sssd - System Security Services Daemon

Age	Commit message (Collapse)	Author	Files	Lines
2011-05-31	Fix typo in initgroups negative cache check	Stephen Gallagher	1	-1/+1

2011-05-31	Changing default to Default for consistency	Kaushik Banerjee	1	-1/+1

2011-05-27	Add more detail to ldap_uri manpage entry	Stephen Gallagher	1	-1/+13

2011-05-25	Sanitize username during initgroups call	Sumit Bose	1	-1/+7

2011-05-25	Separate return paths for success and failure in sdap_nested_group_check_cache	Jakub Hrozek	1	-6/+10

2011-05-24	Make "password" the default for ldap_default_authtok_type	Stephen Gallagher	2	-1/+4

2011-05-24	Fix uninitialized scalar variable in sdap_nested_group_check_cache	Jakub Hrozek	1	-2/+4
	https://fedorahosted.org/sssd/ticket/878
2011-05-24	Fix uninitialized pointer read in sdap_x_deref_parse_entry	Jakub Hrozek	1	-1/+1
	https://fedorahosted.org/sssd/ticket/877
2011-05-24	Fix bad comparison in sdap_has_deref_support	Jakub Hrozek	1	-1/+1
	https://fedorahosted.org/sssd/ticket/876
2011-05-23	Import config.h earlier	Stephen Gallagher	3	-5/+3
	On RHEL 5 and other older platforms, failing to set _GNU_SOURCE early would cause some functions - such as strndup() - to be unavailable.
2011-05-23	Include string.h in sss_cli.h	Sumit Bose	1	-0/+1
	Since memcpy() is used in sss_cli.h it should be declared here, too.
2011-05-23	Set _GNU_SOURCE globally	Sumit Bose	13	-23/+13

2011-05-20	Use dereference when processing RFC2307bis nested groups	Jakub Hrozek	9	-17/+487
	Instead of issuing N LDAP requests when processing a group with N users, utilize the dereference functionality to pull down all the members in a single LDAP request. https://fedorahosted.org/sssd/ticket/799
2011-05-20	Refactor RFC2307bis nested group processing	Jakub Hrozek	1	-123/+188
	This patch splits checking cache and hash tables into standalone functions. This will make it easy to reuse the code in a new branch that uses dereferencing.
2011-05-20	Use fake users during RFC2307bis nested group processing	Jakub Hrozek	1	-13/+165
	Instead of downloading complete user data which is potentionally very slow, only download the necessary minimum information and store the users as dummy entries.
2011-05-20	Change sysdb_add_fake_user to add OriginalDN	Jakub Hrozek	3	-3/+11
	RFC2307bis code relies heavily on originalDN, so the fake users need to have an option to store it, too.
2011-05-20	Generic dereference search	Jakub Hrozek	2	-0/+157
	A generic wrapper around ASQ and OpenLDAP dereference searches. https://fedorahosted.org/sssd/ticket/635
2011-05-20	OpenLDAP dereference searches	Jakub Hrozek	3	-0/+376
	This dereference method is supported at least by OpenLDAP and 389DS/RHDS For more details, see: http://tools.ietf.org/html/draft-masarati-ldap-deref-00
2011-05-20	Add support for Attribute Scoped Queries	Jakub Hrozek	2	-0/+207
	For more details on ASQ, see: http://msdn.microsoft.com/en-us/library/aa366976%28VS.85%29.aspx http://msdn.microsoft.com/en-us/library/aa746418%28v=VS.85%29.aspx
2011-05-20	Generic dereference data structures and utilities	Jakub Hrozek	2	-0/+45
	These will be shared by both dereference methods in a later patch.
2011-05-20	sdap_get_generic_ext	Jakub Hrozek	1	-73/+202
	Add a private sdap_get_generic_ext_send()/_recv() request that exposes more of ldap_search_ext options, in particular the server contols. The existing sdap_generic_search_send()/_recv() request is now a thin wrapper around the new _ext request. The other important change is that an entry parsing is a callback now. That was done in order to allow custom parsing for results such as OpenLDAP deref or Attribute Scoped Queries.
2011-05-20	Add new options to override shell value	Jakub Hrozek	8	-1/+188
	https://fedorahosted.org/sssd/ticket/742
2011-05-20	Add a new option to override home directory value	Jakub Hrozek	9	-2/+192
	https://fedorahosted.org/sssd/ticket/551
2011-05-20	Add a new option to override primary GID number	Jakub Hrozek	8	-2/+33
	https://fedorahosted.org/sssd/ticket/742
2011-05-20	Fixed copying of pam_data structure	Jan Zeleny	1	-0/+1
	Related ticket: https://fedorahosted.org/sssd/ticket/855
2011-05-20	Rename label in expand_ccname_template	Jakub Hrozek	1	-17/+17
	The label was named fail but used also in success cases.
2011-05-20	Remove append_attrs_to_array	Jakub Hrozek	2	-12/+0
	This function was not used anywhere
2011-05-20	IPA Provider: don't fail if user is not a member of any groups	Stephen Gallagher	1	-2/+5

