.
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https
.
If LDB had issues handling DNs with ',' embedded we need to fix that
bug, because technically usernames or group names are allowed to have
',' in the name. So we just must be able to support that.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd
other domains.
Bottom line, we can come up with something but it is not scoped yet. And
needs some more thinking so that we put in place something that scales
well.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel
On Tue, 2011-11-08 at 20:45 -0500, Dan Scott wrote:
Hi,
On Tue, Nov 8, 2011 at 18:35, Simo Sorce s...@redhat.com wrote:
On Tue, 2011-11-08 at 17:57 -0500, Dmitri Pal wrote:
On 11/08/2011 02:56 PM, Dan Scott wrote:
Hi,
This is a great feature. It feels like I'm always re-installing
not validate
the input and an option (possibly enabled by default) for us to do utf-8
validation, but that can be set to not do any validation so that systems
that need user names in non-utf8 can have it (how we store non-utf8
names in sysdb is something we need to consider then).
Simo.
--
Simo Sorce
On Tue, 2011-11-15 at 14:01 +0100, Jakub Hrozek wrote:
On Mon, Nov 14, 2011 at 11:59:36AM -0500, Simo Sorce wrote:
On Mon, 2011-11-14 at 11:35 -0500, Stephen Gallagher wrote:
Fixes https://fedorahosted.org/sssd/ticket/1088
Not sure this is the right thing to do.
Our LDAP
On Tue, 2011-11-15 at 18:23 +0100, Jakub Hrozek wrote:
On Fri, Nov 11, 2011 at 06:18:55PM -0500, Simo Sorce wrote:
After a quick discussion with David Howells (maintainer of
keutils/keyrings) I created this patch for SSSD.
It should make the keyrings used to store user passwords
in the archives.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
.
Does that sound OK?
* even native sudo only searches for
(|(sudoUser=ALL)(sudoUser=username)(sudoUser=%group1)(sudoUser=%group2))
so we can limit the online update the same way
ACK.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel
- Original Message -
Currently, SSSD only supports using libunistring to manage unicode
strings. There are some platforms out there (such as RHEL 5) that do
not
have libunistring available. With this patch, we add an optional flag
to
autoconf to allow SSSD to link against Glib and
On Mon, 2011-12-05 at 11:06 -0500, Stephen Gallagher wrote:
On Mon, 2011-12-05 at 09:30 -0500, Stephen Gallagher wrote:
On Fri, 2011-12-02 at 15:16 -0500, Simo Sorce wrote:
- Original Message -
Currently, SSSD only supports using libunistring to manage unicode
strings
the underlying problem.
Ack x 2
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
On Tue, 2011-12-13 at 10:36 -0500, Stephen Gallagher wrote:
On Tue, 2011-12-13 at 10:32 -0500, Simo Sorce wrote:
Looking at this closely, I think what probably happened is that the
child died while waiting for the ping_check to time out, so that when it
finally returned, the memory
On Tue, 2011-12-13 at 11:01 -0500, Stephen Gallagher wrote:
On Tue, 2011-12-13 at 10:59 -0500, Simo Sorce wrote:
On Tue, 2011-12-13 at 10:36 -0500, Stephen Gallagher wrote:
On Tue, 2011-12-13 at 10:32 -0500, Simo Sorce wrote:
Looking at this closely, I think what probably happened
of
case.
The option to lowercase the result is certainly a must from my POV (been
there done that in Winbind).
Consistency in a lot of cases is a must.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel
of software is still
case-sensitive and will treat foo and Foo as different users.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
negative
caching, a better allocation algorithm for cache blocks, etc...
Have fun and let me know what you think.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org
From [PATCH 0/0] A shared memory cache to perform better:
0/1: general fixes for bugs I found while coding
These patches should be quite straight forward and would be nice to
apply them asap.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From b0de7823eac92f52cbd3d7cef4ef2b72a42026d8 Mon Sep 17
of taste.
