summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* LDAP: Errors retrieving the RootDSE should not be fatalsssd-1.8.0-16.el6Stephen Gallagher2012-03-161-15/+8
| | | | | | | | If we can't reach the RootDSE, let's just proceed as if it's unavailable with reasonable defaults. If we fail later on, that's fine. Fixes https://fedorahosted.org/sssd/ticket/1257
* SYSDB: Save only lowercased aliases in case-insensitive domainsStephen Gallagher2012-03-161-19/+28
| | | | https://fedorahosted.org/sssd/ticket/1253
* SSH: Canonicalize host name and do reverse DNS lookupJan Cholasta2012-03-167-98/+100
| | | | | | | | | | | SSH: Allow clients to explicitly specify host alias This change removes the need to canonicalize host names on the responder side - the relevant code was removed. SSH: Canonicalize host name and do reverse DNS lookup in sss_ssh_knownhostsproxy https://fedorahosted.org/sssd/ticket/1245
* Save original name into the in-memory cacheJakub Hrozek2012-03-161-1/+1
|
* IPA: Initialize hbac_ctx to NULLsssd-1.8.0-15.el6Stephen Gallagher2012-03-121-1/+1
|
* Update translations for RHEL 6.3Stephen Gallagher2012-03-1246-465/+20979
| | | | | | | | Include new manpages in translations Updating translations for SSSD 1.8.1 Fix validation errors in translations
* Handle errors from lookup_netgr_step gracefullyJakub Hrozek2012-03-121-3/+10
|
* Fix netgroup error handlingsssd-1.8.0-12.el6Jakub Hrozek2012-03-091-20/+65
| | | | | | https://fedorahosted.org/sssd/ticket/1242 Handle empty elements in proxy netgroups:
* PROXY: Create fake user entries for group lookupsStephen Gallagher2012-03-091-3/+85
|
* Fix nested groups processingJakub Hrozek2012-03-091-27/+61
| | | | | | | Instead of keeping the number of parent groups in "state" and having to reset the count when moving to another group on the same level, keep track of the all groups on a particular level along with their parents and parent count.
* DP: Reorganize memory hierarchy of requestsStephen Gallagher2012-03-091-24/+108
| | | | | | | | | | | | | This function alters the memory hierarchy of the be_req to ensure memory safety during shutdown. It creates a spy on the be_cli object so that it will free the be_req if the client is freed. It is generally allocated atop the private data context for the appropriate back-end against which it is being filed. https://fedorahosted.org/sssd/ticket/1226
* Search netgroups by alias, tooJakub Hrozek2012-03-092-3/+5
| | | | https://fedorahosted.org/sssd/ticket/1228
* Hide --debug option in sss_debuglevelPavel Březina2012-03-091-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1224
* IPA: Fix segfault with srchost functionality enabledStephen Gallagher2012-03-091-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1215
* Only do one cycle when resolving a serverJakub Hrozek2012-03-097-59/+132
|
* IPA: Check nsAccountLock during PAM_ACCT_MGMTStephen Gallagher2012-03-096-13/+86
| | | | https://fedorahosted.org/sssd/ticket/1227
* Use the correct hash table for pending requestsSimo Sorce2012-03-097-10/+14
| | | | | | | | | | | | | The function that handled pending requests on reconnect was checking an orphaned global variable that was never used, redenring the whole function uselsess. This fixes a very nasty bug that was causing requests for which we never received an answer for (for example because the backend failed and was restarted) to be never removed and therefore causing a black hole effect for any other request of the same type. Fixes: https://fedorahosted.org/sssd/ticket/1229
* Handle cases where UID is -1Stephen Gallagher2012-03-011-6/+1
| | | | | | | Also removes an unnecessary range check (since it's already handled by strtoint32() https://fedorahosted.org/sssd/ticket/1216
* IPA: Set the DNS discovery domain to match ipa_domainStephen Gallagher2012-03-015-8/+17
| | | | https://fedorahosted.org/sssd/ticket/1217
* RHEL6: Add debug level upgrade scriptStephen Gallagher2012-02-282-0/+101
|
* Updating translations for SSSD 1.8.0 releasesssd-1_8_0Stephen Gallagher2012-02-2812-1291/+52783
|
* PAM: Don't send PAM_SYSTEM_INFO message if module unsetStephen Gallagher2012-02-271-7/+3
| | | | | | | | We now have a session module that is only available for the IPA provider. We should not be logging noisily that other providers do not have the session provider configured. https://fedorahosted.org/sssd/ticket/1211
