summaryrefslogtreecommitdiff
path: root/src/tools
AgeCommit message (Collapse)AuthorFilesLines
2013-01-08Remove unhelpful vtable from sss_cacheSimo Sorce1-24/+30
Using a vtable like this has various drawacks, including the fact prototypes are not checked by the compiler so the code could silently break and still compile fine (in fact I found this out changing one of the prototypes). A switch statement is also better because it catches if the enum changed and won't risk allowing to access the table out of bounds.
2013-01-04sss_cache: fqdn not acceptedMichal Zidek1-14/+149
sss_cache did not accept fully quaified domain names. https://fedorahosted.org/sssd/ticket/1620
2012-12-13tools: sss_userdel and groupdel remove entries from memory cacheMichal Zidek2-0/+47
https://fedorahosted.org/sssd/ticket/1659
2012-11-28sss_cache: Small refactor.Michal Zidek3-58/+72
The logic that checks if sssd_nss is running and then sends SIGHUP to monitor or removes the caches was moved to a function sss_memcache_clear_all() and made public in tools_util.h.
2012-11-20LDAP: Only convert direct parents' ghost attribute to memberJakub Hrozek2-2/+3
https://fedorahosted.org/sssd/ticket/1612 This patch changes the handling of ghost attributes when saving the actual user entry. Instead of always linking all groups that contained the ghost attribute with the new user entry, the original member attributes are now saved in the group object and the user entry is only linked with its direct parents. As the member attribute is compared against the originalDN of the user, if either the originalDN or the originalMember attributes are missing, the user object is linked with all the groups as a fallback. The original member attributes are only saved if the LDAP schema supports nesting.
2012-11-19Display more information on DB version mismatchOndrej Kos3-0/+4
https://fedorahosted.org/sssd/ticket/1589 Added check for determining, whether database version is higher or lower than expected. To distinguish it from other errors it uses following retun values (further used for appropriate error message): EMEDIUMTYPE for lower version than expected EUCLEAN for higher version than expected When SSSD or one of it's tools fails on DB version mismatch, new error message is showed suggesting how to proceed.
2012-11-06sss_cache: Remove fastcache even if sssd is not running.Michal Zidek3-20/+152
https://fedorahosted.org/sssd/ticket/1584
2012-11-06sss_cache: Multiple domains not handled properlyMichal Zidek1-35/+37
When working with multiple domains and no matching objects for deletion were found in the first domain, the other domains were not searched at all. Also the ERROR message informing about object not found (the one printed for each domain) was changed to DEBUG message.
2012-10-29Include talloc log in our debug facilityMichal Zidek10-10/+10
https://fedorahosted.org/sssd/ticket/1495
2012-10-16sss_debuglevel: Multiple arguments are treated as error.Michal Zidek1-0/+6
https://fedorahosted.org/sssd/ticket/1327
2012-10-03sss_seed: Improved error message when the domain does not exist.Michal Zidek1-2/+5
https://fedorahosted.org/sssd/ticket/1553
2012-10-03sss_seed: Passwords longer then PASS_MAX not allowed.Michal Zidek1-1/+8
sss_seed fails if password file specified with -p or --password-file option contains password longer than PASS_MAX. Man pages inform about PASS_MAX limitation.
2012-10-03sss_seed: Make only first line of password file valid.Michal Zidek1-0/+36
When file is used to specify a password in sss_seed, then only first line of this file is used. Also empty passwords are treated as errors. https://fedorahosted.org/sssd/ticket/1548
2012-10-03sss_seed: Show error message when interactive input fails.Michal Zidek1-0/+1
https://fedorahosted.org/sssd/ticket/1549
2012-10-03sss_seed: Option --debug did not work in sss_seed tool.Michal Zidek1-4/+4
debug_level was set before the parameters were parsed, so the default debug_level value was always used. Also CHECK_ROOT macro was used on bad place, so only root was able to run sss_seed --help/-?.
2012-09-24SYSDB: Remove unnecessary domain parameter from several sysdb callsJakub Hrozek2-13/+6
The domain can be read from the sysdb object. Removing the domain string makes the API more self-contained.
2012-09-24sss_cache tool invalidates records in memory cache.Michal Zidek1-0/+26
2012-09-24tools_util.h provides signal_sssd function.Michal Zidek3-99/+99
2012-08-23Unify usage of sysdb transactionsMichal Zidek6-11/+67
Removing bad examples of usage of sysdb_transaction_start/commit/end functions and making it more consistent (all files except of src/db/sysdb_*.c).
2012-08-03Return value of fread in src/tools/sss_debuglevel.c no longer ignored.Michal Zidek1-1/+9
https://fedorahosted.org/sssd/ticket/1426
2012-08-01First-boot sss_seed toolNick Guay1-0/+829
2012-06-12Make re_expression and full_name_format per domain optionsStef Walter1-1/+1
* Allows different user/domain qualified names for different domains. For example Domain\User or user@domain. * The global re_expression and full_name_format options remain as defaults for the domains. * Subdomains get the re_expression and full_name_format of their parent domain. https://bugzilla.redhat.com/show_bug.cgi?id=811663
2012-05-31Ghost members - modified sss_groupshowJan Zeleny1-4/+40
2012-05-22Always use positional arguments in translatable stringsStephen Gallagher8-23/+23
https://fedorahosted.org/sssd/ticket/1336
2012-05-03SSS_DEBUGLEVEL: silence analyzer warningsJakub Hrozek1-2/+3
Errno was returned instead of ret. The other hunk removes return code from fread - it is not needed, the NULL termination of the string is ensured by initializing the buffer.
