sssd2.git/src/db/sysdb.c, branch sssd-1-9 System Security Services Daemon [okos' clone] sysdb: try dealing with binary-content attributes 2013-02-26T16:18:04+00:00 Jan Engelhardt jengelh@inai.de 2013-02-21T12:12:25+00:00 6072f51a6c91f580c6582c527a08acbe51824d6a https://fedorahosted.org/sssd/ticket/1818 I have here a LDAP user entry which has this attribute loginAllowedTimeMap:: AAAAAAAAAP///38AAP///38AAP///38AAP///38AAP///38AAAAAAAAA In the function sysdb_attrs_add_string(), called from sdap_attrs_add_ldap_attr(), strlen() is called on this blob, which is the wrong thing to do. The result of strlen is then used to populate the .v_length member of a struct ldb_val - and this will set it to zero in this case. (There is also the problem that there may not be a '\0' at all in the blob.) Subsequently, .v_length being 0 makes ldb_modify(), called from sysdb_set_entry_attr(), return LDB_ERR_INVALID_ATTRIBUTE_SYNTAX. End result is that users do not get stored in the sysdb, and programs like `id` or `getent ...` show incomplete information. The bug was encountered with sssd-1.8.5. sssd-1.5.11 seemed to behave fine, but that may not mean that is the absolute lower boundary of introduction of the problem. 
https://fedorahosted.org/sssd/ticket/1818

I have here a LDAP user entry which has this attribute

	loginAllowedTimeMap::
	 AAAAAAAAAP///38AAP///38AAP///38AAP///38AAP///38AAAAAAAAA

In the function sysdb_attrs_add_string(), called from
sdap_attrs_add_ldap_attr(), strlen() is called on this blob, which is
the wrong thing to do. The result of strlen is then used to populate
the .v_length member of a struct ldb_val - and this will set it to
zero in this case. (There is also the problem that there may not be
a '\0' at all in the blob.)

Subsequently, .v_length being 0 makes ldb_modify(), called from
sysdb_set_entry_attr(), return LDB_ERR_INVALID_ATTRIBUTE_SYNTAX. End
result is that users do not get stored in the sysdb, and programs like
`id` or `getent ...` show incomplete information.

The bug was encountered with sssd-1.8.5. sssd-1.5.11 seemed to behave
fine, but that may not mean that is the absolute lower boundary of
introduction of the problem.
Translate LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS to EEXIST 2013-01-08T13:57:29+00:00 Sumit Bose sbose@redhat.com 2012-11-27T11:42:02+00:00 5965c32714996ab3670b838f5d6e392d6110def4 Currently only the LDB error code indicating that an entry already exists is translated to EEXIST. To make debugging easier and return a better indication of the reason for an error in the logs this patch translates the LDB error code for an already existing attribute or value to EEXIST as well. 
Currently only the LDB error code indicating that an entry already
exists is translated to EEXIST. To make debugging easier and return a
better indication of the reason for an error in the logs this patch
translates the LDB error code for an already existing attribute or value
to EEXIST as well.
Null pointer dereferenced. 2012-11-28T12:48:48+00:00 Michal Zidek mzidek@redhat.com 2012-11-27T12:15:41+00:00 78bbe544ad363cbc07f9e9f64bcc9a21a442965a https://fedorahosted.org/sssd/ticket/1674 
https://fedorahosted.org/sssd/ticket/1674
Handle conversion to fully qualified usernames 2012-11-19T14:14:31+00:00 Simo Sorce simo@redhat.com 2012-11-16T20:25:44+00:00 9a0e490c945db007c71ddded49bfe8a408989eab In subdomains we have to use fully qualified usernames. Unfortunately we have no other good option than simply removing caches for users of subdomains. This is because the memberof plugin does not support the rename operation. 
In subdomains we have to use fully qualified usernames.
Unfortunately we have no other good option than simply removing
caches for users of subdomains.
This is because the memberof plugin does not support the rename operation.
Display more information on DB version crash 2012-11-19T12:39:52+00:00 Ondrej Kos okos@redhat.com 2012-11-08T13:34:36+00:00 3e454b5de596f2e4d1b4d9df4cc33aeec7a5af5f https://fedorahosted.org/sssd/ticket/1589 Added check for determining, whether database version is higher or lower than expected. To distinguish it from other errors it uses following retun values (further used for appropriate error message): EMEDIUMTYPE for lower version than expected EUCLEAN for higher version than expected When SSSD or one of it's tools fails on DB version mismatch, new error message is showed suggesting how to proceed. 
https://fedorahosted.org/sssd/ticket/1589

Added check for determining, whether database version is higher or
lower than expected. To distinguish it from other errors it uses
following retun values (further used for appropriate error message):
EMEDIUMTYPE for lower version than expected
EUCLEAN for higher version than expected

When SSSD or one of it's tools fails on DB version mismatch, new error
message is showed suggesting how to proceed.
sysdb: add sysdb_base_dn() 2012-10-26T16:10:23+00:00 Sumit Bose sbose@redhat.com 2012-10-18T15:40:48+00:00 aab727b90b43600b750957177845d993196b96e9 Add a help function which returns the ldb_dn object for the base dn of the cache. 
Add a help function which returns the ldb_dn object for the base dn of
the cache.
SSH: Expire hosts in known_hosts 2012-10-05T08:51:55+00:00 Jan Cholasta jcholast@redhat.com 2012-09-25T08:29:29+00:00 3882325ff60f89d0c312e9519bdfd1351978fd73 






SYSDB: Remove unnecessary domain parameter from several sysdb calls
2012-09-24T16:23:15+00:00

Jakub Hrozek
jhrozek@redhat.com

2012-09-21T21:41:42+00:00

95f5e7963a36b7b68859ce91ae4b232088bbaa09

The domain can be read from the sysdb object. Removing the domain string
makes the API more self-contained.





The domain can be read from the sysdb object. Removing the domain string
makes the API more self-contained.







AUTOFS: convert the existing autofs entries during a sysdb upgrade
2012-09-24T16:18:30+00:00

Jakub Hrozek
jhrozek@redhat.com

2012-09-23T16:37:04+00:00

77f445dbaecc8e792e1ad42e3742800ad141bee0












LDB_ERR_INVALID_ATTRIBUTE_SYNTAX added to sysdb_error_to_errno.
2012-09-20T08:13:53+00:00

Michal Zidek
mzidek@redhat.com

2012-09-17T16:18:29+00:00

adb08b2853bfcba76ebb35b4e7bb4a6403b54239