Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2012-02-29 | Handle cases where UID is -1 | Stephen Gallagher | 1 | -6/+1 | |
Also removes an unnecessary range check (since it's already handled by strtoint32() https://fedorahosted.org/sssd/ticket/1216 | |||||
2012-02-29 | Remove sysdb_get_ctx_from_list() | Sumit Bose | 10 | -91/+53 | |
2012-02-29 | Keep sysdb context in domain info struct | Sumit Bose | 9 | -51/+105 | |
2012-02-29 | Fix the script path | Jan Zeleny | 1 | -1/+1 | |
2012-02-29 | Fix typo in script name | Stephen Gallagher | 1 | -1/+1 | |
2012-02-28 | Include new manpages in translations | Stephen Gallagher | 1 | -0/+6 | |
2012-02-28 | Include the debug_level upgrade tool in the tarball | Stephen Gallagher | 1 | -0/+1 | |
2012-02-28 | Fix typo in autofs option description | Stephen Gallagher | 1 | -1/+1 | |
2012-02-27 | PAM: Don't send PAM_SYSTEM_INFO message if module unset | Stephen Gallagher | 1 | -7/+3 | |
We now have a session module that is only available for the IPA provider. We should not be logging noisily that other providers do not have the session provider configured. https://fedorahosted.org/sssd/ticket/1211 | |||||
2012-02-27 | Include missing source files to the list of source files which contain ↵ | Jan Cholasta | 1 | -0/+4 | |
translatable strings | |||||
2012-02-27 | SSH: Update sss_ssh_knownhostsproxy manual page | Jan Cholasta | 1 | -15/+4 | |
2012-02-27 | SSH: Remove unused --file option of sss_ssh_knownhostsproxy | Jan Cholasta | 1 | -5/+0 | |
2012-02-27 | SSH: Replace blocking getaddrinfo call in the responder with asynchronous ↵ | Jan Cholasta | 4 | -27/+59 | |
resolver code | |||||
2012-02-27 | SSH: Use fchmod instead of chmod on known_hosts file | Jan Cholasta | 1 | -8/+4 | |
2012-02-27 | SSH: Add missing break statements to sss_ssh_format_pubkey | Jan Cholasta | 1 | -0/+2 | |
2012-02-27 | SSH: Add more debugging messages | Jan Cholasta | 5 | -8/+38 | |
2012-02-27 | SSH: Don't abort known_hosts update when host search fails | Jan Cholasta | 1 | -1/+1 | |
2012-02-27 | AUTOFS: speed up the client by requesting multiple entries at once | Jakub Hrozek | 3 | -78/+239 | |
https://fedorahosted.org/sssd/ticket/1166 | |||||
2012-02-27 | Eliminate build-time requirement for nscd | Stephen Gallagher | 3 | -12/+12 | |
We will now use the autodetected location if available, or else fall back to a value provided by --with-nscd in configure and finally resort to a hard-coded default of /usr/sbin/nscd. | |||||
2012-02-26 | LDAP: Remove unnecessary filter sanitize | Stephen Gallagher | 1 | -11/+5 | |
The orig_dn here isn't being passed to a filter and therefore must not be santized, as the sanitization process would break DNs that contain (among other things) parentheses. | |||||
2012-02-26 | SSH: Manage global known_hosts file in the responder | Jan Cholasta | 3 | -78/+136 | |
https://fedorahosted.org/sssd/ticket/1193 | |||||
2012-02-26 | SSH: Continue connecting to SSH server even when SSSD is not running in ↵ | Jan Cholasta | 1 | -112/+85 | |
sss_ssh_knownhostsproxy Additionally, don't drop the connection when the sss_ssh_knownhostsproxy process receives a signal. https://fedorahosted.org/sssd/ticket/1179 https://fedorahosted.org/sssd/ticket/1184 | |||||
2012-02-26 | UTIL: Add function for atomic I/O | Jan Cholasta | 2 | -0/+44 | |
2012-02-26 | SSH: Refactor responder and client common code | Jan Cholasta | 7 | -170/+301 | |
2012-02-26 | SSH: Save SSH host name aliases | Jan Cholasta | 6 | -42/+120 | |
2012-02-24 | Modifications to simplify list_missing_attrs | Jan Zeleny | 8 | -44/+21 | |
2012-02-24 | Delete missing attributes from netgroups to be stored | Jan Zeleny | 6 | -4/+45 | |
https://fedorahosted.org/sssd/ticket/1136 | |||||
2012-02-24 | SELinux related attributes added to config API | Jan Zeleny | 2 | -1/+11 | |
2012-02-24 | IPA hosts refactoring | Jan Zeleny | 18 | -154/+156 | |
2012-02-24 | LDAP: Only use paging control on requests for multiple entries | Stephen Gallagher | 16 | -40/+100 | |
