sssd - System Security Services Daemon

Age	Commit message (Collapse)	Author	Files	Lines
2011-08-15	Handle timeout during sss_ldap_init_send	Jakub Hrozek	3	-3/+41
	In some cases, where there would be no response from the LDAP server, there would be no R/W events on the LDAP fd, so sdap_async_sys_connect_done would never be called. This patch adds a tevent timer that cancels the connection after SDAP_NETWORK_TIMEOUT seconds.
2011-08-15	Do not delete requests inside hash_iterate loop	Jakub Hrozek	1	-10/+12

2011-08-15	Handle errno properly in set_debug_file_from_fd()	Jakub Hrozek	1	-2/+5

2011-08-15	Moved some functions in sdap_async_initgroups	Jan Zeleny	1	-345/+349

2011-08-15	Moved some functions in sdap_async_groups	Jan Zeleny	1	-122/+112

2011-08-15	Confusing part of code cleared out	Jan Zeleny	1	-34/+32

2011-08-15	sdap_async_accounts.c split	Jan Zeleny	5	-2516/+2594
	The file has been split in three: sdap_async_users.c sdap_async_groups.c sdap_async_initgroups.c https://fedorahosted.org/sssd/ticket/864
2011-08-15	Remaining memory context variables renamed	Jan Zeleny	2	-75/+75
	memctx to mem_ctx tmpctx to tmp_ctx
2011-08-15	sysdb refactoring: memory context deleted	Jan Zeleny	20	-455/+429
	This patch deletes memory context parameter in those places in sysdb where it is not necessary. The code using modified functions has been updated. Tests updated as well.
2011-08-15	sysdb refactoring: deleted domain variables in sysdb API	Jan Zeleny	42	-538/+254
	The patch also updates code using modified functions. Tests have also been adjusted.
2011-08-15	Added sysdb_ctx_get_domain function	Jan Zeleny	2	-0/+7

2011-08-15	sysdb refactoring: renamed ctx variable to sysdb	Jan Zeleny	4	-348/+348

2011-08-11	Use sysdb attribute name for GID, not LDAP attribute	Stephen Gallagher	1	-3/+3

2011-08-11	Allow the O_NONBLOCK flag to be reset correctly	Ralf Haferkamp	1	-14/+0
	sssd set the O_NONBLOCK flag on the LDAP socket twice. First in set_fd_flags_and_opts(). And the second time in sdap_async_sys_connect_send() after storing a backup in the local state structure. The backup is later used to restore the original flags (after connect() succeeded). As NONBLOCK was already set before it didn't correctly reset that flag. https://fedorahosted.org/sssd/ticket/952
2011-08-11	Fix broken RHEL5 build	Stephen Gallagher	1	-0/+1
	RPM in RHEL 5 requires %ghost entries to be present in the build root.
2011-08-10	Fix potential double-free issue	Stephen Gallagher	1	-1/+1
	tmp_ctx is a child of ctx.
2011-08-10	Cancel sysdb upgrade transaction if commit fails	Stephen Gallagher	1	-60/+30

2011-08-10	Remove private shared object Provides: for pysss.so and pyhbac.so	Stephen Gallagher	1	-0/+6

2011-08-10	Include the configuration file as a %ghost entry	Stephen Gallagher	1	-0/+1
	The recent change to cease installing the sample configuration file caused existing config files to be removed on upgrade. This will prevent that from happening.
2011-08-08	Remove unused temporary context	Jakub Hrozek	1	-5/+0

2011-08-08	Prevent segfault if vetoed_shells are specified without allowed_shells	Jakub Hrozek	1	-16/+19
	https://fedorahosted.org/sssd/ticket/954
2011-08-08	Fixed implicit declaration of function 'time' in src/sss_client/common.c.	Pavel Březina	1	-0/+1

2011-08-08	debug_timestamps fixes	Pavel Březina	4	-14/+24
	Fixed: could not overwrite debug_timestamps when set in sssd.conf Fixed: invalid description of debug_timestamps in sssd man page
2011-08-08	Rename sssd.conf to sssd-example.conf	Stephen Gallagher	3	-6/+5
	This file should not be installed by default. It leads to user confusion. We will instead install it as documentation. Fix incorrect example of entry_cache_nowait_percentage
2011-08-04	Revert "Allow LDAP to decide when an expiration warning is warranted"	Stephen Gallagher	1	-4/+3
	This reverts commit b0b9c38dfce3e3ccbfaa4d00fdf2ea08a70d41a6.
2011-08-04	Fix returning groups when gidNumber attribute is not ordered	Jakub Hrozek	3	-4/+10
	https://fedorahosted.org/sssd/ticket/951
2011-08-04	pyhbac: Do not convert int to bool	Jakub Hrozek	1	-2/+11

