summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2011-07-01Do not access state after tevent_req_done() is called.Sumit Bose1-10/+16
2011-07-01Do not attempt to close() a file descriptor < 0Stephen Gallagher1-1/+3
Coverity 10886
2011-06-30Use ldap_init_fd() instead of ldap_initialize() if availableSumit Bose6-38/+435
2011-06-30Use name based URI instead of IP address based URIsSumit Bose2-38/+3
2011-06-30Add sdap_call_conn_cb() to call add connection callback directlySumit Bose2-0/+40
2011-06-30Add sockaddr_storage to sdap_serviceSumit Bose5-0/+62
2011-06-27fix typosSimo Sorce1-5/+5
2011-06-24Fall back to polling when inotify failsJan Zeleny1-28/+68
2011-06-21Log nsupdate messageJakub Hrozek1-0/+3
https://fedorahosted.org/sssd/ticket/893
2011-06-16Test NULL server hostname in fail over testsJakub Hrozek1-8/+16
2011-06-16Provide TTL structure names for c-ares < 1.7Jakub Hrozek2-0/+11
https://fedorahosted.org/sssd/ticket/898 In c-ares 1.7, the upstream renamed the addrttl/addr6ttl structures to ares_addrttl/ares_addr6ttl so they are in the ares_ namespace. Because they are committed to stable ABI, the contents are the same, just the name changed -- so it is safe to just #define the new name for older c-ares version in case the new one is not detected in configure time.
2011-06-16Do not check pwdAttributeSumit Bose1-9/+0
It is not safe to check pwdAttribute to see if server side password policies are active. Only if a LDAP_CONTROL_PASSWORDPOLICYRESPONSE is present the bind response we can assume that there is a server side password policy.
2011-06-15Switch resolver to using resolv_hostent and honor TTLJakub Hrozek10-276/+401
2011-06-15Resolve hosts by name from DNS into resolv_hostentJakub Hrozek1-0/+254
2011-06-15Resolve hosts by name from files into resolv_hostentJakub Hrozek1-0/+92
2011-06-15Add new resolv_hostent data structure and utility functionsJakub Hrozek2-0/+200
2011-06-15Fix proxy provider return code for secondary missing groupsSumit Bose1-1/+3
2011-06-15Add missing libsss_util to proxy providerSumit Bose1-0/+1
2011-06-15Unit test for parge_argsJakub Hrozek1-0/+58
2011-06-15Make parse_args skip extra spacesJakub Hrozek1-16/+24
https://fedorahosted.org/sssd/ticket/871
2011-06-15Fix two typosSumit Bose1-2/+3
2011-06-15Delete cached ccache file if password is expiredSumit Bose1-8/+63
2011-06-02Non-posix group processing - ldap provider and nss responderJan Zeleny3-31/+90
2011-06-02Non-posix group processing - sysdb changesJan Zeleny3-23/+32
2011-06-02Added sysdb_attrs_get_bool() functionJan Zeleny2-0/+24
2011-06-02Escape IPv6 IP addresses in the IPA providerJakub Hrozek1-4/+26
https://fedorahosted.org/sssd/ticket/880
2011-06-02Use escaped IP addresses in LDAP providerJakub Hrozek1-6/+56
2011-06-02Add a utility function to escape IPv6 address for use in URIsJakub Hrozek2-0/+11
2011-06-02Add utility function to return IP address as stringJakub Hrozek4-17/+31
2011-06-02Add online callback only once for TGT renewalSumit Bose1-25/+44
2011-05-31Ensure that SSSD always Requires: the primary-arch sssd-clientStephen Gallagher1-1/+1
https://bugzilla.redhat.com/show_bug.cgi?id=709333
2011-05-31Fix typo in initgroups negative cache checkStephen Gallagher1-1/+1
2011-05-31Changing default to Default for consistencyKaushik Banerjee1-1/+1
2011-05-27Add more detail to ldap_uri manpage entryStephen Gallagher1-1/+13
2011-05-25Sanitize username during initgroups callSumit Bose1-1/+7
2011-05-25Separate return paths for success and failure in sdap_nested_group_check_cacheJakub Hrozek1-6/+10
2011-05-24Make "password" the default for ldap_default_authtok_typeStephen Gallagher2-1/+4
2011-05-24Fix uninitialized scalar variable in sdap_nested_group_check_cacheJakub Hrozek1-2/+4
https://fedorahosted.org/sssd/ticket/878
2011-05-24Fix uninitialized pointer read in sdap_x_deref_parse_entryJakub Hrozek1-1/+1
https://fedorahosted.org/sssd/ticket/877
2011-05-24Fix bad comparison in sdap_has_deref_supportJakub Hrozek1-1/+1
https://fedorahosted.org/sssd/ticket/876
2011-05-23Import config.h earlierStephen Gallagher3-5/+3
On RHEL 5 and other older platforms, failing to set _GNU_SOURCE early would cause some functions - such as strndup() - to be unavailable.
2011-05-23Include string.h in sss_cli.hSumit Bose1-0/+1
Since memcpy() is used in sss_cli.h it should be declared here, too.
2011-05-23Build sssd utils as a libtool helper libraryStephen Gallagher1-88/+98
This will speed up the build, as we are not recompiling the same sources multiple times for different binaries. These objects will now be built once and then statically linked in.
2011-05-23Build SSSD plugins without a version numberStephen Gallagher1-5/+5
The version is both fake and unused, so we'll stop creating the versioned file and use only the unversioned .so. This is safe to do for now because all of the plugins are built at the same time as the interface.
2011-05-23Remove unused defines from configure.acSumit Bose1-12/+0
2011-05-23Set _GNU_SOURCE globallySumit Bose14-23/+17
2011-05-20Use dereference when processing RFC2307bis nested groupsJakub Hrozek9-17/+487
Instead of issuing N LDAP requests when processing a group with N users, utilize the dereference functionality to pull down all the members in a single LDAP request. https://fedorahosted.org/sssd/ticket/799
2011-05-20Refactor RFC2307bis nested group processingJakub Hrozek1-123/+188
This patch splits checking cache and hash tables into standalone functions. This will make it easy to reuse the code in a new branch that uses dereferencing.
2011-05-20Use fake users during RFC2307bis nested group processingJakub Hrozek1-13/+165
Instead of downloading complete user data which is potentionally very slow, only download the necessary minimum information and store the users as dummy entries.
2011-05-20Change sysdb_add_fake_user to add OriginalDNJakub Hrozek3-3/+11
RFC2307bis code relies heavily on originalDN, so the fake users need to have an option to store it, too.