On Thu, Jan 31, 2013 at 11:58:27AM +0100, Jakub Hrozek wrote:
On Thu, Jan 31, 2013 at 10:49:50AM +0100, Sumit Bose wrote:
Hi,
I have created a design page for
https://fedorahosted.org/sssd/ticket/1032 [RFE] sssd should support DNS
sites at
https://fedorahosted.org/sssd/wiki
On Thu, Jan 31, 2013 at 09:43:09AM -0500, Simo Sorce wrote:
On Thu, 2013-01-31 at 10:49 +0100, Sumit Bose wrote:
Hi,
I have created a design page for
https://fedorahosted.org/sssd/ticket/1032 [RFE] sssd should support DNS
sites at
https://fedorahosted.org/sssd/wiki/DesignDocs
On Thu, Jan 31, 2013 at 11:32:21AM -0500, Simo Sorce wrote:
On Thu, 2013-01-31 at 16:40 +0100, Sumit Bose wrote:
On Thu, Jan 31, 2013 at 09:43:09AM -0500, Simo Sorce wrote:
On Thu, 2013-01-31 at 10:49 +0100, Sumit Bose wrote:
Hi,
I have created a design page for
https
On Thu, Jan 31, 2013 at 03:10:16PM -0500, Derek Page wrote:
Hi Devs,
I am using SSSD with kerberos with gssapi auth and it works really
well for our environment using AD for authentication.
I am not sure if this is an SSSD issue but I though I would ask since
I can't find a solution
On Fri, Feb 01, 2013 at 11:00:00AM +, John Hodrien wrote:
On Fri, 1 Feb 2013, Sumit Bose wrote:
I guess this might be a limitation of sshd. iirc it will not use all
tickets from the keytab but only the one that matches
host/fully.qualified.host.name where the fully.qualified.host.name
-1234
# sss_idmap --sid-to-name=abcdefg
Usage: sss_idmap ...
Invalid SID
}}}
=== Author(s) ===
Sumit Bose sb...@redhat.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
On Fri, Feb 08, 2013 at 01:23:25PM -0500, Dmitri Pal wrote:
On 02/06/2013 11:13 AM, Sumit Bose wrote:
Hi,
I tried to extract some common requirements of #1534 'Integrate SSSD
with CIFS client' and #1557 'Use the Global Catalog in SSSD for the AD
provider' in the
https
On Fri, Feb 08, 2013 at 04:08:26PM -0500, Dmitri Pal wrote:
On 02/08/2013 02:10 PM, Sumit Bose wrote:
On Fri, Feb 08, 2013 at 01:23:25PM -0500, Dmitri Pal wrote:
On 02/06/2013 11:13 AM, Sumit Bose wrote:
Hi,
So far makes sense.
Who are the potential consumers of the library other than
On Mon, Feb 11, 2013 at 02:07:28PM +0100, Jakub Hrozek wrote:
On Wed, Feb 06, 2013 at 05:13:57PM +0100, Sumit Bose wrote:
Hi,
I tried to extract some common requirements of #1534 'Integrate SSSD
with CIFS client' and #1557 'Use the Global Catalog in SSSD for the AD
provider
On Tue, Feb 12, 2013 at 06:12:13PM +0100, Jakub Hrozek wrote:
Hi,
Short version - attached is a patch proposal for a unit test based on
cmocka. The patches are an example of a complex, yet isolated unit test
and I'd like to get opinions on whether this would be a good way to go.
Long
On Fri, Feb 15, 2013 at 02:28:50PM +0530, Rajnesh Kumar Siwal wrote:
We have an attribute pwdAccountLockedTime in OpenLDAP that is
responsible for for locking a User account.
I am not able to figure out how sssd honours it.
