summaryrefslogtreecommitdiff
path: root/server/util
AgeCommit message (Collapse)AuthorFilesLines
2010-02-05Added option to use libcrypto instead of NSS.George McCollister2-0/+382
crypto_sha512crypt.c is a clone of nss_sha512crypt.c with the exception that all usage of NSS and related libraries has been switched to libcrypto. I renamed nss_sha512crypt.h to sha512crypt.h since it is common to both crypto_sha512crypt.c and nss_sha512crypt.c. Note that the random number generator is not seeded manually and thus relies on seeding done automatically by libcrypto. On some systems without /dev/urandom seeding may not be performed. See http://www.openssl.org/docs/crypto/RAND_add.html. Signed-off-by: George McCollister <georgem@novatech-llc.com>
2010-02-05Internationalize the command-line help messageStephen Gallagher1-5/+5
2010-02-05Enable debug_timestamps by defaultStephen Gallagher2-3/+3
It can be overridden in the sssd.conf or on the commandline with --debug-timestamps=0
2009-12-18Do not overwrite valid TGTs when offlineSumit Bose2-0/+95
2009-12-15Fix warning in server.cStephen Gallagher1-1/+1
Function definition was missing "void" to denote that it took no arguments.
2009-12-15Properly close STDERR when daemonizingStephen Gallagher1-9/+3
This is necessary so that any process managing our startup and shutdown (e.g. authconfig) does not block and stall waiting for stderr to terminate. Fixes bug https://fedorahosted.org/sssd/ticket/324
2009-12-10Consolidate code for splitting strings by separatorJakub Hrozek2-47/+99
There were two functions for parsing strings by a separator. This patch consolidates on the one previously used in confdb. This also allows stripping the tokens of whitespace. Fixes: #319
2009-12-10Add rebuild task to memberof pluginSimo Sorce1-2/+2
This task allows us to rebuild memberuid and memberof attributes throughout the database. This way we can upgrade from version 0.4 databases that didn't generate and store memberuid. The task can be invoked by adding a speaicl named entry to the ldb file. The entry dn to use is: @MEMBEROF-REBUILD, the entry has no attributes and any attribute is ignored at present. The entry will not be stored in the database but will just trigger the task to execute a rebuild of the memberof and memberuid attributes
2009-12-08dhash: Add private pointer for delete callbackSimo Sorce1-1/+2
Also pass a flag to the delete callback to tell it if this is a normal entry removal or we are cleaning up the tbale definitively.
2009-12-08Add allocation error checkStephen Gallagher1-7/+10
2009-12-08Change dhash API to be talloc-friendlySimo Sorce1-16/+4
2009-12-07Allow nesting to fix #310Simo Sorce1-0/+3
2009-12-07Do not treat missing proc files as errors.Sumit Bose1-0/+10
2009-12-03Raise debug log level for LDB_DEBUG_WARNINGStephen Gallagher1-1/+1
Level 3 was far too low for mostly-useless messages
2009-12-03Make debug log timestamps human-readableStephen Gallagher2-4/+13
2009-11-20Add initial failover support for ldap and ipaSimo Sorce2-0/+89
The retun values are still not directly used with ldap libraries that still do their own name resolution, but this patch introduces a very basic framework to have a multiple providers in one domain use and share a single failover service if they want to.
2009-11-20Filter by id range before actually storing entries.Simo Sorce1-0/+3
This way we do not need to check for id ranges on every search.
2009-11-20Improve handling of ccache filesSumit Bose2-0/+333
- save current ccache file to sysdb - use the saved ccache file if the user has running processes - create an empty ccache if offline - return enviroment variables if offline
2009-11-20Validate Kerberos credentials with local keytabSumit Bose2-2/+16
2009-11-09Fix tevent_req error checking.Simo Sorce1-0/+12
When possible using a macro that correctly deals with tstate
2009-11-09Add missing includeJakub Hrozek1-0/+1
2009-11-06Add simple reference counting wrappers for tallocMartin Nagy2-0/+127
2009-11-06Add DLIST_FOR_EACH() macroMartin Nagy1-0/+3
2009-11-05Build files.c only for toolsStephen Gallagher2-745/+0
Move files.c into tools directory
2009-11-05add replacements for missing Kerberos callsSumit Bose2-0/+137
2009-11-04Simplify debug_fn()Stephen Gallagher1-12/+2
We don't need to be allocating an output string here. This was also causing a runtime bug when the output string contained characters that would be interpreted by fprintf as specifiers.