It would be nice to have these patches pushed (unless there are issues
with them) reasonably soon in order to avoid a lot of churn and rebases
if they stomp on some other people work.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From 52d67a7b5a2d28a0a8137eb9f0d068cfd1533d70 Mon Sep 17
From [PATCH 0/0] A shared memory cache to perform better:
0/3: New utility functions/headers
These are also quite straightforward but they are useless without the
later patches
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From 89ea929d03188fffd3b877d8df6963eebd9100fb Mon Sep 17 00:00:00 2001
On Wed, 2012-01-04 at 14:32 +0100, Jakub Hrozek wrote:
On Tue, Jan 03, 2012 at 06:00:02PM -0500, Simo Sorce wrote:
From [PATCH 0/0] A shared memory cache to perform better:
0/1: general fixes for bugs I found while coding
These patches should be quite straight forward and would be nice
On Thu, 2012-01-05 at 18:17 -0500, Stephen Gallagher wrote:
On Jan 5, 2012, at 6:00 PM, Jakub Hrozek jakub.hro...@gmail.com wrote:
On Thu, Jan 5, 2012 at 3:27 PM, Simo Sorce s...@redhat.com wrote:
On Thu, 2012-01-05 at 15:07 +0100, Jakub Hrozek wrote:
On Thu, Jan 05, 2012 at 12:33:24PM
their config
files that we can then set.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
On Mon, 2012-01-09 at 12:58 -0500, Stephen Gallagher wrote:
On Tue, 2012-01-03 at 18:00 -0500, Simo Sorce wrote:
From [PATCH 0/0] A shared memory cache to perform better:
0/3: New utility functions/headers
These are also quite straightforward but they are useless without the
later
On Mon, 2012-01-09 at 12:01 -0500, Stephen Gallagher wrote:
On Tue, 2012-01-03 at 18:00 -0500, Simo Sorce wrote:
From [PATCH 0/0] A shared memory cache to perform better:
0/2: changes to make life easier for later patches
These change some internals of fill_pwent() and fiull_grent
On Mon, 2012-01-09 at 13:27 -0500, Simo Sorce wrote:
On Mon, 2012-01-09 at 12:58 -0500, Stephen Gallagher wrote:
On Tue, 2012-01-03 at 18:00 -0500, Simo Sorce wrote:
From [PATCH 0/0] A shared memory cache to perform better:
0/3: New utility functions/headers
These are also quite
On Mon, 2012-01-09 at 13:37 -0500, Stephen Gallagher wrote:
On Mon, 2012-01-09 at 13:36 -0500, Simo Sorce wrote:
On Mon, 2012-01-09 at 13:27 -0500, Simo Sorce wrote:
On Mon, 2012-01-09 at 12:58 -0500, Stephen Gallagher wrote:
On Tue, 2012-01-03 at 18:00 -0500, Simo Sorce wrote:
From
On Mon, 2012-01-09 at 13:49 -0500, Stephen Gallagher wrote:
On Tue, 2012-01-03 at 18:00 -0500, Simo Sorce wrote:
From [PATCH 0/0] A shared memory cache to perform better:
I have one other question about this patch. Would you mind identifying
why you chose to go
On Mon, 2012-01-09 at 13:52 -0500, Simo Sorce wrote:
On Mon, 2012-01-09 at 13:37 -0500, Stephen Gallagher wrote:
On Mon, 2012-01-09 at 13:36 -0500, Simo Sorce wrote:
On Mon, 2012-01-09 at 13:27 -0500, Simo Sorce wrote:
On Mon, 2012-01-09 at 12:58 -0500, Stephen Gallagher wrote
On Mon, 2012-01-09 at 14:45 -0500, Stephen Gallagher wrote:
On Mon, 2012-01-09 at 14:34 -0500, Simo Sorce wrote:
On Mon, 2012-01-09 at 13:52 -0500, Simo Sorce wrote:
On Mon, 2012-01-09 at 13:37 -0500, Stephen Gallagher wrote:
On Mon, 2012-01-09 at 13:36 -0500, Simo Sorce wrote
The murmurhash3.c file is using macros from endian.h that are not
available in glibc 2.5 apparently.
The attached patch fixes the build on such machines (like RHEL5).
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From 1862aa87ed353befd59fc04c82277c4c239c5647 Mon Sep 17 00:00:00 2001
From: Simo
On Mon, 2012-01-09 at 16:30 -0500, Stephen Gallagher wrote:
On Tue, 2012-01-03 at 18:00 -0500, Simo Sorce wrote:
From [PATCH 0/0] A shared memory cache to perform better:
0/4: Actual memory cache implementation
These is the bulk of the work, these patches are still a bit rough
On Mon, 2012-01-09 at 18:24 -0500, Simo Sorce wrote:
I will review the other patches tomorrow.