The attribute is part of the server side password policies
On Thu, Jan 31, 2013 at 07:04:32PM +0100, Sumit Bose wrote:
On Thu, Jan 31, 2013 at 11:32:21AM -0500, Simo Sorce wrote:
On Thu, 2013-01-31 at 16:40 +0100, Sumit Bose wrote:
On Thu, Jan 31, 2013 at 09:43:09AM -0500, Simo Sorce wrote:
On Thu, 2013-01-31 at 10:49 +0100, Sumit Bose wrote
On Thu, Feb 21, 2013 at 07:02:47PM +0100, Jakub Hrozek wrote:
On Thu, Feb 21, 2013 at 05:16:07PM +0100, Sumit Bose wrote:
After a discussion with Simo I updated the page again.
bye,
Sumit
Hi,
I think this plugin architecture matches what we discussed over the
phone. I only have
On Fri, Feb 22, 2013 at 04:41:15PM +0100, Jakub Hrozek wrote:
On Fri, Feb 22, 2013 at 04:32:44PM +0100, Sumit Bose wrote:
On Fri, Feb 22, 2013 at 02:57:08PM +0100, Pavel Březina wrote:
On 02/22/2013 09:33 AM, Sumit Bose wrote:
On Thu, Feb 21, 2013 at 07:02:47PM +0100, Jakub Hrozek wrote
On Sat, Feb 23, 2013 at 07:20:36AM -0500, Simo Sorce wrote:
Hi,
since we are creating a plugin interface, we should use custom
data
type in _recv instead of struct ares_srv_reply.
makes sense. Then I would suggest that a list ordered according
to RFC
2782 of
On Wed, Feb 27, 2013 at 09:51:16PM +0100, Thorsten Scherf wrote:
Hi Thorsten,
thank you for the patch and bringing the attention to the *.doxy.in
files. Those files are autogenerated by doxygen where this typo and
others are already fixed upstream. Instead of fixing the typos
individually I
On Thu, Feb 28, 2013 at 10:46:10AM +0100, Jakub Hrozek wrote:
On Thu, Feb 28, 2013 at 09:36:13AM +0100, Sumit Bose wrote:
On Wed, Feb 27, 2013 at 09:51:16PM +0100, Thorsten Scherf wrote:
Hi Thorsten,
thank you for the patch and bringing the attention to the *.doxy.in
files
On Fri, Mar 01, 2013 at 01:39:22PM +0100, Pavel Březina wrote:
On 02/12/2013 06:12 PM, Jakub Hrozek wrote:
Hi,
Short version - attached is a patch proposal for a unit test based on
cmocka. The patches are an example of a complex, yet isolated unit test
and I'd like to get opinions on
On Mon, Mar 04, 2013 at 10:12:05AM +0100, Ondrej Kos wrote:
I noticed the warning while testing another patch.
--
Ondrej Kos
Associate Software Engineer
Identity Management
Red Hat Czech
phone: +420-532-294-558
cell: +420-736-417-909
ext: 82-62558
loc: 1013 Brno 1 office
irc:
On Tue, Mar 05, 2013 at 12:20:12AM +0100, Jakub Hrozek wrote:
I don't think there is a reason to ignore error codes while storing
subdomains.
I see it the other way round, there is no reason to return an error if
storing a subdomain fails, because we cannot do anything about it. If an
error is
On Wed, Feb 27, 2013 at 09:48:32AM -0500, Simo Sorce wrote:
On Mon, 2013-02-25 at 11:11 +0100, Sumit Bose wrote:
On Sat, Feb 23, 2013 at 07:20:36AM -0500, Simo Sorce wrote:
Hi,
since we are creating a plugin interface, we should use custom
data
type in _recv
())
or similar? To avoid conflicts I would recommend to add a prefix, e.g.
sss_mock_type and sss_mock_ptr_type.
bye,
Sumit
From f2f8bc9f9a9604c288830ed1dbde76449405f593 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Wed, 6 Mar 2013 21:19:54 +0100
Subject: [PATCH] Fix for cast to pointer from
, but corresponds to the owning
user and group of the Windows domain.
=== Author(s) ===
Sumit Bose sb...@redhat.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
On Tue, Mar 12, 2013 at 10:57:38AM +0100, Lukas Slebodnik wrote:
Hi,
I found two header files, which are not included in any other file
src/providers/providers.h and src/sss_client/protos.h
First one is removed in attached patch and second one was commented
with #if 0 more then four years
Hi,
this patch should fix https://fedorahosted.org/sssd/ticket/1634 and
eliminates the need to guess the UPN in the PAC responder.
bye,
Sumit
From 7351471575460f5aa0b487ee9c3108fa1a117e8f Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Mon, 9 Jul 2012 11:01:25 +0200
Subject
On Wed, Mar 27, 2013 at 11:24:10AM +0100, Ondrej Kos wrote:
I noticed the warning while working on unrelated issue.
