Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2012-02-27 | SSH: Replace blocking getaddrinfo call in the responder with asynchronous ↵ | Jan Cholasta | 4 | -27/+59 | |
resolver code | |||||
2012-02-27 | SSH: Use fchmod instead of chmod on known_hosts file | Jan Cholasta | 1 | -8/+4 | |
2012-02-27 | SSH: Add missing break statements to sss_ssh_format_pubkey | Jan Cholasta | 1 | -0/+2 | |
2012-02-27 | SSH: Add more debugging messages | Jan Cholasta | 5 | -8/+38 | |
2012-02-27 | SSH: Don't abort known_hosts update when host search fails | Jan Cholasta | 1 | -1/+1 | |
2012-02-27 | AUTOFS: speed up the client by requesting multiple entries at once | Jakub Hrozek | 3 | -78/+239 | |
https://fedorahosted.org/sssd/ticket/1166 | |||||
2012-02-27 | Eliminate build-time requirement for nscd | Stephen Gallagher | 3 | -12/+12 | |
We will now use the autodetected location if available, or else fall back to a value provided by --with-nscd in configure and finally resort to a hard-coded default of /usr/sbin/nscd. | |||||
2012-02-26 | LDAP: Remove unnecessary filter sanitize | Stephen Gallagher | 1 | -11/+5 | |
The orig_dn here isn't being passed to a filter and therefore must not be santized, as the sanitization process would break DNs that contain (among other things) parentheses. | |||||
2012-02-26 | SSH: Manage global known_hosts file in the responder | Jan Cholasta | 3 | -78/+136 | |
https://fedorahosted.org/sssd/ticket/1193 | |||||
2012-02-26 | SSH: Continue connecting to SSH server even when SSSD is not running in ↵ | Jan Cholasta | 1 | -112/+85 | |
sss_ssh_knownhostsproxy Additionally, don't drop the connection when the sss_ssh_knownhostsproxy process receives a signal. https://fedorahosted.org/sssd/ticket/1179 https://fedorahosted.org/sssd/ticket/1184 | |||||
2012-02-26 | UTIL: Add function for atomic I/O | Jan Cholasta | 2 | -0/+44 | |
2012-02-26 | SSH: Refactor responder and client common code | Jan Cholasta | 7 | -170/+301 | |
2012-02-26 | SSH: Save SSH host name aliases | Jan Cholasta | 6 | -42/+120 | |
2012-02-24 | Modifications to simplify list_missing_attrs | Jan Zeleny | 8 | -44/+21 | |
2012-02-24 | Delete missing attributes from netgroups to be stored | Jan Zeleny | 6 | -4/+45 | |
https://fedorahosted.org/sssd/ticket/1136 | |||||
2012-02-24 | SELinux related attributes added to config API | Jan Zeleny | 2 | -1/+11 | |
2012-02-24 | IPA hosts refactoring | Jan Zeleny | 18 | -154/+156 | |
2012-02-24 | LDAP: Only use paging control on requests for multiple entries | Stephen Gallagher | 16 | -40/+100 | |
The paging control can cause issues on servers that put limits on how many paging controls can be active at one time (on some servers, it is limited to one per connection). We need to reduce our usage so that we only activate the paging control when making a request that may return an arbitrary number of results. https://fedorahosted.org/sssd/ticket/1202 phase one | |||||
2012-02-23 | AUTOFS: Search all search bases for automounter map entries | Jakub Hrozek | 1 | -18/+86 | |
https://fedorahosted.org/sssd/ticket/1168 | |||||
2012-02-23 | AUTOFS: Invoke implicit setautomntent if needed | Jakub Hrozek | 2 | -45/+156 | |
https://fedorahosted.org/sssd/ticket/1167 | |||||
2012-02-23 | libnl: fix the path to phy80211 subdirectory | Jakub Hrozek | 1 | -4/+20 | |
2012-02-23 | Move sudo_dom_ctx.user to local variable | Pavel Březina | 2 | -8/+8 | |
2012-02-23 | Honor case_sensitive option in sudo responder | Pavel Březina | 4 | -21/+100 | |
https://fedorahosted.org/sssd/ticket/1205 | |||||
2012-02-23 | LDAP: Properly assign orig_dn | Stephen Gallagher | 1 | -0/+1 | |
This was only used for properly identifying debug messages. | |||||
2012-02-23 | Save errno value before calling DEBUG | Jakub Hrozek | 1 | -2/+4 | |
2012-02-23 | pam_sss: keep selinux optional | Simo Sorce | 3 | -4/+7 | |
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com> | |||||
2012-02-23 | nss_group: Cache the result from sssd when the glibc provided buffer is too ↵ | Simo Sorce | 1 | -8/+145 | |
small. | |||||
2012-02-23 | IPA: Add ipa_parse_search_base() | Stephen Gallagher | 3 | -19/+72 | |
