Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2013-03-19 | Move SELinux processing to provider. | Michal Zidek | 1 | -107/+0 | |
The SELinux processing was distributed between provider and pam responder which resulted in hard to maintain code. This patch moves the logic to provider. IT ALSO REQUIRES CHANGE IN THE SELINUX POLICY, because the provider also writes the content of selinux login file to disk (which was done by responder before). https://fedorahosted.org/sssd/ticket/1743 | |||||
2013-03-13 | Fix initialization of multiple variables | Ondrej Kos | 1 | -1/+1 | |
2013-03-05 | Remove the alt_db_path parameter of sysdb_init | Michal Zidek | 2 | -11/+2 | |
This parameter was never used. https://fedorahosted.org/sssd/ticket/1765 | |||||
2013-03-04 | Use SSSD specific errors for offline auth | Simo Sorce | 1 | -8/+9 | |
This prevents reportin false errors when internal functions return a generic EINVAL or EACCES that should just be treated as internal errors. | |||||
2013-02-26 | sysdb: try dealing with binary-content attributes | Jan Engelhardt | 2 | -0/+12 | |
https://fedorahosted.org/sssd/ticket/1818 I have here a LDAP user entry which has this attribute loginAllowedTimeMap:: AAAAAAAAAP///38AAP///38AAP///38AAP///38AAP///38AAAAAAAAA In the function sysdb_attrs_add_string(), called from sdap_attrs_add_ldap_attr(), strlen() is called on this blob, which is the wrong thing to do. The result of strlen is then used to populate the .v_length member of a struct ldb_val - and this will set it to zero in this case. (There is also the problem that there may not be a '\0' at all in the blob.) Subsequently, .v_length being 0 makes ldb_modify(), called from sysdb_set_entry_attr(), return LDB_ERR_INVALID_ATTRIBUTE_SYNTAX. End result is that users do not get stored in the sysdb, and programs like `id` or `getent ...` show incomplete information. The bug was encountered with sssd-1.8.5. sssd-1.5.11 seemed to behave fine, but that may not mean that is the absolute lower boundary of introduction of the problem. | |||||
2013-02-10 | Introduce IS_SUBDOMAIN() macro | Simo Sorce | 1 | -2/+2 | |
Fixes https://fedorahosted.org/sssd/ticket/1766 | |||||
2013-02-10 | Change the way domains are linked. | Simo Sorce | 2 | -106/+68 | |
- Use a double-linked list for domains and subdomains. - Never remove a subdomain, simply mark it as disabled if it becomes unused. - Rework the way subdomains are refreshed. Now sysdb_update_subdomains() actually updates the current subdomains and marks as disabled the ones not found in the sysdb or add new ones found. It never removes them. Removal of missing domains from sysdb is deferred to the providers, which will perform it at refresh time, for the ipa provider that is done by ipa_subdomains_write_mappings() now. sysdb_update_subdomains() is then used to update the memory hierarchy of the subdomains. - Removes sysdb_get_subdomains() - Removes copy_subdomain() - Add sysdb_subdomain_delete() | |||||
2013-02-10 | Remove sysdb_subdom completely | Simo Sorce | 2 | -30/+6 | |
struct sss_domain_info is always used to represent domains now. Adjust tests accordingly. | |||||
2013-02-10 | Add sysdb_subdomain_store() function | Simo Sorce | 2 | -37/+103 | |
Replaces sysdb_add_subdomain_attributes and is a public sysdb interface. | |||||
2013-02-10 | Refactor sysdb_master_domain_add_info() | Simo Sorce | 2 | -27/+22 | |
2013-02-10 | Update main domain info in place | Simo Sorce | 2 | -36/+30 | |
2013-02-10 | Avoid sysdb_subdom in sysdb_get_subdomains() | Simo Sorce | 2 | -58/+38 | |
2013-01-23 | SYSDB: Expire group if adding ghost users fails with EEXIST | Jakub Hrozek | 1 | -2/+36 | |
2013-01-23 | SYSDB: make the sss_ldb_modify_permissive function public | Jakub Hrozek | 2 | -2/+11 | |
2013-01-22 | sudo responder: change num_rules type from size_t to uint32_t | Pavel Březina | 2 | -5/+5 | |
https://fedorahosted.org/sssd/ticket/1779 2^32 should be enough to store sudo rules. size_t type was causing troubles on big endian architectures, because it wasn't used correctly in combination with D-Bus. | |||||