Patch is attached.
ACK
bye,
Sumit
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
Hi,
this patch fixes https://fedorahosted.org/sssd/ticket/1842 . The actual
functionality is added by the replacement of krb5_parse_name() by
(sss_)krb5_parse_name_flags() in krb5_child.c.
bye,
Sumit
From b24a7f6ed6868bd76a52c74ac302d094eb8f070e Mon Sep 17 00:00:00 2001
From: Sumit Bose sb
On Thu, Apr 11, 2013 at 09:32:53AM -0400, Simo Sorce wrote:
On Thu, 2013-04-11 at 12:46 +0200, Sumit Bose wrote:
Hi,
this patch fixes https://fedorahosted.org/sssd/ticket/1842 . The actual
functionality is added by the replacement of krb5_parse_name() by
(sss_)krb5_parse_name_flags
. There is still lots of duplicated code in the nss responder, but
this patch would at least help to add the SID lookups without adding
redundancy.
bye,
Sumit
From 2fa083ceaf72360bbacfbe576d0e9378bd7b3444 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Mon, 15 Apr 2013 10:58:05
Hi,
this patch fixes https://fedorahosted.org/sssd/ticket/1888 . The issue
was introduced during the redesign of the sysdb API and hence no
backport to older versions is needed.
bye,
Sumit
From 2d1feaad7f665b81cfa444671431ff4236c931f1 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
On Fri, Apr 19, 2013 at 07:47:09PM +0200, Jakub Hrozek wrote:
On Mon, Apr 15, 2013 at 10:34:07PM +0200, Sumit Bose wrote:
Hi,
while working on adding new nss responder calls for SID related lookups
I realized that I can copy-and-paste some existing code again and add
even more
On Tue, Apr 23, 2013 at 01:50:35PM -0400, Simo Sorce wrote:
On Tue, 2013-04-23 at 11:26 -0400, Stephen Gallagher wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 04/23/2013 10:37 AM, Michal Židek wrote:
Also one more question. How should I amend the -version-info value
for
On Wed, Apr 24, 2013 at 01:34:07PM +0200, Michal Židek wrote:
On 04/24/2013 10:08 AM, Sumit Bose wrote:
On Tue, Apr 23, 2013 at 01:50:35PM -0400, Simo Sorce wrote:
On Tue, 2013-04-23 at 11:26 -0400, Stephen Gallagher wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 04/23/2013 10:37
On Wed, Apr 24, 2013 at 02:22:42PM -0400, Stephen Gallagher wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed 24 Apr 2013 02:05:55 PM EDT, Michal Židek wrote:
New version of the patch is attached.
Changes from previous iteration: - version-info set to 0:2:0 - init
function
Hi,
the IPA SELinux provider cannot look up subdomain user. This patch
should fix it and ticket https://fedorahosted.org/sssd/ticket/1892.
bye,
Sumit
From acd7d2fc682b449bc5ef01d7e2872d919079b965 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Mon, 22 Apr 2013 10:43:44 +0200
On Fri, Apr 26, 2013 at 10:28:53AM +0200, Jakub Hrozek wrote:
On Thu, Apr 25, 2013 at 01:58:37PM +0200, Sumit Bose wrote:
Hi,
the IPA SELinux provider cannot look up subdomain user. This patch
should fix it and ticket https://fedorahosted.org/sssd/ticket/1892.
bye,
Sumit
[snip
On Fri, Apr 26, 2013 at 10:47:22AM +0200, Sumit Bose wrote:
On Fri, Apr 26, 2013 at 10:28:53AM +0200, Jakub Hrozek wrote:
On Thu, Apr 25, 2013 at 01:58:37PM +0200, Sumit Bose wrote:
Hi,
the IPA SELinux provider cannot look up subdomain user. This patch
should fix it and ticket
Hi,
I've seen some error messages related to the missing override_homedir
file while building the man pages. I guess this patch will break string
freeze, so we might want to push it for a later release.