Previously, we were using sdap_parse_search_base() for setting up the search_base objects for use in IPA. However, this was generating unfriendly log messages about unknown search base types. This patch creates a new common_parse_search_base() routine that can be used with either LDAP or IPA providers. https://fedorahosted.org/sssd/ticket/1151 | |||||
2012-02-22 | Add tool to convert debug levels | Stephen Gallagher | 1 | -0/+100 | |
Older versions of SSSD (1.5 and earlier) would take a debug_level value set in the [sssd] section as authoritative for all other sections where not explicitly overridden. We changed this so that all sections need to set it if they want debug logs set. This script can be run to make the new version continue to produce the same logs as the old versions did, by explicitly adding debug_level to all domains and services that did not have it set already. Bugzilla https://bugzilla.redhat.com/show_bug.cgi?id=753763 | |||||
2012-02-21 | Don't give memory context in confdb where not needed | Jan Zeleny | 17 | -55/+75 | |
2012-02-21 | remove unused function | Jakub Hrozek | 1 | -20/+0 | |
2012-02-21 | End request if ldap_parse_result fails | Jakub Hrozek | 1 | -0/+3 | |
2012-02-18 | Include the fd_limit configuration option | Jakub Hrozek | 1 | -0/+1 | |
2012-02-17 | RESPONDERS: Make the fd_limit setting configurable | Stephen Gallagher | 7 | -4/+63 | |
This code will now attempt first to see if it has privilege to set the value as specified, and if not it will fall back to the previous behavior. So on systems with the CAP_SYS_RESOURCE capability granted to SSSD, it will be able to ignore the limits.conf hard limit. https://fedorahosted.org/sssd/ticket/1197 | |||||
2012-02-17 | RESPONDERS: Allow increasing the file-descriptor limit | Stephen Gallagher | 4 | -0/+48 | |
This patch will increase the file descriptor limit to 8k or the limits.conf maximum, whichever is lesser. https://fedorahosted.org/sssd/ticket/1197 | |||||
2012-02-17 | Fix case insensitive service lookups | Jakub Hrozek | 1 | -6/+6 | |
2012-02-17 | LDAP: Ignore group member users that do not have name attributes | Stephen Gallagher | 1 | -2/+2 | |
Instead of failing the group lookup, just skip them. This was impacting some users of ActiveDirectory where not all users had the appropriate attributes. https://fedorahosted.org/sssd/ticket/1169 | |||||
2012-02-17 | NSS: Always return the same protocol that was requested | Stephen Gallagher | 2 | -9/+26 | |
https://fedorahosted.org/sssd/ticket/1160 | |||||
2012-02-17 | Redesign purging of the sudo cache | Pavel Březina | 3 | -94/+370 | |
https://fedorahosted.org/sssd/ticket/1173 | |||||
2012-02-15 | Fix missing %endif in sssd.spec.in | Stephen Gallagher | 1 | -0/+1 | |
2012-02-15 | Always include all manpage XML files in the distribution tarball | Stephen Gallagher | 1 | -2/+3 | |
2012-02-15 | Move sss_ssh_* binaries to the main 'sssd' package | Stephen Gallagher | 1 | -6/+7 | |
The sssd-client subpackage is multilib, so it cannot contain conflicting /usr/bin executables. | |||||
2012-02-14 | Refactor sss_result into sss_sudo_result | Pavel Březina | 5 | -36/+38 | |
https://fedorahosted.org/sssd/ticket/1159 | |||||
2012-02-14 | SSH: Build man pages conditionally | Jan Cholasta | 2 | -4/+6 | |
https://fedorahosted.org/sssd/ticket/1175 | |||||
2012-02-14 | Fix memory hierarchy when processing nested group memberships | Jakub Hrozek | 4 | -11/+14 | |
https://fedorahosted.org/sssd/ticket/1186 | |||||
2012-02-14 | Ensure NULL-termination in get_uid_from_pid() | Stephen Gallagher | 1 | -0/+3 | |
Coverity #12399 | |||||
2012-02-13 | Fix uninitialized value error in proxy provider | Stephen Gallagher | 1 | -1/+1 | |
Coverity #12467 | |||||
2012-02-13 | Check for failure in sss_packet_grow() | Stephen Gallagher | 1 | -5/+5 | |
Coverity #12489 | |||||
2012-02-13 | Fix bad failure handling in be_sudo_handler() | Stephen Gallagher | 1 | -13/+13 | |
If the dbus_message_get_args() failed, we would have been dereferencing a NULL be_req. Coverity #12490 | |||||
2012-02-13 | Fix uninitialized in_transaction | Stephen Gallagher | 2 | -2/+2 | |
Coverity #12521 and #12491 |