sssd2.git/src/tests, branch sssd-1-8 System Security Services Daemon [okos' clone] TOOLS: Use file descriptor to avoid races when creating a home directory 2013-01-29T15:18:18+00:00 Ondrej Kos okos@redhat.com 2013-01-29T13:15:48+00:00 cfcfa9bd014a7717821c98262a11772c8e79c13e When creating a home directory, the destination tree can be modified in various ways while it is being constructed because directory permissions are set before populating the directory. This can lead to file creation and permission changes outside the target directory tree, using hard links. This security problem was assigned CVE-2013-0219 https://fedorahosted.org/sssd/ticket/1782 
When creating a home directory, the destination tree can be modified in
various ways while it is being constructed because directory
permissions
are set before populating the directory. This can lead to file creation
and permission changes outside the target directory tree, using hard
links.

This security problem was assigned CVE-2013-0219

https://fedorahosted.org/sssd/ticket/1782
SYSDB: Handle user and group renames better 2012-05-11T16:17:16+00:00 Jakub Hrozek jhrozek@redhat.com 2012-05-11T14:27:46+00:00 4f2d70c17a68868b1295f2d6d7bf9e4acea3ae19 Fixes a regression in the local domain tools where sss_groupadd no longer detected a GID duplicate. The check for EEXIST is moved one level up into more high level function. The patch also adds the same rename support for users. I found it odd that we allowed a rename of groups but not users. There is a catch when storing a user -- his cached password would be gone. I think that renaming a user is such a rare operation that it's not severe, plus there is a warning in the logs. 
Fixes a regression in the local domain tools where sss_groupadd no longer
detected a GID duplicate. The check for EEXIST is moved one level up into
more high level function.

The patch also adds the same rename support for users. I found it odd that
we allowed a rename of groups but not users. There is a catch when storing
a user -- his cached password would be gone. I think that renaming a user
is such a rare operation that it's not severe, plus there is a warning in
the logs.
Return correct resolv_status on resolver timeout 2012-03-29T19:06:53+00:00 Jakub Hrozek jhrozek@redhat.com 2012-03-27T22:00:18+00:00 bd0dad92d8cd37f9c710741a33820368d9a831c5 https://fedorahosted.org/sssd/ticket/1274 
https://fedorahosted.org/sssd/ticket/1274
Delete missing attributes from netgroups to be stored 2012-02-24T19:58:15+00:00 Jan Zeleny jzeleny@redhat.com 2012-02-21T12:07:30+00:00 720396bedc032e2c3d6fd48b4f7913fcb0429641 https://fedorahosted.org/sssd/ticket/1136 
https://fedorahosted.org/sssd/ticket/1136
AUTOFS: IPA provider 2012-02-07T14:22:20+00:00 Jakub Hrozek jhrozek@redhat.com 2012-02-06T12:28:53+00:00 e4f77780ea92074671e5408cc1599441b168efc0 






IPA: Add support for services lookups (non-enum)
2012-01-31T14:37:41+00:00

Stephen Gallagher
sgallagh@redhat.com

2012-01-28T16:40:36+00:00

ca73004be606fe1a3003f2bc82eede4945fd0f08












SYSDB: extend sysdb_store_service() to accept additional attributes
2012-01-31T14:37:40+00:00

Stephen Gallagher
sgallagh@redhat.com

2012-01-28T15:34:02+00:00

e299638926171e0e92a36122aeff6611cd52418d












SYSDB: Add indexes for servicePort and serviceProtocol
2012-01-27T14:02:01+00:00

Stephen Gallagher
sgallagh@redhat.com

2012-01-16T14:51:20+00:00

ff907ba7a9b5e429de086515642f97a0447e546a












SYSDB: Add sysdb routines for manipulating service entries
2012-01-27T14:02:01+00:00

Stephen Gallagher
sgallagh@redhat.com

2012-01-04T19:22:22+00:00

4c1bf6607060cea867fccf667063c028dfd51e96












Add a random + identity test for murmurhash3
2012-01-09T20:00:39+00:00

Simo Sorce
simo@redhat.com

2012-01-09T19:18:12+00:00

8df169fdffb564ec932fede4216a123a71f1cc9a

This test always generate a random string so each time the test is run we will
test the hash function with a new value.
It also hashes the same string twice and compares the result so that we have a
chance of catching if uninitialized variables are getting mixed into the value
calculation and end up generating different results for the same input.





This test always generate a random string so each time the test is run we will
test the hash function with a new value.
It also hashes the same string twice and compares the result so that we have a
chance of catching if uninitialized variables are getting mixed into the value
calculation and end up generating different results for the same input.