sssd.git - Unnamed repository; edit this file to name it for gitweb.

	Commit message (Collapse)	Author	Age	Files	Lines
*	localauth: make plugin non-authoritative on failures	Sumit Bose	2016-07-06	1	-1/+6
\| \| \| \| \| \| \| \| \| \| \| \|	According to the documentation in localauth_plugin.h "aname will be considered authorized if at least one module returns 0 and all other modules return KRB5_PLUGIN_NO_HANDLE." So it is safe to always return KRB5_PLUGIN_NO_HANDLE because a different plugin has to return 0 to allow access to the given principal. Resolves https://fedorahosted.org/sssd/ticket/2788 Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
*	localauth plugin: fix coverity warning	Pavel Reichl	2015-05-26	1	-0/+5
\| \| \| \| \| \| \| \| \| \| \| \| \|	Error: FORWARD_NULL (CWE-476): [#def1] sssd-1.12.90/src/krb5_plugin/sssd_krb5_localauth_plugin.c:111: assign_zero: Assigning: "pwd.pw_name" = "NULL". sssd-1.12.90/src/krb5_plugin/sssd_krb5_localauth_plugin.c:142: var_deref_model: Passing null pointer "pwd.pw_name" to "strdup", which dereferences it. 140\| } 141\| 142\|-> str = strdup(pwd.pw_name); 143\| if (str == NULL) { 144\| ret = ENOMEM; Reviewed-by: Pavel Březina <pbrezina@redhat.com>
*	Remove useless assignment to function parameter	Lukas Slebodnik	2015-03-02	1	-1/+0
\| \| \| \| \| \| \| \| \| \| \| \| \|	Reported by: cppcheck void free_fun(struct info *info) free(info->name); free(info); info = NULL; ^^^^^^^^^^^ Assignment to function parameter has no effect outside the function. Reviewed-by: Pavel Reichl <preichl@redhat.com>
*	Implement MIT Kerberos localauth plugin	Sumit Bose	2014-09-02	1	-1/+158
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	The MIT Kerberos localauth pluing interface defines two different calls. The first checks if a given Kerberos principal relates to a given name of a local user (userok). The implementation lets SSSD resolve the principal and the user name and if the returned user entries both have the same UID success is returned. The second translates a given Kerberos principal to a local user name (a2l). Here SSSD is only called once to resolve the principal and the user name is returned. Resolves https://fedorahosted.org/sssd/ticket/1835 Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
*	Add conditional build for MIT Kerberos localauth plugin	Sumit Bose	2014-09-02	1	-0/+28
\| \| \| \| \| \| \| \|	This patch adds everything what is needed to build the MIT Kerberos localauth plugin if the used version of MIT Kerberos supports it. It does not implement the plugin. Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
*	Move DEBUG macro body to debug_fn	Nikolai Kondrashov	2014-02-12	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Move DEBUG macro body to the debug_fn function, adding "function" argument to the latter. Rename "debug_fn" in sssd_krb5_locator_plugin.c to "plugin_debug_fn" to remove conflict with the sssd debug_fn. Replace DEBUG_MSG macro usage with debug_fn function usage. Remove DEBUG_MSG macro along with tests. The above makes the total size of binaries drop by 20% for the standard Fedora build and by 44% for a build configured according to Debian packaging script. Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> Reviewed-by: Stephen Gallagher <sgallagh@redhat.com> Reviewed-by: Simo Sorce <simo@redhat.com>
*	Fix formating of variables with type: long	Lukas Slebodnik	2013-09-11	1	-1/+1
\|
*	KRB5_LOCATOR: Print the filename that couldn't be opened	Stephen Gallagher	2012-07-06	1	-1/+2
\|
*	krb5 locator: Do not leak addrinfo	Jakub Hrozek	2012-05-07	1	-0/+2
\|
*	Kerberos locator: Include the correct krb5.h header file	Jakub Hrozek	2012-05-07	1	-0/+1
\| \| \| \|	https://fedorahosted.org/sssd/ticket/1325
*	Convert read and write operations to sss_atomic_read	Jakub Hrozek	2012-04-20	1	-13/+9
\| \| \| \|	https://fedorahosted.org/sssd/ticket/1209
*	Multiline macro cleanup	Jakub Hrozek	2011-09-28	1	-1/+1
\| \| \| \| \| \| \| \| \| \|	This is mostly a cosmetic patch. The purpose of wrapping a multi-line macro in a do { } while(0) is to make the macro usable as a regular statement, not a compound statement. When the while(0) is terminated with a semicolon, the do { } while(0); block becomes a compound statement again.
*	Set _GNU_SOURCE globally	Sumit Bose	2011-05-23	1	-1/+3
\|
*	Make sure to close varargs before returning from a function	Stephen Gallagher	2010-06-10	1	-2/+1
\| \| \| \|	https://fedorahosted.org/sssd/ticket/528
*	Properly handle read() and write() throughout the SSSD	Stephen Gallagher	2010-06-10	1	-1/+1
\| \| \| \| \| \| \|	We need to guarantee at all times that reads and writes complete successfully. This means that they must be checked for returning EINTR and EAGAIN, and all writes must be wrapped in a loop to ensure that they do not truncate their output.
*	Krb5 locator plugin returns KRB5_PLUGIN_NO_HANDLE	Sumit Bose	2010-05-27	1	-6/+6
\| \| \| \| \| \|	To allow a fallback to the setting in krb5.conf the locator plugin returns KRB5_PLUGIN_NO_HANDLE in nearly all error conditions. Only if the call back fails the error code of the callback is returned.
*	Fix kinit after password change	Sumit Bose	2010-03-25	1	-2/+6
\| \| \| \| \| \| \| \| \| \|	In an environment with slave KDCs and a central server where password changes are allowed the request for a new TGT immediately after the password change should be made against this server, because the slave server might not know the new password. To achieve this the Kerberos localtor plugin now returns the address of the kpasswd server as master_kdc.
*	Fix segfault in the locator plugin	Jakub Hrozek	2010-03-15	1	-25/+26
\|
*	Add krb5_kpasswd option	Sumit Bose	2010-03-12	1	-37/+139
\|
*	Write the IP address of the KDC to the kdcinfo file	Sumit Bose	2010-03-11	1	-39/+42
\|
*	Rename server/ directory to src/	Stephen Gallagher	2010-02-18	1	-0/+289
	Also update BUILD.txt