2012-04-20Convert read and write operations to sss_atomic_readJakub Hrozek1-32/+19
https://fedorahosted.org/sssd/ticket/1209
2012-04-18sss_cache: Better error reportingJakub Hrozek1-37/+94
* Print usage when no options are given * Report skipped entries * Print error message when a nonexistent domain is selected https://fedorahosted.org/sssd/ticket/1301 https://fedorahosted.org/sssd/ticket/1305 https://fedorahosted.org/sssd/ticket/1306
2012-04-18sss_cache: support invalidating services and autofs mapsJakub Hrozek1-9/+118
https://fedorahosted.org/sssd/ticket/1170
2012-03-02Hide --debug option in sss_debuglevelPavel Březina1-1/+1
https://fedorahosted.org/sssd/ticket/1224
2012-02-29Keep sysdb context in domain info structSumit Bose2-16/+4
2012-02-23pam_sss: keep selinux optionalSimo Sorce1-3/+0
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
2012-02-21Don't give memory context in confdb where not neededJan Zeleny1-3/+3
2011-11-22Cleanup: Remove unused parametersJakub Hrozek7-39/+30
2011-11-07Fixed possible resource leak in create_mail_spool()Jan Zeleny1-9/+9
https://fedorahosted.org/sssd/ticket/1071
2011-10-14TOOLS: Do not leak pid_file handle on errorStephen Gallagher1-1/+2
Coverity 11032
2011-10-13SysDB commands that save lastUpdate allows this value to be passed inPavel Březina1-2/+2
https://fedorahosted.org/sssd/ticket/836
2011-10-03Use explicit base 10 for converting strings to integersJakub Hrozek1-1/+1
https://fedorahosted.org/sssd/ticket/1013
2011-09-28Multiline macro cleanupJakub Hrozek1-1/+1
This is mostly a cosmetic patch. The purpose of wrapping a multi-line macro in a do { } while(0) is to make the macro usable as a regular statement, not a compound statement. When the while(0) is terminated with a semicolon, the do { } while(0); block becomes a compound statement again.
2011-09-06sss_debuglevel - change the debug levels on the flyPavel Březina1-0/+393
https://fedorahosted.org/sssd/ticket/950
2011-08-25New DEBUG facility - SSSDBG_UNRESOLVED changed from -1 to 0Pavel Březina8-8/+8
Removed: SSS_UNRESOLVED_DEBUG_LEVEL (completely replaced with SSSDBG_UNRESOLVED) Added new macro: CONVERT_AND_SET_DEBUG_LEVEL(new_value) Changes unresolved debug level value (SSSDBG_UNRESOLVED) from -1 to 0 so DEBUG macro could be reduced by one condition. Anyway, it has a minor effect, every time you want to load debug_level from command line parameters, you have to use following pattern: /* Set debug level to invalid value so we can deside if -d 0 was used. */ debug_level = SSSDBG_INVALID; pc = poptGetContext(argv[0], argc, argv, long_options, 0); while((opt = poptGetNextOpt(pc)) != -1) { ... } CONVERT_AND_SET_DEBUG_LEVEL(debug_level);
2011-08-25New DEBUG facility - conversionPavel Březina9-21/+9
https://fedorahosted.org/sssd/ticket/925 Conversion of the old debug_level format to the new one. (only where it was necessary) Removed: SSS_DEFAULT_DEBUG_LEVEL (completely replaced with SSSDBG_DEFAULT)
2011-08-15sysdb refactoring: memory context deletedJan Zeleny2-13/+9
This patch deletes memory context parameter in those places in sysdb where it is not necessary. The code using modified functions has been updated. Tests updated as well.
2011-08-15sysdb refactoring: deleted domain variables in sysdb APIJan Zeleny10-45/+23
The patch also updates code using modified functions. Tests have also been adjusted.
2011-07-01Replace system() function with fork and execl call.Matthew Ife1-22/+30
This is much more selinux friendly as it allows policy makers to call nscd_domtrans to transition to nscd_t instead of giving more access to the system via the corcmd_exec_bin macro. Modified-by: Simo Sorce <ssorce@redhat.com> Signed-off-by: Simo Sorce <ssorce@redhat.com>
2011-05-23Set _GNU_SOURCE globallySumit Bose1-1/+0
2011-05-16Fixed uninitialized value in sss_cacheJan Zeleny1-0/+1
https://fedorahosted.org/sssd/ticket/865
2011-05-04Cache cleaning toolJan Zeleny1-0/+360
2011-03-24sss_obfuscate: abort on ctrl+cStephen Gallagher1-0/+12
There is a python bug (http://bugs.python.org/issue11236) where getpass.getpass() does not throw KeyboardInterrupt on ctrl+c. This workaround is the closest we can get: if we detect the control character in the string that we read, we'll cancel.
2011-03-24sss_obfuscate: Avoid traceback on ctrl+dStephen Gallagher1-5/+9
2011-02-03removing password option functionalityGowrishankar Rajaiyan1-5/+1