summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)AuthorFilesLines
2012-10-09Fix uninitialized pointer read in ssh_host_pubkeys_update_known_hostsJakub Hrozek1-1/+2
2012-10-05Updating the translations for 1.9.1 releaseJakub Hrozek13-10238/+12658
2012-10-05man: Note that automounter must be restarted to re-read the master mapJakub Hrozek5-0/+10
https://fedorahosted.org/sssd/ticket/1563
2012-10-05do not create pid file twicePavel Březina1-1/+6
If a provider is terminated and the monitor tries to restart it, it goes again through mark_service_as_started() which will try to create pid file again because number of running services didn't change. Because the pid file cannot be created twice, it will not return EOK and the whole SSSD is terminated.
2012-10-05manpage: ldap_access_filter is not always mandatoryPavel Březina1-5/+7
https://fedorahosted.org/sssd/ticket/1540
2012-10-05SSH: Expire hosts in known_hostsJan Cholasta12-4/+216
2012-10-05SSH: Refactor sysdb and related codeJan Cholasta6-196/+261
2012-10-04Fix default upper limit of slicesOndrej Kos4-4/+4
https://fedorahosted.org/sssd/ticket/1537 changes upper limit of slices to 2000200000 in providers code and manpage.
2012-10-04Slices calculation is alway wrong for default valuesOndrej Kos1-2/+2
2012-10-04Log possibly non-randomizable ccache file templateOndrej Kos4-6/+26
fixes https://fedorahosted.org/sssd/ticket/1533 ccache file template is now checked for appended XXXXXX for use with mkstemp. When those characters are not present, warning is written to log.
2012-10-04Check for existing pidfile before starting the providersJakub Hrozek1-17/+15
After we switched to writing pidfile after the responders started, we forgot that starting a second SSSD instance would first overwrite the pipes and sockets and only then the SSSD would find out there already is a pidfile. This patch checks for existing pidfile before proceeding with startup.
2012-10-04Remove unused variableJakub Hrozek1-6/+0
2012-10-04Change the log level of two DEBUG messages in check_domain_rangesJakub Hrozek1-4/+5
https://fedorahosted.org/sssd/ticket/1562
2012-10-03Note that Range Retrieval is not supported when filter is used in the search ↵Jakub Hrozek2-2/+14
base. https://fedorahosted.org/sssd/ticket/1471
2012-10-03Variable in sdap_sudo_rules_refresh_send could be used, uninitialized.Michal Zidek1-0/+1
2012-10-03sss_seed: Improved error message when the domain does not exist.Michal Zidek1-2/+5
https://fedorahosted.org/sssd/ticket/1553
2012-10-03sss_seed: Passwords longer then PASS_MAX not allowed.Michal Zidek2-1/+20
sss_seed fails if password file specified with -p or --password-file option contains password longer than PASS_MAX. Man pages inform about PASS_MAX limitation.
2012-10-03sss_seed: Make only first line of password file valid.Michal Zidek1-0/+36
When file is used to specify a password in sss_seed, then only first line of this file is used. Also empty passwords are treated as errors. https://fedorahosted.org/sssd/ticket/1548
2012-10-03sss_seed: Show error message when interactive input fails.Michal Zidek1-0/+1
https://fedorahosted.org/sssd/ticket/1549
2012-10-03sss_seed: Option --debug did not work in sss_seed tool.Michal Zidek1-4/+4
debug_level was set before the parameters were parsed, so the default debug_level value was always used. Also CHECK_ROOT macro was used on bad place, so only root was able to run sss_seed --help/-?.
2012-10-02Include param_help_py.xml in the list of po4a sourcesJakub Hrozek1-0/+1
2012-10-02Flip the default value of ldap_initgroups_use_matching_rule_in_chainJakub Hrozek3-4/+4
https://fedorahosted.org/sssd/ticket/1535
2012-10-02Add man page section about provider specific re_expressionSumit Bose1-8/+33
Fixes: https://fedorahosted.org/sssd/ticket/1525
2012-10-02remove left over principal selectionPavel Březina3-127/+0
https://fedorahosted.org/sssd/ticket/1303 Domain start up was taking too long when there are many principals in a kerberos keytab. We were looking up in the keytab two times. The first time we try to select a proper principal and remember it. The second call happens almost right after the first one and it is just a check if the principal exists in the keytab, without any output information other than success/failure. It is probably a left over from https://fedorahosted.org/sssd/ticket/781. This patch removes the second call.