2009-11-04Free the PCRE regexp with destructorJakub Hrozek1-0/+10
2009-10-22User home directories managementJakub Hrozek2-0/+745
Create and populate user directories on useradd, delete them on userdel Fixes: #212
2009-10-22Delete sssd-i18n.h and put it's old contents into util.hMartin Nagy3-33/+9
Also include talloc.h, tevent.h and ldb.h as system headers in util.h.
2009-10-22Use correct talloc context in sss_names_init()Martin Nagy1-2/+2
2009-10-15enable debugging of krb5_childSumit Bose2-4/+38
2009-10-13add a replacement if ldap_control_create is missingSumit Bose2-0/+100
2009-10-06Remove unused btreemap codeStephen Gallagher2-257/+0
We have converted to using dhash in place of btreemap everywhere in the code.
2009-10-05add utility call check_and_open_readonlySumit Bose2-0/+93
Use this new utility call to ensure that the config file is safe to read from.
2009-09-25Send debug messages to logfileJakub Hrozek3-2/+66
Introduces a new option --debug-to-files which makes SSSD output its debug information to a file instead of stderr, which is still the default. Also introduces a new confdb option debug_to_files which does the same, but can be specified per-service in the config file. The logfiles are stored in /var/log/sssd by default. Changes the initscript to log to files by default.
2009-09-25Upgrade confdb to version 2Stephen Gallagher2-8/+8
This converts a great many configuration options to the new standard format.
2009-09-23Revert "Use syslog for logging error conditions in SSSD"Stephen Gallagher3-34/+17
This reverts commit 8c50bd085c0efe5fde354deee2c8118887aae29d. Amended: commit 1016af2b1b97ad4290ccce8fa462cc7e3c191b2e also made use of the SYSLOG_ERROR() macro, so those portions of that code also needed to be reverted.
2009-09-21Use syslog for logging error conditions in SSSDJakub Hrozek3-17/+34
This is just a band-aid until ELAPI is fully functional and ready to use.
2009-09-21Provide python bindings for sysdbJakub Hrozek1-0/+8
Implement a set of python bindings for the sysdb with feature set similar to what is available in the tools. The primary consumers would be applications like system-config-users. Resolves: Ticket #102
2009-09-11Add copyright noticesJakub Hrozek4-0/+81
Fixes: #138
2009-09-10Remove unused event context argument from confdb_initStephen Gallagher1-2/+2
Because the confdb always operates synchronously, it maintains its own private event context internally. The event context argument passed to it is never used, so we'll remove it to avoid confusion.
2009-09-10Add strtoint32 and strtouint32 convenience functionsStephen Gallagher2-0/+97
2009-09-09more fixes for older libpcre versionssbose1-2/+4
- older version of libpcre only support the Python syntax (?P<name>) for named subpatterns
2009-09-08Split database in multiple filesSimo Sorce2-0/+125
The special persistent local database retains the original name. All other backends now have their own cache-NAME.ldb file.
2009-09-01check if libpcre version is above or below 7Sumit Bose1-1/+13
PCRE_DUPNAMES is a new feature of libpcre 7. It is used in sssd to make the splitting of fully qualified user names more flexible.
2009-08-28add configure check for errno_tSumit Bose1-0/+5
2009-08-11Make child processes exit when parent diesJakub Hrozek3-1/+46
The child processes call prctl() and when their parent process is killed, they are sent SIGTERM using prctl. This is currently Linux-specific, for non-Linuxes, a similar effect is achieved by catching a set of common termination signals and sending SIGTERM to the process group.
2009-08-05Fix broken ifndefsSimo Sorce1-9/+0
ifndef doesn't work for those functions that aren't already macro definitions in tevent.h like tevent_req_data. However if tevent_req_data is defined in tevent.h, all other functions are available as well. So just check for tevent_req_data and define all of them if it is not available. This should fix compiling on distros with the latsest tevent.
2009-08-05Move parsing of names and domains into util/Jakub Hrozek2-0/+134
2009-08-05Consolidate tevent helpersJakub Hrozek1-0/+25