* SSH: Update sss_ssh_knownhostsproxy manual pageJan Cholasta2012-02-271-15/+4
|
* SSH: Remove unused --file option of sss_ssh_knownhostsproxyJan Cholasta2012-02-271-5/+0
|
* SSH: Replace blocking getaddrinfo call in the responder with asynchronous ↵Jan Cholasta2012-02-273-26/+56
| | | | resolver code
* SSH: Use fchmod instead of chmod on known_hosts fileJan Cholasta2012-02-271-8/+4
|
* SSH: Add missing break statements to sss_ssh_format_pubkeyJan Cholasta2012-02-271-0/+2
|
* SSH: Add more debugging messagesJan Cholasta2012-02-275-8/+38
|
* SSH: Don't abort known_hosts update when host search failsJan Cholasta2012-02-271-1/+1
|
* SSH: Manage global known_hosts file in the responderJan Cholasta2012-02-273-78/+136
| | | | https://fedorahosted.org/sssd/ticket/1193
* SSH: Continue connecting to SSH server even when SSSD is not running in ↵Jan Cholasta2012-02-271-112/+85
| | | | | | | | | | sss_ssh_knownhostsproxy Additionally, don't drop the connection when the sss_ssh_knownhostsproxy process receives a signal. https://fedorahosted.org/sssd/ticket/1179 https://fedorahosted.org/sssd/ticket/1184
* UTIL: Add function for atomic I/OJan Cholasta2012-02-272-0/+44
|
* SSH: Refactor responder and client common codeJan Cholasta2012-02-276-166/+294
|
* SSH: Save SSH host name aliasesJan Cholasta2012-02-276-40/+119
|
* AUTOFS: speed up the client by requesting multiple entries at onceJakub Hrozek2012-02-273-78/+239
| | | | https://fedorahosted.org/sssd/ticket/1166
* Eliminate build-time requirement for nscdStephen Gallagher2012-02-272-11/+12
| | | | | | We will now use the autodetected location if available, or else fall back to a value provided by --with-nscd in configure and finally resort to a hard-coded default of /usr/sbin/nscd.
* LDAP: Remove unnecessary filter sanitizeStephen Gallagher2012-02-261-11/+5
| | | | | | The orig_dn here isn't being passed to a filter and therefore must not be santized, as the sanitization process would break DNs that contain (among other things) parentheses.
* Modifications to simplify list_missing_attrsJan Zeleny2012-02-248-44/+21
|
* Delete missing attributes from netgroups to be storedJan Zeleny2012-02-246-4/+45
| | | | https://fedorahosted.org/sssd/ticket/1136
* LDAP: Only use paging control on requests for multiple entriesStephen Gallagher2012-02-2416-40/+100
| | | | | | | | | | The paging control can cause issues on servers that put limits on how many paging controls can be active at one time (on some servers, it is limited to one per connection). We need to reduce our usage so that we only activate the paging control when making a request that may return an arbitrary number of results. https://fedorahosted.org/sssd/ticket/1202 phase one
* AUTOFS: Search all search bases for automounter map entriesJakub Hrozek2012-02-231-18/+86
| | | | https://fedorahosted.org/sssd/ticket/1168
* AUTOFS: Invoke implicit setautomntent if neededJakub Hrozek2012-02-232-45/+156
| | | | https://fedorahosted.org/sssd/ticket/1167
* libnl: fix the path to phy80211 subdirectoryJakub Hrozek2012-02-231-4/+20
|
* Move sudo_dom_ctx.user to local variablePavel Březina2012-02-232-8/+8
|
* Honor case_sensitive option in sudo responderPavel Březina2012-02-234-21/+100
| | | | https://fedorahosted.org/sssd/ticket/1205
* LDAP: Properly assign orig_dnStephen Gallagher2012-02-231-0/+1
| | | | This was only used for properly identifying debug messages.
* Save errno value before calling DEBUGJakub Hrozek2012-02-231-2/+4
|
* pam_sss: keep selinux optionalSimo Sorce2012-02-232-3/+6
| | | | Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
* nss_group: Cache the result from sssd when the glibc provided buffer is too ↵Simo Sorce2012-02-231-8/+145
| | | | small.
* IPA: Add ipa_parse_search_base()Stephen Gallagher2012-02-233-19/+72
| | | | | | | | | | Previously, we were using sdap_parse_search_base() for setting up the search_base objects for use in IPA. However, this was generating unfriendly log messages about unknown search base types. This patch creates a new common_parse_search_base() routine that can be used with either LDAP or IPA providers. https://fedorahosted.org/sssd/ticket/1151
generated by cgit (git 2.34.1) at 2024-04-28 08:17:08 +0000