sssd - System Security Services Daemon

Age	Commit message (Collapse)	Author	Files	Lines
2011-10-14	HBAC: Use originalMember for identifying servicegroups	Stephen Gallagher	3	-41/+169

2011-10-14	HBAC: Do not save member/memberOf links	Stephen Gallagher	1	-120/+0
	We can just trust the values from the FreeIPA server
2011-10-13	SysDB commands that save lastUpdate allows this value to be passed in	Pavel Březina	11	-77/+130
	https://fedorahosted.org/sssd/ticket/836
2011-10-13	Check if dp_requests hash table exists before using it	Jakub Hrozek	1	-0/+5

2011-10-13	man page fix (lists are comma-separated)	Jan Zeleny	3	-4/+4
	https://fedorahosted.org/sssd/ticket/1024
2011-10-13	Streamline the example config	Jakub Hrozek	1	-72/+28
	https://fedorahosted.org/sssd/ticket/1014
2011-10-13	Append PID to sbus server socket name, let clients use a symlink	Jakub Hrozek	7	-21/+175
	https://fedorahosted.org/sssd/ticket/1034
2011-10-13	Add option to follow symlinks to check_file()	Jakub Hrozek	6	-7/+35

2011-10-07	SYSDB: New source file for sysdb upgrade routines	Stephen Gallagher	3	-888/+929

2011-10-06	Fix small bug where TALLOC_CTX could end up unfreed.	Pavel Zuna	1	-3/+3

2011-10-06	Fix typo in sysdb_get_direct_parents	Jakub Hrozek	1	-1/+1

2011-10-03	Use explicit base 10 for converting strings to integers	Jakub Hrozek	6	-9/+9
	https://fedorahosted.org/sssd/ticket/1013
2011-09-28	Return users and groups based on alias	Jakub Hrozek	3	-8/+10
	https://fedorahosted.org/sssd/ticket/926
2011-09-28	Store name aliases for users, groups	Jakub Hrozek	5	-37/+216
	Also checks fake users for aliases when storing a real users so that getgrnam for a RFC2307 group that references a user by his secondary name followed by getpwnam for this user by his primary name works
2011-09-28	Add a sysdb_get_direct_parents function	Jakub Hrozek	3	-57/+113

2011-09-28	Add sysdb interface to get name aliases	Jakub Hrozek	2	-1/+64

2011-09-28	HBAC: fix typos preventing proper hostgroup evaluation	Stephen Gallagher	1	-3/+3

2011-09-28	Fixed bad logic in processing netgroups in LDAP provider	Jan Zeleny	1	-1/+3

2011-09-28	IPA access: hostname comparison should be case-insensitive	Jakub Hrozek	1	-1/+1

2011-09-28	Multiline macro cleanup	Jakub Hrozek	18	-22/+24
	This is mostly a cosmetic patch. The purpose of wrapping a multi-line macro in a do { } while(0) is to make the macro usable as a regular statement, not a compound statement. When the while(0) is terminated with a semicolon, the do { } while(0); block becomes a compound statement again.
2011-09-21	Enable the midpoint cache update by default	Stephen Gallagher	2	-2/+2
	https://fedorahosted.org/sssd/ticket/918
2011-09-20	Added quiet option to pam_sss	Pavel Březina	2	-5/+36
	https://fedorahosted.org/sssd/ticket/894
2011-09-20	Fix wrong buffer size in has_phy_80211_subdir()	Jakub Hrozek	1	-2/+3
	https://fedorahosted.org/sssd/ticket/1002
2011-09-20	Fix uninitialized pointer read in sdap_gssapi_get_default_realm()	Jakub Hrozek	1	-1/+1
	https://fedorahosted.org/sssd/ticket/1003
2011-09-20	Add missing options to sssd.api.conf	Marko Myllynen	3	-3/+26

2011-09-20	MAN: Add more information about internal credential storage	Stephen Gallagher	2	-1/+8