bye,
Sumit
From 9d579dbee8a62cb98159c147a50918abec65 Mon Sep 17 00:00:00 2001
From: Sumit
On Thu, May 02, 2013 at 08:31:40PM +0200, Sumit Bose wrote:
On Thu, May 02, 2013 at 07:23:11PM +0200, Jakub Hrozek wrote:
On Thu, May 02, 2013 at 04:07:57PM +0200, Sumit Bose wrote:
Hi,
this is the second series of patches for the SID related lookups. With
these 4 patches, together
On Fri, May 03, 2013 at 07:56:48PM +0200, Jakub Hrozek wrote:
Currently when enterprise principals are enabled in the AD provider, we
check if the UPN is the same as we'd expect. But when enterprise
principals are enabled (which is by default in AD provider), then the
principal krb5_child
On Fri, May 03, 2013 at 12:03:14PM +0200, Jakub Hrozek wrote:
I'm sorry, it looks like I didn't test one of the recent patches
properly and it was causing sssd_be crash when ID mapping was off in the
AD provider.
ACK
bye,
Sumit
___
sssd-devel
On Sun, May 05, 2013 at 11:21:19PM +0200, Jakub Hrozek wrote:
Hi,
the attached patch implements the changes described in #1468. The logic
itself is implemented in confdb_get_domain_internal, which breaks the
layering a little because there is some knowledge about the providers
used in the
On Mon, May 06, 2013 at 10:14:01AM +0200, Jakub Hrozek wrote:
On Mon, May 06, 2013 at 09:40:21AM +0200, Sumit Bose wrote:
On Sun, May 05, 2013 at 11:21:19PM +0200, Jakub Hrozek wrote:
Hi,
the attached patch implements the changes described in #1468. The logic
itself is implemented
On Tue, May 07, 2013 at 09:52:17AM +0200, Jakub Hrozek wrote:
This bug was found by Sumit. When I split
resolv_get_sockaddr_address_index and resolv_get_sockaddr_address and
actually didn't use the index parameter anywhere.
ACK, I only have I nano-nitpick, you might want to consider to rename
On Mon, May 06, 2013 at 10:05:41PM +0200, Jakub Hrozek wrote:
On Mon, May 06, 2013 at 06:14:56PM +0200, Sumit Bose wrote:
Hi,
this patch reads the flat name and the SID from AD and stores then to
the cache. It fixes https://fedorahosted.org/sssd/ticket/1468 directly
and the flat name
On Mon, May 06, 2013 at 10:26:02PM +0200, Jakub Hrozek wrote:
On Mon, May 06, 2013 at 10:05:41PM +0200, Jakub Hrozek wrote:
On Mon, May 06, 2013 at 06:14:56PM +0200, Sumit Bose wrote:
Hi,
this patch reads the flat name and the SID from AD and stores then to
the cache. It fixes
On Tue, May 07, 2013 at 11:03:38AM +0200, Sumit Bose wrote:
On Mon, May 06, 2013 at 10:05:41PM +0200, Jakub Hrozek wrote:
On Mon, May 06, 2013 at 06:14:56PM +0200, Sumit Bose wrote:
Hi,
this patch reads the flat name and the SID from AD and stores then to
the cache. It fixes https
Hi,
while testing other siff I came across this issue. It does not affect
the FreeIPA SID-to-name lookups but should be fixed anyways.
bye,
Sumit
From d6105fc0590b33ecf53a0101bee962b60786410c Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Wed, 8 May 2013 09:30:08 +0200
Subject
On Wed, May 08, 2013 at 11:27:18AM +, David Frost wrote:
Hi, having configured SSSD on RHEL 6.4 to connect to our OpenLDAP server
successfully, I can get a list of users and groups using the getent command
but cannot ssh into the host or login via the console.