Thanks!
Oh btw I just found a bug in the client libs that would cause
libnss_sss.so to reopen the fast cache file at every operation until it
ran out of file descriptors, oops :-)
New patch
change the code and add more explanation on why using MC_ALIGN64 is
ok there.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
On Tue, 2012-01-03 at 17:59 -0500, Simo Sorce wrote:
Hello team,
the recent break provided me with some spare time and I decided to use
it to make a gift to SSSD.
Santa agreed that SSSD has been a good kid this year and here we
go :-)
2 years ago I opened this bug:
https
On Tue, 2012-01-10 at 12:56 -0500, Dmitri Pal wrote:
On 01/10/2012 11:26 AM, Simo Sorce wrote:
On Tue, 2012-01-10 at 10:59 -0500, Dmitri Pal wrote:
As there any SELinux implication with this feature?
I guess you mean the whole work not the email you quoted.
Yes. Sorry. It just occurred
On Tue, 2012-01-10 at 14:33 -0500, Simo Sorce wrote:
On Tue, 2012-01-10 at 10:15 -0500, Simo Sorce wrote:
Sure, we can talk about it. I'm looking at it from the users'
perspectives, who I think would generally expect (and be alright
with)
the fast cache being emptied on service restart
failures at level 1, if the correct alternative is further along in
the
loop. Level 3 is fine.
ACK to both.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman
()
as that function is used also for temporary inits of sysdb contextx, so
you risk letting behind dangling pointers in the sss_domain_info struct.
If you do that I guess, you need at least a destructor on the sysdb
context to clean up sysdb-domain-sysdb
Simo.
--
Simo Sorce * Red Hat, Inc * New
.
https://bugzilla.redhat.com/show_bug.cgi?id=782221
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
I see no patch attached.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
complete one that would be nice, but not strictly
necessary. If you do not have the time please open a new ticket for the
second part, and just do the minimum necessary to fix the leak and
nothing more.
Thanks,
Simo.
--
Simo Sorce * Red Hat, Inc * New York
: This is the reference implementation I used for testing
purposes. I tested against proxy_lib_name = files (and changed the
'services' line in my /etc/nsswitch.conf to contain only 'sss')
TBR
Nice work so far.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
/mailman/listinfo/sssd-devel
Nack.
I do not see the part related to migration of the existing accounts
that already have it in the wrong place.
IIRC, taken care by rpm, as the file is not marked noreplace.
So ACK by me.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
to fix using
the wrong timeout but are not directly related to the change the patch
is about ?
Everything else looks fine.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https
a segfault.
I think the correct thing to do is just use sss_hash_create() so that
the table is deallocated when the responder goes away.
ACK
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel
On Mon, 2012-02-06 at 17:25 +0100, Jakub Hrozek wrote:
Reported by Marco Pizzoli
ACK,
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
enough and the patch is relatively simple.
But we strongly prefer proper git patches :)
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
supports tdb
databases?
No, at most you can use ldbedit, but be very careful.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
can walk you through it for the first
time. We hang around on #sssd on irc.freenode.net.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
will keep their pointer
to the old file safely until they close it and reopen the new one).
make sure you create the temp file in the same directory not in /tmp,
that means mkstemp() is probably not necessary as there is no race in
~/.ssh
Simo.
--
Simo Sorce * Red Hat, Inc * New York
, which is a rather common thing
when you are manipulating strings.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
advantages).
agree, we should use pools carefully in critical sections, tailored to
the memory allocation needs of that area of the code.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https
in the tarball.
Ack.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
tickets that last 24h and
renewal times of a week. For normal scenarios this is more than
sufficient.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd
, it will be able to ignore the
limits.conf hard limit.
Ack to both.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
with this alternative patch.
Let me know what you think (note: it builds, but I haven't really tested
it).
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From 9a9994f907b34cb4c90542c26b005bab7e9bf612 Mon Sep 17 00:00:00 2001
From: Simo Sorce s...@redhat.com
Date: Tue, 21 Feb 2012 12:38:04 -0500
Subject
not be set until both spies are active) and made a minor
improvement request.
New patch attached.