2011-05-16	Fixed uninitialized value in sss_cache	Jan Zeleny	1	-0/+1
	https://fedorahosted.org/sssd/ticket/865
2011-05-16	Fixed unitialized pointer in select_principal_from_keytab	Jan Zeleny	1	-1/+1
	https://fedorahosted.org/sssd/ticket/857
2011-05-16	Fixed unitialized return value in match_principal	Jan Zeleny	1	-2/+1
	https://fedorahosted.org/sssd/ticket/858
2011-05-16	Possible memory leak fixed	Jan Zeleny	1	-1/+1

2011-05-16	Fixed wrong variable in sdap_initgr_nested_store	Jan Zeleny	1	-1/+1

2011-05-16	Fixed --debug-to-files for nss and pam services	Jan Zeleny	1	-4/+4
	This error caused that monitor didn't pass --debug-to-files option to nss and pam services when creating them.
2011-05-12	Set c-ares to retry nameservers	Jakub Hrozek	1	-1/+1
	https://fedorahosted.org/sssd/ticket/867
2011-05-12	Use a temporary memory context in expand_ccname_template	Jakub Hrozek	1	-20/+33

2011-05-06	Add support for openldap24 package on RHEL 5.7	Sumit Bose	1	-0/+21

2011-05-06	Allow changing the log level without restart	Stephen Gallagher	10	-17/+89
	We will now re-read the confdb debug_level value when processing the monitor_common_logrotate() function, which occurs when the monitor receives a SIGHUP.
2011-05-06	Create common sss_monitor_init()	Stephen Gallagher	4	-69/+55
	This was implemented almost identically for both the responders and the providers. It is easier to maintain as a single routine. This patch also adds the ability to provide a private context to attach to the sbus_connection for later use.
2011-05-06	Remove unused constants from data_provider.h	Jakub Hrozek	1	-11/+0

2011-05-06	Do not leak netgroups hash table	Jakub Hrozek	1	-0/+12

2011-05-05	Added some kerberos functions for building on RHEL5	Jan Zeleny	4	-8/+192

2011-05-04	Man page for sss_cache	Jan Zeleny	2	-1/+123

2011-05-04	Some minor fixes and changes in sysdb_ops	Jan Zeleny	1	-17/+40

2011-05-04	Cache cleaning tool	Jan Zeleny	1	-0/+360

2011-05-04	Add a function for searching netgroups with custom filter	Jan Zeleny	2	-0/+65

2011-05-04	Make sysdb_ctx_list public structure	Jan Zeleny	3	-8/+53
	Also create a routine to initialize it
2011-05-04	Fixed lastUSN checking improvements	Jan Zeleny	3	-5/+23
	This patch fixes some issues with setting lastUSN attribute and it adds check against the highest user/group USN after enumeration to keep better track of the real highest USN. Optimal solution here would be to schedule a check of rootDSE entry right after the enumeration finishes, but for the moment this is good enough.
2011-05-04	Override config file debug_level with command-line	Stephen Gallagher	4	-22/+66
	This patch also makes the following changes: 1) The [sssd] debug_level setting no longer acts as a default for all other sections. 2) We will now skip passing the debug argument to the child processes from the master unless the SSSD was run with a command-line argument for the debug level. https://fedorahosted.org/sssd/ticket/764
2011-05-04	Do not leak LDAP URI with high log level	Jakub Hrozek	1	-2/+7