The following error
Hi,
this is just a simple one-liner I came across.
bye,
Sumit
From 3cf6fa8b17be2dcfbdd9134d415986ba3eb410f8 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Fri, 10 May 2013 10:46:43 +0200
Subject: [PATCH] Add missing \n to debug string
---
src/responder/pac/pacsrv_utils.c
On Fri, May 10, 2013 at 10:49:08AM +0200, Jakub Hrozek wrote:
On Fri, May 10, 2013 at 10:46:01AM +0200, steve wrote:
Hi
openSUSE 12.3
The build and install goes OK but upon running sssd:
sssd -i -d3
ldb: module version mismatch in
../source4/dsdb/samdb/ldb_modules/acl.c :
On Fri, May 10, 2013 at 11:02:08AM +0200, steve wrote:
On 10/05/13 10:49, Jakub Hrozek wrote:
On Fri, May 10, 2013 at 10:46:01AM +0200, steve wrote:
Hi
openSUSE 12.3
The build and install goes OK but upon running sssd:
sssd -i -d3
ldb: module version mismatch in
On Fri, May 10, 2013 at 11:51:44AM +0200, steve wrote:
On 10/05/13 11:23, Sumit Bose wrote:
On Fri, May 10, 2013 at 11:02:08AM +0200, steve wrote:
On 10/05/13 10:49, Jakub Hrozek wrote:
On Fri, May 10, 2013 at 10:46:01AM +0200, steve wrote:
Hi
openSUSE 12.3
The build and install goes OK
On Fri, May 10, 2013 at 05:34:27PM +0200, Jakub Hrozek wrote:
On Fri, May 03, 2013 at 06:39:17PM +0200, Sumit Bose wrote:
I added a 5th patch which adds support for tuples and Unicode to the
python API as inquired by Alexander. I didn't squeezed them because I'm
not sure if Alexander
On Mon, May 13, 2013 at 10:17:34AM +0200, Jakub Hrozek wrote:
Please see the attached patch that fixes
https://fedorahosted.org/sssd/ticket/1922
ACK.
btw, I will send a similar Patch for the IPA provider soon.
bye,
Sumit
___
sssd-devel mailing list
(https://fedorahosted.org/sssd/ticket/1558).
bye,
Sumit
From 676fb113be38e2bd52fe655f4ec5f09179dea984 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Tue, 7 May 2013 21:36:51 +0200
Subject: [PATCH 1/4] IPA: Always initialize ID mapping
Because we now always want to store SIDs
value so the e.g. we can properly parse the credential cache.
Initially I have seen validation failures, but currently I cannot
reproduce them anymore.
bye,
Sumit
From 517ba52c518eb747ccb2a76d75a7ec88fc870cf4 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Mon, 13 May 2013 14:25:15
On Wed, May 15, 2013 at 02:07:11PM +0200, steve wrote:
You can try patch from mail
https://lists.fedorahosted.org/pipermail/sssd-devel/2013-May/015072.html
If you are not familiar with git.
--download patch from mail.
--patch git sources (git am path_to_patch
--compile sssd ...
I hope,
On Wed, May 22, 2013 at 08:24:08AM +0200, Lukas Slebodnik wrote:
ehlo,
Recommended way to create SRPM is to run make (prerelease-)srpm.
But in previous case make file have to be generated, therefore
configure script should not fail. (all sssd required dependencies have to be
On Tue, May 14, 2013 at 06:07:05PM +0200, Jakub Hrozek wrote:
On Mon, May 13, 2013 at 12:33:46PM +0200, Sumit Bose wrote:
Hi,
with these four patches the SID-to-name API can now also be used with
the AD provider and for local IPA accounts. Since this goes beyond the
functionality
Hi,
currently the AD subdomain request returns DP_ERR_FATAL even if it was
successful, this patch should fix it.
bye,
Sumit
From bb6f53896b96d2359976c1cccad5cfd4f1e8b0ba Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Tue, 21 May 2013 11:26:01 +0200
Subject: [PATCH] Fix return
Hi,
this patch makes sure that the PAC responder can be used with the AD
provider as well and so should fix
https://fedorahosted.org/sssd/ticket/1558. It depends on the SID mapping
patches.
It turned out that major parts of the PAC responder had to removed or
changed. E.g. all functions which
On Thu, May 23, 2013 at 11:16:47AM +0200, Jakub Hrozek wrote:
On Thu, May 23, 2013 at 11:13:19AM +0200, Jakub Hrozek wrote:
When I was rebasing the topic branch with these patches I realized the
patches would now require a 3way merge to apply correctly. Rebased
patches are attached.