Ok I promised an ACK if the minor improvement was there but NACK,
destructors are set twice now, I guess a bad merge when preparing the
patch ?
Simo.
--
Simo Sorce * Red Hat, Inc * New York
On Fri, 2012-03-02 at 14:42 -0500, Stephen Gallagher wrote:
On Fri, 2012-03-02 at 14:40 -0500, Simo Sorce wrote:
On Fri, 2012-03-02 at 14:19 -0500, Stephen Gallagher wrote:
On Fri, 2012-03-02 at 13:52 -0500, Stephen Gallagher wrote:
This function alters the memory hierarchy of the be_req
is to have these accounts both
locally and centrally. The local accounts will simply shadow the central
ones for access purposes, but the central ones will allow you to have
proper memberships that are resolved by sssd when requested.
HTH.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
the openldap libraries to the 2.4.29
release that was broken with SSSD, causing ldap_result to return -1 all
the time. The LDAP_OPT_RESULT_CODE in that case was LDAP_SUCCESS.
ACK,
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
'in-memory' cache are we talking about ?
I would like to understand why looking up into LDB is not considered a
cache look-up.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https
, so the memory is only
occupied for a short and defined period of time. I think the advantages
outweight the slightly bigger memory consumption, so I would prefer this
option.
Why this data is not simply stored in LDB ?
Simo.
--
Simo Sorce * Red Hat, Inc * New York
-user.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
On Wed, 2012-04-04 at 17:15 -0400, Jakub Hrozek wrote:
+if (!state-do_auth ||
+(sasl_mech == NULL user_dn == NULL)) {
+DEBUG(SSSDBG_TRACE_LIBS,
+ (No authentication requested or GSSAPI auth forced off
\n));
change GSSAPI - SASL
Simo.
--
Simo Sorce * Red
never have alignment issues by definition, so I do not
get why you are calling memcpy here ?
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
it from the Contribute page.
Comments are appreciated.
+1
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
.
For testing purposes a command to force a full refresh now is very
valuable as well as for admins, so we should have it as part of the
first implementation.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel
On Tue, 2012-04-17 at 13:37 -0400, Simo Sorce wrote:
On Tue, 2012-04-17 at 13:29 -0400, Dmitri Pal wrote:
On 04/17/2012 12:19 PM, Pavel Březina wrote:
This is what simo and I made up in the last few days:
https://fedorahosted.org/sssd/wiki/DesignDocs/SUDOCachingRules
I tried
duplicates is a bad idea and we will not going
to support it so wipe out ALLOW option
I'm in favor of scrapping the ALLOW and DETECT options.
yeah for merging probably it is better.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing
and provide a very small window of hash
collisions for the slice numbering.
/In FreeIPA we have 10k slices of 200k IDs, can we use the same ?
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
for the user.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
this parameter was generated by PIDL those
are IDL file opptions in samba. You do not want that around it's
meaningless in non-PIDL generated code anyway :)
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
for all domains) and just
run them once ? Then we can sort out which of the domains using that
regex is being addressed ...
or is there something I am missing ?
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel
4.6 and earlier
it
resulted in not inlining.
Corrected patch ensures inlining.
ACK
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
;-)
ok, can you add 3k groups? (j/k)
Sound good from what I can see, if log level 0 confirms or exceeds
cutting time in a half, this will be a good improvement.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel
broken RHEL 5 builds on master.
NACK,
- please define only the ones you need
- please ad them, to a common file, a whole new file is not needed
unless you meant to keep it separated to give (C) credit, in which case
NACK, you are putting your own (C) in there.
Simo.
--
Simo Sorce * Red Hat, Inc
are present as memnum is reset each time.
The sum of actual members + ghost memebers need to be sent back to the
client.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman
in that case may need to be split into a
looks/match/delete operation as a fallback (doing it by default would
probably kill a bit performances so perhaps a fallback case is better).
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing
, Ack.
Ack the same.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
?).
We use it for smart updates in the user/group enumeration code if
entryUSN is not available. IIRC.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd
in the name, which means
a numeric only input to getent passwd should always be considered as a
uid number.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman
);
+if (restore)
+ sigaction(SIGPIPE, osa, NULL);
-return sss_nss_make_request_nochecks(cmd, rd, repbuf, replen,
errnop);
+return ret;
}
errno_t check_server_cred(int sockfd)
It's a NACK.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
On Thu, 2012-05-31 at 22:09 +0200, Jan Zeleny wrote:
https://fedorahosted.org/sssd/ticket/1318
Tested with getent, works fine.