The paging control can cause issues on servers that put limits on how many paging controls can be active at one time (on some servers, it is limited to one per connection). We need to reduce our usage so that we only activate the paging control when making a request that may return an arbitrary number of results. https://fedorahosted.org/sssd/ticket/1202 phase one | |||||
2012-02-23 | AUTOFS: Search all search bases for automounter map entries | Jakub Hrozek | 1 | -18/+86 | |
https://fedorahosted.org/sssd/ticket/1168 | |||||
2012-02-23 | AUTOFS: Invoke implicit setautomntent if needed | Jakub Hrozek | 2 | -45/+156 | |
https://fedorahosted.org/sssd/ticket/1167 | |||||
2012-02-23 | libnl: fix the path to phy80211 subdirectory | Jakub Hrozek | 1 | -4/+20 | |
2012-02-23 | Move sudo_dom_ctx.user to local variable | Pavel Březina | 2 | -8/+8 | |
2012-02-23 | Honor case_sensitive option in sudo responder | Pavel Březina | 4 | -21/+100 | |
https://fedorahosted.org/sssd/ticket/1205 | |||||
2012-02-23 | LDAP: Properly assign orig_dn | Stephen Gallagher | 1 | -0/+1 | |
This was only used for properly identifying debug messages. | |||||
2012-02-23 | Save errno value before calling DEBUG | Jakub Hrozek | 1 | -2/+4 | |
2012-02-23 | pam_sss: keep selinux optional | Simo Sorce | 3 | -4/+7 | |
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com> | |||||
2012-02-23 | nss_group: Cache the result from sssd when the glibc provided buffer is too ↵ | Simo Sorce | 1 | -8/+145 | |
small. | |||||
2012-02-23 | IPA: Add ipa_parse_search_base() | Stephen Gallagher | 3 | -19/+72 | |
Previously, we were using sdap_parse_search_base() for setting up the search_base objects for use in IPA. However, this was generating unfriendly log messages about unknown search base types. This patch creates a new common_parse_search_base() routine that can be used with either LDAP or IPA providers. https://fedorahosted.org/sssd/ticket/1151 | |||||
2012-02-22 | Add tool to convert debug levels | Stephen Gallagher | 1 | -0/+100 | |
Older versions of SSSD (1.5 and earlier) would take a debug_level value set in the [sssd] section as authoritative for all other sections where not explicitly overridden. We changed this so that all sections need to set it if they want debug logs set. This script can be run to make the new version continue to produce the same logs as the old versions did, by explicitly adding debug_level to all domains and services that did not have it set already. Bugzilla https://bugzilla.redhat.com/show_bug.cgi?id=753763 | |||||
2012-02-21 | Don't give memory context in confdb where not needed | Jan Zeleny | 17 | -55/+75 | |
2012-02-21 | remove unused function | Jakub Hrozek | 1 | -20/+0 | |
2012-02-21 | End request if ldap_parse_result fails | Jakub Hrozek | 1 | -0/+3 | |
2012-02-18 | Include the fd_limit configuration option | Jakub Hrozek | 1 | -0/+1 | |
2012-02-17 | RESPONDERS: Make the fd_limit setting configurable | Stephen Gallagher | 7 | -4/+63 | |
This code will now attempt first to see if it has privilege to set the value as specified, and if not it will fall back to the previous behavior. So on systems with the CAP_SYS_RESOURCE capability granted to SSSD, it will be able to ignore the limits.conf hard limit. https://fedorahosted.org/sssd/ticket/1197 | |||||
2012-02-17 | RESPONDERS: Allow increasing the file-descriptor limit | Stephen Gallagher | 4 | -0/+48 | |
This patch will increase the file descriptor limit to 8k or the limits.conf maximum, whichever is lesser. https://fedorahosted.org/sssd/ticket/1197 | |||||
2012-02-17 | Fix case insensitive service lookups | Jakub Hrozek | 1 | -6/+6 | |
2012-02-17 | LDAP: Ignore group member users that do not have name attributes | Stephen Gallagher | 1 | -2/+2 | |
Instead of failing the group lookup, just skip them. This was impacting some users of ActiveDirectory where not all users had the appropriate attributes. https://fedorahosted.org/sssd/ticket/1169 | |||||
2012-02-17 | NSS: Always return the same protocol that was requested | Stephen Gallagher | 2 | -9/+26 | |
https://fedorahosted.org/sssd/ticket/1160 |