- Dec 20, 2024
-
-
Simon Josefsson authored
-
- Dec 19, 2024
-
-
Andreas Hasenack authored
-
Andreas Hasenack authored
This avoids hitting #1081027. Closes: #1081027
-
- Nov 26, 2024
-
-
Simon Josefsson authored
-
- Nov 08, 2024
-
-
Michael Prokop authored
The ldap-user-group-ldap-auth autopkgtest is flaky on Debian CI infrastructure, though so far it couldn't be reproduced on Debian's Salsa nor Ubuntu's test infrastructure. It appears that the test tends to fail under heavy load, or when specific other things are happening on the system. Let's increase the timeout within debian/tests/login.exp, which is used by debian/tests/ldap-user-group-ldap-auth, before marking the test as flaky. Closes: #1081027
-
- Jun 04, 2024
-
-
Timo Aaltonen authored
-
Timo Aaltonen authored
-
Timo Aaltonen authored
-
Timo Aaltonen authored
-
- May 20, 2024
-
-
Timo Aaltonen authored
-
Timo Aaltonen authored
-
Timo Aaltonen authored
-
- May 16, 2024
-
-
Pavel Březina authored
-
Weblate authored
(Swedish) currently translated at 100.0% (717 of 717 strings) Translation: SSSD/SSSD-2-9 Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/sv/ po: update translations (Korean) currently translated at 100.0% (717 of 717 strings) Translation: SSSD/SSSD-2-9 Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/ko/ Update translation files Updated by "Update PO files to match POT (msgmerge)" hook in Weblate. Translation: SSSD/SSSD-2-9 Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/ po: update translations (Korean) currently translated at 100.0% (717 of 717 strings) Translation: SSSD/SSSD-2-9 Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/ko/
-
Pavel Březina authored
This is not available in sssd-2-9 branch and it was accidentally pushed when cherry-picking f135102765c781f1f9e9e76d16d30a51c776d473. Reviewed-by: Alexey Tikhonov <atikhono@redhat.com>
-
Pavel Březina authored
This was previously hardcoded to 31 seconds (hardcoded retry_timout + 1). This may be too short period under some circumstances. When we retry primary server we drop connection to the backup server and if the primary server is not yet available (and there are many unavailable primary servers) we may go through a long timeout cycle every half minute. This patch makes the value configurable. :config: Added `failover_primary_timout` configuration option. This can be used to configure how often SSSD tries to reconnect to a primary server after a successful connection to a backup server. This was previously hardcoded to 31 seconds which is kept as the default value. Resolves: https://github.com/SSSD/sssd/issues/7375 Reviewed-by: Alexey Tikhonov <atikhono@redhat.com> Reviewed-by: Iker Pedrosa <ipedrosa@redhat.com> (cherry picked from commit e9738e36937e78f80bb2772c48cffbddf39bd5fe)
-
Madhuri Upadhye authored
Update the passkey test case where we are now testing su passkey auth of user when user is added with ssh-key and passkey mapping for AD, Samba and LDAP server. Signed-off-by: Madhuri Upadhye <mupadhye@redhat.com> (cherry picked from commit b73994ff3ddf58b9363282b47ebe5ca2329462c2) Reviewed-by: Iker Pedrosa <ipedrosa@redhat.com> Reviewed-by: Tomáš Halman <thalman@redhat.com> (cherry picked from commit f135102765c781f1f9e9e76d16d30a51c776d473)
-
Justin Stephenson authored
Reviewed-by: Iker Pedrosa <ipedrosa@redhat.com> Reviewed-by: Tomáš Halman <thalman@redhat.com> (cherry picked from commit d7d51126a35b375a5a11cd290cf3c011c713afe4)
-
Justin Stephenson authored
Avoid retrying SSS_PAM_PREAUTH loop if an unexpected error is encountered during passkey processing. Reviewed-by: Iker Pedrosa <ipedrosa@redhat.com> Reviewed-by: Tomáš Halman <thalman@redhat.com> (cherry picked from commit 914ce094735d759e162fa885087789dcfc8c89f8)
-
Andreas Schneider authored
We plan to get rid of smbc_setFunctionAuthData() in future, so already move to the function using the context. Also tell libsmbclient we do not want to fallback if Kerberos fails. Signed-off-by: Andreas Schneider <asn@redhat.com> Reviewed-by: Sumit Bose <sbose@redhat.com> (cherry picked from commit 39f5b9ac21d167991591f6873b34f722d4bdd2bc)
-
- May 15, 2024
-
-
Sumit Bose authored
If it is not clear if a string is 0-terminated or not but the length is known the '%.*s' template must be used to use only given numbers of characters. '%*s' is a valid printf() template but only sets the minimal width of the output. This patch fixes an occurrence ion the sysdb code as well. Reviewed-by: Alexey Tikhonov <atikhono@redhat.com> (cherry picked from commit f1c6218164bbcfba1698d416e248b7a9de4ddcf9)