Ack.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https
, ack.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
On Mon, 2012-06-11 at 22:03 -0400, Stephen Gallagher wrote:
On Jun 11, 2012, at 10:01 PM, Simo Sorce s...@redhat.com wrote:
On Mon, 2012-06-11 at 21:23 -0400, Stephen Gallagher wrote:
Subject: [PATCH 3/8] LDAP: Fix incorrect switch statement in
sdap_get_initgr_done()
SDAP_SCHEMA_AD
operatingSystemServicePack = 2) ||
operatingSystemVersion 3790)
return true;
else
return false;
This would probably fail with samba that fakes up the version reported.
No I was talking about actually probing the functionality.
Simo.
--
Simo Sorce * Red Hat, Inc
search doesn't really matter, we care only if we get back a
result or an error. We could search a random user name or any other info
we normally search at rootdse discovery time.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
to the line length.
Thanks
Jan
Please also change the debug message to appropriate symbolic constant.
s/message/level/ I guess :)
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https
On Tue, 2012-06-12 at 08:45 -0400, Stephen Gallagher wrote:
On Tue, 2012-06-12 at 08:28 -0400, Simo Sorce wrote:
On Tue, 2012-06-12 at 07:37 -0400, Stephen Gallagher wrote:
On Tue, 2012-06-12 at 10:50 +0200, Jan Zelený wrote:
On Mon, 2012-06-11 at 21:19 -0400, Stephen Gallagher wrote
know ccache dir.
And we can create it ourselves, why should we have pam_systemd involved
here ?
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd
On Wed, 2012-06-13 at 14:21 -0400, Stephen Gallagher wrote:
On Wed, 2012-06-13 at 14:11 -0400, Simo Sorce wrote:
On Wed, 2012-06-13 at 12:18 -0400, Stephen Gallagher wrote:
Also, I'm going to open a bug to have pam_systemd.so create a
subdirectory for us, so we're not polluting
It's a one-liner but I sitll would like an ack before pushing.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From 2756450b76969d3f1e647b3ae90350412e7499e0 Mon Sep 17 00:00:00 2001
From: Simo Sorce s...@redhat.com
Date: Fri, 15 Jun 2012 10:16:13 -0400
Subject: [PATCH] Do not leak file
this 0x0101
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
0003 Please always use send with a default set of flags, make the ifdef
set the default set of flags (0 vs MSG_NOSIGNAL)
0004 ack (not like much the TODO but I was told 4/5 got split for
reviewability, so ok)
0005 ack
Simo.
--
Simo Sorce * Red Hat, Inc * New York
On Mon, 2012-06-18 at 13:49 -0400, Stephen Gallagher wrote:
On Mon, 2012-06-18 at 13:32 -0400, Simo Sorce wrote:
On Mon, 2012-06-18 at 11:33 -0400, Stephen Gallagher wrote:
On Mon, 2012-06-18 at 09:33 -0400, Stephen Gallagher wrote:
On Mon, 2012-06-18 at 06:30 -0700, Shantanu Goel wrote
it on an actual RHEL5,
can someone do that please ?
--
Simo Sorce * Red Hat, Inc * New York
From 059fc586cc5e02f003a591a179b02f0d9f4c8980 Mon Sep 17 00:00:00 2001
From: Simo Sorce s...@redhat.com
Date: Thu, 21 Jun 2012 13:18:31 -0400
Subject: [PATCH] Add close on exec support for old platforms
Older
, but
they are required. The current logic simply doesn't work.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
provider rule (yes I made that last one up :-D but I use it
daily so it is important to never completely break it for me).
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From 78e77f2d1ee0017e1e1c0bf5efe0e94a70930980 Mon Sep 17 00:00:00 2001
From: Simo Sorce s...@redhat.com
Date: Sat, 30 Jun 2012 11:04
from the sssd_nss process for each getXX() call. If you pile many
that adds up in latency and context switches, so it can still take some
time if you need to do a lot of getXXuid/gid calls.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel
/KRB5_REALM and always use upper(domain)
The rest looks fine.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
501 - 600 of 1474 matches
Mail list logo