summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2011-07-08Remove old HBAC implementationStephen Gallagher2-1595/+1
2011-07-08Add helper functions for looking up HBAC rule componentsStephen Gallagher7-0/+2622
2011-07-08Add HBAC evaluator and testsStephen Gallagher7-2/+1062
2011-07-08Add helper function msgs2attrs_arrayStephen Gallagher2-0/+33
This function converts a list of ldb_messages into a list of sysdb_attrs.
2011-07-05ipa_dyndns: Use sockaddr_storage for storing IP addressesJakub Hrozek1-12/+17
https://fedorahosted.org/sssd/ticket/915
2011-07-05Call ldap_install_tls() on ldaps connectionsSumit Bose1-0/+15
2011-07-01Replace system() function with fork and execl call.Matthew Ife1-22/+30
This is much more selinux friendly as it allows policy makers to call nscd_domtrans to transition to nscd_t instead of giving more access to the system via the corcmd_exec_bin macro. Modified-by: Simo Sorce <ssorce@redhat.com> Signed-off-by: Simo Sorce <ssorce@redhat.com>
2011-07-01Do not access state after tevent_req_done() is called.Sumit Bose1-10/+16
2011-07-01Do not attempt to close() a file descriptor < 0Stephen Gallagher1-1/+3
Coverity 10886
2011-06-30Use ldap_init_fd() instead of ldap_initialize() if availableSumit Bose6-38/+435
2011-06-30Use name based URI instead of IP address based URIsSumit Bose2-38/+3
2011-06-30Add sdap_call_conn_cb() to call add connection callback directlySumit Bose2-0/+40
2011-06-30Add sockaddr_storage to sdap_serviceSumit Bose5-0/+62
2011-06-27fix typosSimo Sorce1-5/+5
2011-06-24Fall back to polling when inotify failsJan Zeleny1-28/+68
2011-06-21Log nsupdate messageJakub Hrozek1-0/+3
https://fedorahosted.org/sssd/ticket/893
2011-06-16Test NULL server hostname in fail over testsJakub Hrozek1-8/+16
2011-06-16Provide TTL structure names for c-ares < 1.7Jakub Hrozek2-0/+11
https://fedorahosted.org/sssd/ticket/898 In c-ares 1.7, the upstream renamed the addrttl/addr6ttl structures to ares_addrttl/ares_addr6ttl so they are in the ares_ namespace. Because they are committed to stable ABI, the contents are the same, just the name changed -- so it is safe to just #define the new name for older c-ares version in case the new one is not detected in configure time.
2011-06-16Do not check pwdAttributeSumit Bose1-9/+0
It is not safe to check pwdAttribute to see if server side password policies are active. Only if a LDAP_CONTROL_PASSWORDPOLICYRESPONSE is present the bind response we can assume that there is a server side password policy.
2011-06-15Switch resolver to using resolv_hostent and honor TTLJakub Hrozek10-276/+401
2011-06-15Resolve hosts by name from DNS into resolv_hostentJakub Hrozek1-0/+254
2011-06-15Resolve hosts by name from files into resolv_hostentJakub Hrozek1-0/+92
2011-06-15Add new resolv_hostent data structure and utility functionsJakub Hrozek2-0/+200
2011-06-15Fix proxy provider return code for secondary missing groupsSumit Bose1-1/+3
2011-06-15Add missing libsss_util to proxy providerSumit Bose1-0/+1
2011-06-15Unit test for parge_argsJakub Hrozek1-0/+58
2011-06-15Make parse_args skip extra spacesJakub Hrozek1-16/+24
https://fedorahosted.org/sssd/ticket/871
2011-06-15Fix two typosSumit Bose1-2/+3
2011-06-15Delete cached ccache file if password is expiredSumit Bose1-8/+63
2011-06-02Non-posix group processing - ldap provider and nss responderJan Zeleny3-31/+90
2011-06-02Non-posix group processing - sysdb changesJan Zeleny3-23/+32
2011-06-02Added sysdb_attrs_get_bool() functionJan Zeleny2-0/+24
2011-06-02Escape IPv6 IP addresses in the IPA providerJakub Hrozek1-4/+26
https://fedorahosted.org/sssd/ticket/880
2011-06-02Use escaped IP addresses in LDAP providerJakub Hrozek1-6/+56
2011-06-02Add a utility function to escape IPv6 address for use in URIsJakub Hrozek2-0/+11
2011-06-02Add utility function to return IP address as stringJakub Hrozek4-17/+31
2011-06-02Add online callback only once for TGT renewalSumit Bose1-25/+44
2011-05-31Ensure that SSSD always Requires: the primary-arch sssd-clientStephen Gallagher1-1/+1
https://bugzilla.redhat.com/show_bug.cgi?id=709333
2011-05-31Fix typo in initgroups negative cache checkStephen Gallagher1-1/+1
2011-05-31Changing default to Default for consistencyKaushik Banerjee1-1/+1
2011-05-27Add more detail to ldap_uri manpage entryStephen Gallagher1-1/+13
2011-05-25Sanitize username during initgroups callSumit Bose1-1/+7
2011-05-25Separate return paths for success and failure in sdap_nested_group_check_cacheJakub Hrozek1-6/+10
2011-05-24Make "password" the default for ldap_default_authtok_typeStephen Gallagher2-1/+4
2011-05-24Fix uninitialized scalar variable in sdap_nested_group_check_cacheJakub Hrozek1-2/+4
https://fedorahosted.org/sssd/ticket/878
2011-05-24Fix uninitialized pointer read in sdap_x_deref_parse_entryJakub Hrozek1-1/+1
https://fedorahosted.org/sssd/ticket/877
2011-05-24Fix bad comparison in sdap_has_deref_supportJakub Hrozek1-1/+1
https://fedorahosted.org/sssd/ticket/876
2011-05-23Import config.h earlierStephen Gallagher3-5/+3
On RHEL 5 and other older platforms, failing to set _GNU_SOURCE early would cause some functions - such as strndup() - to be unavailable.
2011-05-23Include string.h in sss_cli.hSumit Bose1-0/+1
Since memcpy() is used in sss_cli.h it should be declared here, too.
2011-05-23Build sssd utils as a libtool helper libraryStephen Gallagher1-88/+98
This will speed up the build, as we are not recompiling the same sources multiple times for different binaries. These objects will now be built once and then statically linked in.
generated by cgit (git 2.34.1) at 2024-07-06 23:13:13 +0000