2011-09-15	MONITOR: Correctly detect lack of response from services	Stephen Gallagher	1	-21/+26
	We were incorrectly using DBUS_ERROR_TIMEOUT here. The correct behaviour is to check for DBUS_ERROR_NO_REPLY. This way we will properly handle the three-tries in the tasks_check_handler(). Additionally, we weren't properly handling failure counts correctly, meaning we weren't restarting stuck services in a timely manner.
2011-09-08	DEBUG timestamps offer higher precision - SSSDConfig updated	Pavel Březina	3	-0/+3
	https://fedorahosted.org/sssd/ticket/956
2011-09-08	DEBUG timestamps offer higher precision - unit tests updated	Pavel Březina	1	-14/+215
	https://fedorahosted.org/sssd/ticket/956
2011-09-08	DEBUG timestamps offer higher precision - man page updated	Pavel Březina	2	-0/+27
	https://fedorahosted.org/sssd/ticket/956
2011-09-08	DEBUG timestamps offer higher precision	Pavel Březina	9	-21/+116
	https://fedorahosted.org/sssd/ticket/956 Added: --debug-microseconds=0/1 Added: debug_microseconds to sssd.conf
2011-09-08	Improve documentation of libipa_hbac	Stephen Gallagher	2	-21/+1697

2011-09-07	Do not access memory out of bounds	Sumit Bose	1	-2/+2

2011-09-06	Keep deref controls until the whole request is finished	Jakub Hrozek	1	-8/+45
	https://fedorahosted.org/sssd/ticket/989 John Hodrien found out that when paging is used while dereferencing an entry, sssd_be may segfault on the second page. This was because paging returned the control to sdap_generic_search multiple times but sssd was freeing dereference control after the first search invocation. The subsequend sdap searched accessed memory that was already freed.
2011-09-06	Improve error message for LDAP password constraint violation	Jakub Hrozek	3	-16/+29
	https://fedorahosted.org/sssd/ticket/985
2011-09-06	Subscribe to netlink route and addr messages	Jakub Hrozek	1	-5/+244
	https://fedorahosted.org/sssd/ticket/955 In addition to carrier up messages, also subscribe to any messages describing that an address has been added or removed or routing table changed.
2011-09-06	Discard carrier messages from non-ethernet devices	Jakub Hrozek	1	-3/+155
	IFF_LOWER_UP has no meaning for wireless interfaces, it can mean that an association has been made with an access point, but it does not mean that an addressing has been completed. This patch discards "carrier up" messages from interfaces that do not look like ethernet devices.
2011-09-06	Change libnl monitor callback to only signal going online	Jakub Hrozek	3	-14/+5
	This feature was not used and would probably never be used, because it is much safer to rely on online actions to time out. Moreover, it would make implementing the new features more complex.
2011-09-06	Allow turning dereference off by setting the threshold to 0	Jakub Hrozek	4	-3/+13

2011-09-06	sss_debuglevel - change the debug levels on the fly	Pavel Březina	3	-1/+460
	https://fedorahosted.org/sssd/ticket/950
2011-09-06	sss_ldap_err2string() - ldap_err2string() to sss_ldap_err2string()	Pavel Březina	4	-38/+38
	https://fedorahosted.org/sssd/ticket/986
2011-09-06	sss_ldap_err2string() - function created	Pavel Březina	3	-2/+16
	https://fedorahosted.org/sssd/ticket/986
2011-09-02	Add option to specify the kerberos replay cache dir	Stephen Gallagher	7	-0/+70
	Adds a configure option to set the distribution default as well as an sssd.conf option to override it. https://fedorahosted.org/sssd/ticket/980
2011-08-29	HBAC: Properly skip all non-group memberOf entries	Stephen Gallagher	1	-1/+2

2011-08-29	Fix moving to next entry in deref code	Jakub Hrozek	1	-1/+6
	https://fedorahosted.org/sssd/ticket/973
2011-08-26	HBAC: Use of hostgroups for targethost or sourcehost was broken	Stephen Gallagher	1	-4/+4
	We were trying to look up the wrong attribute for the name of the hostgroup.
2011-08-26	HBAC: Handle saving groups that have no members	Stephen Gallagher	1	-7/+21

2011-08-26	Use the default Kerberos realm for LDAP with GSSAPI auth	Jakub Hrozek	1	-3/+55
	https://fedorahosted.org/sssd/ticket/970
2011-08-26	Add LDAP provider option to set LDAP_OPT_X_SASL_NOCANON	Jakub Hrozek	8	-3/+33
	https://fedorahosted.org/sssd/ticket/978
2011-08-25	--debug-timestamps=1 is not passed to providers	Pavel Březina	3	-55/+77
	https://fedorahosted.org/sssd/ticket/972 --debug-timestamps=1 is now passed to providers