2011-08-03	Fix two man page typos	Yuri Chornoivan	2	-2/+2

2011-08-02	Bumping version to 1.7.0	Stephen Gallagher	1	-1/+1

2011-08-02	Updating translations for 1.6.0 release	Stephen Gallagher	20	-4822/+7254

2011-08-01	Allow LDAP to decide when an expiration warning is warranted	Stephen Gallagher	1	-3/+4
	Previously, we were only displaying expiration warnings if the password was going to expire within a day. We'll allow LDAP to make this decision (by whether it passes us the expiration time). In the future, we can add an option to clamp this down to a shorter period if the local admin prefers it.
2011-08-01	Request password control unconditionally during bind	Jakub Hrozek	1	-6/+6
	https://fedorahosted.org/sssd/ticket/940
2011-08-01	HBAC rule validation Python bindings	Jakub Hrozek	2	-0/+129
	https://fedorahosted.org/sssd/ticket/943
2011-08-01	Change the default value of ldap_tls_cacert in IPA provider	Jakub Hrozek	1	-1/+1
	https://fedorahosted.org/sssd/ticket/944
2011-08-01	Add rule validator to libipa_hbac	Stephen Gallagher	4	-1/+190
	https://fedorahosted.org/sssd/ticket/943
2011-08-01	Remove incorrect private variable	Stephen Gallagher	1	-1/+1
	This caused no ill effects, since it wasn't used in the callback. However, it is a layering violation (especially since req is freed in the callback)
2011-08-01	Wrong paramater to sysdb_attrs_add_uint32	Jakub Hrozek	1	-1/+1

2011-08-01	Require matched version and release for libipa_hbac	Stephen Gallagher	1	-0/+1

2011-07-29	Converge accept_fd_handler and accept_priv_fd_handler	Stephen Gallagher	1	-85/+50
	These two functions were almost identical. Better to maintain them as a single function.
2011-07-29	Fix incorrect NULL check in ipa_hbac_common.c	Stephen Gallagher	1	-1/+1
	https://fedorahosted.org/sssd/ticket/936
2011-07-29	Fix memory leak in ipa_hbac_evaluate_rules	Stephen Gallagher	1	-0/+1
	https://fedorahosted.org/sssd/ticket/933
2011-07-29	Add vetoed_shells option	John Hodrien	6	-1/+27
	There may be users in LDAP that have a valid but unwelcome shell set in their account. This adds a blacklist of shells that should always be replaced by the fallback_shell. Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
2011-07-29	sss_client: avoid leaking file descriptors	Simo Sorce	2	-0/+15
	If a pam or nss module is dlcolse()d and unloaded we were leaking the file descriptor used to communicate to sssd in the process. Make sure the fucntion used to close the socket file descriptor is called on dlclose() Silence autoconf 2.28 warnings (Patch by Jakub Hrozek)
2011-07-29	UTF8 HBAC test	Jakub Hrozek	1	-0/+117

2011-07-29	libipa_hbac: Support case-insensitive comparisons with UTF8	Stephen Gallagher	5	-17/+111

2011-07-27	Handle allocation error in python HBAC bindings	Jakub Hrozek	1	-0/+3
	https://fedorahosted.org/sssd/ticket/934
2011-07-27	Remove dead code from python HBAC bindings	Jakub Hrozek	1	-4/+0
	https://fedorahosted.org/sssd/ticket/935
2011-07-27	Explicitly ignore groups with gidNumber=0	Jakub Hrozek	2	-11/+18
	https://fedorahosted.org/sssd/ticket/916
2011-07-27	Set gidNumber of non-posix groups to 0 even on updates	Jakub Hrozek	1	-8/+44

2011-07-27	silence compilation warnings on RHEL5	pbrezina	1	-12/+13
	https://fedorahosted.org/sssd/ticket/930