitor context.
* Fix invalid read cause by premature free of tmpctxSimo Sorce2010-03-191-13/+10
|
* Add translated help text for ldap_tls_cacertdirStephen Gallagher2010-03-181-1/+2
|
* Add missing ldap_tls_cacertdir option to SSSDConfig APIStephen Gallagher2010-03-181-0/+1
|
* Update PT translationRui Gouveia2010-03-181-8/+8
|
* Fix error message for ldap_start_tlsStephen Gallagher2010-03-181-1/+1
|
* Fix a series of memory leaks in the SBUSStephen Gallagher2010-03-175-17/+30
|
* Add UK translationYuri Chornoivan2010-03-172-0/+877
|
* use logfiles for debug messagesRalf Haferkamp2010-03-171-1/+1
|
* Fixes for client communicationSumit Bose2010-03-172-9/+17
| | | | | | | - catch all errors of send() and recv(), not only EAGAIN - check if send() or recv() return EWOULDBLOCK or EINTR - remove unused parameter from client_send() and client_recv() - fix a debugging message
* Fixed buffer alignment in exchange_credentials().George McCollister2010-03-152-8/+16
| | | | | | buf needs to be 32 bit aligned on ARM. Also made the fix on the server side. Signed-off-by: George McCollister <George.McCollister@gmail.com>
* Fix segfault in the locator pluginJakub Hrozek2010-03-151-25/+26
|
* Updating PT translation for 1.1.0Rui Gouveia2010-03-151-0/+5
|
* Updating ES translation for 1.1.0Héctor Daniel Cabrera2010-03-151-2/+7
|
* Updating PL translation for 1.1.0Piotr Drąg2010-03-151-2/+6
|
* Properly handle dbus send attempts on a closed connectionStephen Gallagher2010-03-157-133/+109
| | | | | | | | dbus_connection_send_with_reply() will report success and return a NULL pending_reply when the connection is not open for communication. This patch creates a new wrapper around dbus_connection_send_with_reply() to properly detect this condition and report it as an error.
* Updating translation files for string freeze.Stephen Gallagher2010-03-1512-24/+72
|
* Prompt for old password even when running as rootRalf Haferkamp2010-03-151-2/+4
| | | | | When changing an expired password (during e.g. login) the PAM module needs to prompt for the old password even when running as root.
* Warn user about an expired passwordRalf Haferkamp2010-03-151-1/+6
|
* Fixed authentication check for CHAUTHTOK_PRELIMRalf Haferkamp2010-03-151-1/+1
| | | | | When changing passwords, treat SDAP_AUTH_PW_EXPIRED as a successful authentication in SSS_PAM_CHAUTHTOK_PRELIM.
* Fixed check for expired passwordsRalf Haferkamp2010-03-151-2/+4
| | | | | | When the user's password is expired it might also be indicated by the bind operation returning "INVALID_CREDENTIALS" with the ppolicy control's errorcode set to "PP_passwordExpired".
* Updating zh_TW translationCheng-Chia Tseng2010-03-151-144/+165
|
* Update translations for string freezeStephen Gallagher2010-03-1512-577/+697
|
* Remove unused M4 codeJakub Hrozek2010-03-151-14/+0
|
* Flush NSCD cache after modifying local databaseJakub Hrozek2010-03-159-1/+153
| | | | Fixes: #221
* Add krb5_kpasswd optionSumit Bose2010-03-1212-71/+373
|
* Fix build when check-devel is not installedStephen Gallagher2010-03-124-86/+115
| | | | | tests/common.c is now required by all tests (check-based and not), so we need to properly ifdef it
* Write the IP address of the KDC to the kdcinfo fileSumit Bose2010-03-113-58/+63
|
* Add expandable sequences to krb5_ccachedirSumit Bose2010-03-118-114/+773
| | | | | | | As with krb5_ccname_template sequences like %u can be used in the krb5_ccachedir parameter which are expanded at runtime. If the directory does not exist, it will be created. Depending on the used sequences it is created as a public or private directory.
* Fix memberof calculation when deleting groupsSimo Sorce2010-03-111-0/+5
| | | | | | With complex hierarchies it could happen that the group just deleted was re-added by mistake to the list of groups a user is member of, causing the user to have a stray memberof value in its entry.
* Updating PL translationPiotr Drąg2010-03-111-27/+28
|
* Updating PT translationRui Gouveia2010-03-111-27/+27
|
* Add better checks on PAM socketSumit Bose2010-03-114-5/+266
| | | | | - check if the public socket belongs to root and has 0666 permissions - use a SCM_CREDENTIALS message if available
generated by cgit (git 2.34.1) at 2024-11-15 20:17:30 +0000