2012-10-02monitor: create pid file after all responders are startedPavel Březina2-4/+37
https://fedorahosted.org/sssd/ticket/1357
2012-10-02Fix few coding style issuesPavel Březina2-4/+7
2012-10-01sudo and autofs search bases should not be marked experimentalJakub Hrozek1-2/+2
https://fedorahosted.org/sssd/ticket/1541
2012-10-01Change option to display help message in man pages.Michal Zidek3-2/+12
POPT_AUTOHELP generates -? and --help options and not -h to display help message. https://fedorahosted.org/sssd/ticket/1546
2012-10-01Document ldap_chpass_update_last_changeJakub Hrozek3-0/+17
Add the option to the manual page and the configAPI https://fedorahosted.org/sssd/ticket/1494
2012-10-01sysdb_master_domain_get_info: fix copy-and-paste errorSumit Bose1-2/+2
2012-10-01Use flat name for master domain as wellSumit Bose3-2/+20
2012-10-01Add new option default_domain_suffixSumit Bose16-35/+137
2012-09-26sssd-ldap manpage: ldap_scheme formattingOndrej Kos1-6/+26
fixes https://fedorahosted.org/sssd/ticket/1483 ldap schemes now displayed as bullet list
2012-09-26LDAP: Handle empty namingContexts values safelyStephen Gallagher1-0/+8
Certain LDAP servers can return an empty string as the value of namingContexts. We need to treat these as NULL so that we can fail gracefully. https://fedorahosted.org/sssd/ticket/1542
2012-09-24Updating translations for the 1.9.0 releaseJakub Hrozek13-3837/+3931
2012-09-24Detect LDAPDerefRes in configure scriptJakub Hrozek1-1/+9
https://fedorahosted.org/sssd/ticket/1317
2012-09-24KRB5: Recover gracefully if the ccache file could not be reusedJakub Hrozek1-4/+6
https://fedorahosted.org/sssd/ticket/1384
2012-09-24Bad debug message when no dns_discovery_domain specified.Michal Zidek1-3/+11
https://fedorahosted.org/sssd/ticket/920
2012-09-24DB: Use TALLOC_CTX for talloc contextJakub Hrozek1-10/+10
A couple of sysdb functions used "void *" in place of a TALLOC_CTX.
2012-09-24SYSDB: Remove unnecessary domain parameter from several sysdb callsJakub Hrozek15-115/+79
The domain can be read from the sysdb object. Removing the domain string makes the API more self-contained.
2012-09-24AUTOFS: convert the existing autofs entries during a sysdb upgradeJakub Hrozek3-1/+144
2012-09-24AUTOFS: Use both key and value in entry RDNJakub Hrozek4-14/+51
This patch switches from using just key in the RDN to using both key and value. That is neccessary to allow multiple direct mounts in a single map.
2012-09-24AUTOFS: Add entry objects below map objectsJakub Hrozek6-220/+172
https://fedorahosted.org/sssd/ticket/1506 Changes how the new autofs entry objects are handled. Instead of creating the entry on the cn=autofs,cn=custom level, the entry is created below the map it belongs to.
2012-09-24AUTOFS: Add sysdb testsJakub Hrozek1-0/+249
2012-09-24AUTOFS: Do not fail if search base is not providedJakub Hrozek1-2/+2
2012-09-24AD: Handle sysdb lookup failure during tokenGroups processingStephen Gallagher1-0/+6
2012-09-24Make subdomain discovery less noisySumit Bose1-15/+16
Fixes https://fedorahosted.org/sssd/ticket/1517
2012-09-24autofs, sudo, ssh and PAC are not experimental anymoreJakub Hrozek6-62/+10
2012-09-24sdap_add_incomplete_groups(): fix ret may be uninitialized warningPavel Březina1-1/+1
2012-09-24AD: Optimize initgroups lookups with tokenGroupsStephen Gallagher3-4/+313
https://fedorahosted.org/sssd/ticket/1355