-
- May 09, 2024
-
-
Dan Lavu authored
Reviewed-by: Jakub Vávra <jvavra@redhat.com> Reviewed-by: Sumit Bose <sbose@redhat.com> (cherry picked from commit 7f48c7c448124dea68f2835c7e10742f48f8bc6c)
-
- May 07, 2024
-
-
Jakub Vávra authored
Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com>
-
Jakub Vávra authored
Add journalctl info when service_ctrl call fails. Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com>
-
Jakub Vávra authored
For non-root the sssd needs to be restarted after joining the AD and fixing sssd.conf permissions, this was not done on master (smb). Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com>
-
Jakub Vávra authored
Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com>
-
Jakub Vávra authored
Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com>
-
Jakub Vávra authored
Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com>
-
Jakub Vávra authored
Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com>
-
Jakub Vávra authored
Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com> (cherry picked from commit 31bd16f65a1add408d108767bdaa9fe86df2bc7f)
-
Justin Stephenson authored
Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com> Reviewed-by: Sumit Bose <sbose@redhat.com> (cherry picked from commit b32f59603e707e130135c6f29a7332aa2b337b41)
-
- May 02, 2024
-
-
Alexey Tikhonov authored
Request was created on a long term responder context, but a callback for this request tries to access memory that is allocated on a short term client context. So if client disconnects before request is completed, then callback dereferences already freed memory. Resolves: https://github.com/SSSD/sssd/issues/7319 Reviewed-by: Alejandro López <allopez@redhat.com> Reviewed-by: Pavel Březina <pbrezina@redhat.com> (cherry picked from commit dc637c9730d0ba04a0d8aa2645ee537224cd4b19)
-
- May 01, 2024
-
-
Justin Stephenson authored
Reviewed-by: Alexey Tikhonov <atikhono@redhat.com> (cherry picked from commit c15bd3aeb3bdc0af23b69bf277c2177a69c92bc3)
-
- Apr 25, 2024
-
-
Timo Aaltonen authored
-
- Apr 24, 2024
-
-
Alexey Tikhonov authored
Reviewed-by: Andre Boscatto <aboscatt@redhat.com> Reviewed-by: Iker Pedrosa <ipedrosa@redhat.com> (cherry picked from commit 65ca6725f6326481b7bb98c2a762c462f12cc8a8)
-
- Apr 23, 2024
-
-
Sumit Bose authored
If the domain object of the forest root domain cannot be found in the LDAP tree of the local AD domain SSSD tries to read the request data from an LDAP server of the forest root domain directly. After reading this data the information is stored in the cache but currently the information about the domain store in memory is not updated with the additional data. As a result e.g. the domain SID is missing in this data and only becomes available after a restart where it is read from the cache. With this patch an unconditional refresh is triggered at the end of the fallback code path. Resolves: https://github.com/SSSD/sssd/issues/7250 Reviewed-by: Dan Lavu <dlavu@redhat.com> Reviewed-by: Tomáš Halman <thalman@redhat.com> (cherry picked from commit 0de6c33047ac7a2b5316ec5ec936d6b675671c53)
-
- Apr 22, 2024
-
-
Madhuri Upadhye authored
Here, added two test cases: 1. Check log message when we add ssh key as passkey mapping. 2. Check log message when we add ssh key with passkey token. Signed-off-by: Madhuri Upadhye <mupadhye@redhat.com> Reviewed-by: Iker Pedrosa <ipedrosa@redhat.com> Reviewed-by: Justin Stephenson <jstephen@redhat.com> Reviewed-by: Scott Poore <spoore@redhat.com> (cherry picked from commit 55bcb883eb627a91b954d9ba643bac940bdca7dc)
-
Abhijit Roy authored
sdap_idmap: Enabling further debugging for to understand the underlying reason for Could not convert objectSID. Reviewed-by: Sumit Bose <sbose@redhat.com> (cherry picked from commit be8913eb8dc774516beeaaa2306243fce4db14ef)
-
- Apr 19, 2024
-
-
Jakub Vávra authored
Issues in package installation were silently ignored resulting debugging failures elsewhere. This also resulted in false PASSED in case that sssd was not updated due to some dependecy problem. Reviewed-by: Madhuri Upadhye <mupadhye@redhat.com> (cherry picked from commit aacb789b7036946fe5b5c0a971af0122f7528d84)
-
- Apr 18, 2024
-
-
Alexey Tikhonov authored
Addition to 718fed9c53807b8502d6547bc0253b979d35e677 Reviewed-by: Alejandro López <allopez@redhat.com> Reviewed-by: Iker Pedrosa <ipedrosa@redhat.com> (cherry picked from commit ab2671c00866d917f3e737a007ae64753f8440aa)
-