2013-01-21 | LDAP: Compare lists of DNs when saving autofs entries | Jakub Hrozek | 2 | -9/+31 | |
https://fedorahosted.org/sssd/ticket/1758 The autofs entries do not have the key as an unique identifier, but rather the full (key, value) tuple as some keys have a special meaning, such as the direct mount key (/-) and may be present in a single map multiple times. Comparing the full DN that contains both the key and the value will allow for working updates if either key or value changes. | |||||
2013-01-16 | Tidy up BASE dn macros | Simo Sorce | 1 | -4/+4 | |
2013-01-15 | Stop creating fake sysdb contexts | Simo Sorce | 2 | -25/+0 | |
Now that the sysdb context does not contain anymore domain related data we can simply stop creating faxe sysdb context and just reference the parent context. | |||||
2013-01-15 | Kill sysdb->domain | Simo Sorce | 3 | -5/+0 | |
Finally remove this upside-down dependency. | |||||
2013-01-15 | Move mpg flag to the domain where it belongs | Simo Sorce | 5 | -16/+8 | |
A sysdb contains now multiple domains, but the mpg property is a property of a specific domain not of the underlying database. | |||||
2013-01-15 | Pass the domain to upgrade functions | Simo Sorce | 3 | -13/+17 | |
2013-01-15 | Add domain to some subdomain functions | Simo Sorce | 2 | -5/+8 | |
2013-01-15 | Add domain arguments to sysdb sudo functions | Simo Sorce | 2 | -26/+42 | |
2013-01-15 | Add domain arguments to sysdb ssh functions | Simo Sorce | 2 | -8/+20 | |
2013-01-15 | Add domain arguments to sysdb services functions | Simo Sorce | 2 | -20/+34 | |
also fix sysdb_svc_add declarations | |||||
2013-01-15 | Add domain argument to sysdb selinux functions | Simo Sorce | 2 | -15/+27 | |
2013-01-15 | Add domain argument to sysdb autofs functions | Simo Sorce | 3 | -16/+34 | |
2013-01-15 | Add domain arguemnt to sysdb_get_real_name() | Simo Sorce | 2 | -1/+3 | |
2013-01-15 | Add domain argument to sysdb_idmap_ funcitons | Simo Sorce | 2 | -13/+11 | |
2013-01-15 | Add domain argument to sysdb_remove_attrs() | Simo Sorce | 4 | -7/+11 | |
2013-01-15 | Add domain argument to sysdb_has/set_enumerated() | Simo Sorce | 2 | -7/+7 | |
2013-01-15 | Add domain arg to sysdb_search/delete_netgroup() | Simo Sorce | 2 | -2/+6 | |
2013-01-15 | Add domain argument to sysdb_delete_group() | Simo Sorce | 3 | -21/+5 | |
Also remove sysdb_delete_domgroup() | |||||
2013-01-15 | Add domain argument to sysdb_search_groups() | Simo Sorce | 2 | -2/+5 | |
2013-01-15 | Add domain argument to sysdb_delete_user() | Simo Sorce | 3 | -16/+5 | |
Also remove sysdb_delete_domuser() | |||||
2013-01-15 | Add domain arg to sysdb_search_users() | Simo Sorce | 2 | -1/+3 | |
2013-01-15 | Add domain to sysdb_delete_custom | Simo Sorce | 5 | -4/+6 | |
2013-01-15 | Add domain argument to sysdb_search_custom() | Simo Sorce | 5 | -8/+12 | |
Also changes sysdb_search_custom_by_name() | |||||
2013-01-15 | Add domain argument to sysdb_store_custom() | Simo Sorce | 5 | -4/+6 | |
2013-01-15 | Add domain argument to sysdb_cache_auth() | Simo Sorce | 2 | -3/+5 | |
2013-01-15 | Add domain argument to sysdb_cache_password() | Simo Sorce | 2 | -1/+3 | |
2013-01-15 | Add domain arg to sysdb group member functions | Simo Sorce | 2 | -9/+18 | |
2013-01-15 | Add domain argument to sysdb_store_group() | Simo Sorce | 3 | -23/+6 | |
Also remove sysdb_store_domgroup() | |||||
2013-01-15 | Add domain argument to sysdb_store_user() | Simo Sorce | 3 | -35/+7 | |
Also remove sysdb_store_domuser() | |||||
2013-01-15 | Add domain arguments to sysdb_add_inetgroup fns. | Simo Sorce | 2 | -3/+7 | |
2013-01-15 | Add domain arguments to sysdb_add_group functions. | Simo Sorce | 2 | -8/+14 | |
2013-01-15 | Add domain argument to sysdb_add_user() | Simo Sorce | 2 | -7/+9 | |
2013-01-15 | Add domain argument to sysdb_add_basic_user() | Simo Sorce | 2 | -2/+5 | |
2013-01-15 | Add domain argument to sysdb_get_new_id() | Simo Sorce | 2 | -5/+5 | |
2013-01-15 | Add domain argument to sysdb_set_netgroup_attr() | Simo Sorce | 2 | -2/+4 | |