And
On Thu, May 23, 2013 at 04:39:23PM -0400, Simo Sorce wrote:
On Thu, 2013-05-23 at 22:20 +0200, Sumit Bose wrote:
maybe it should be added that it is expected that there is a delimiter
of one character not more or less.
The original code was able to cope with delimiters bigger than 1
On Mon, May 27, 2013 at 08:37:08PM +0200, Jakub Hrozek wrote:
Hi,
I fond these small issues while working on the GC lookups. I'm sending
them separately b/c they can be reviewed without any knowledge about GC
and do not break any existing functionality.
[PATCH 1/4] IPA: Check for ENOMEM
On Tue, May 28, 2013 at 10:56:06AM +0200, Jakub Hrozek wrote:
On Tue, May 28, 2013 at 10:26:54AM +0200, Sumit Bose wrote:
@@ -1371,14 +1382,11 @@ fo_set_port_status(struct fo_server *server, enum
port_status status)
* into fo_server structures. Find the duplicates and set the same
should be displayed until the enumeration is complete and all
users and groups are in the SSSD cache.
=== Author(s) ===
Sumit Bose sb...@redhat.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo
On Tue, May 28, 2013 at 02:09:54PM +0200, Jakub Hrozek wrote:
On Tue, May 28, 2013 at 01:20:15PM +0200, Sumit Bose wrote:
Hi,
I have created a design page for one of the next major features of SSSD
at https://fedorahosted.org/sssd/wiki/DesignDocs/IPAServerMode . The
basic idea
On Tue, May 28, 2013 at 03:11:20PM -0400, Dmitri Pal wrote:
On 05/28/2013 07:20 AM, Sumit Bose wrote:
Hi,
I have created a design page for one of the next major features of SSSD
at https://fedorahosted.org/sssd/wiki/DesignDocs/IPAServerMode . The
basic idea is that if SSSD is running
On Mon, May 27, 2013 at 08:06:35PM +0200, Jakub Hrozek wrote:
On Fri, May 24, 2013 at 08:32:20AM +0200, Sumit Bose wrote:
On Thu, May 23, 2013 at 04:39:23PM -0400, Simo Sorce wrote:
On Thu, 2013-05-23 at 22:20 +0200, Sumit Bose wrote:
maybe it should be added that it is expected
On Wed, May 29, 2013 at 05:17:37PM +0200, Jakub Hrozek wrote:
On Wed, May 29, 2013 at 12:51:43PM +0200, Sumit Bose wrote:
The task should make sure all users and groups are read after a while
without reading objects twice in a single run. Maybe it is possible to
add a special paged
.
bye,
Sumit
From 5171490e533d41fa03369dfd8f6c4d826fffa70f Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Tue, 28 May 2013 18:32:32 +0200
Subject: [PATCH] Set canonicalize flag if enterprise principals are used
In contrast to MIT KDCs AD does not automatically canonicalize
On Tue, May 28, 2013 at 01:20:15PM +0200, Sumit Bose wrote:
Hi,
I have created a design page for one of the next major features of SSSD
at https://fedorahosted.org/sssd/wiki/DesignDocs/IPAServerMode . The
basic idea is that if SSSD is running on a FreeIPA server it should help
the FreeIPA
fff4c87319c4599344571ce7abae67513b6acc1a Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Fri, 31 May 2013 10:52:05 +0200
Subject: [PATCH] Lookup domains at startup
To make sure that e.g. the short/NetBIOS domain name is available this
patch make sure that the responders send a get_domains
On Tue, Jun 04, 2013 at 02:18:35PM +0200, Jakub Hrozek wrote:
On Tue, Jun 04, 2013 at 12:05:12PM +0200, Sumit Bose wrote:
On Fri, May 31, 2013 at 04:15:18PM +0200, Jakub Hrozek wrote:
On Fri, May 31, 2013 at 01:37:11PM +0200, Sumit Bose wrote:
Hi,
recently the patch Allow flat
On Tue, Jun 04, 2013 at 04:11:51PM +0200, Ondrej Kos wrote:
Hi,
Attached patch adresses issue https://fedorahosted.org/sssd/ticket/1816
I thought about ignoring these right after fetching from ldap, but
the solution to just ignore the range while updating sysdb seems
more appropriate,
On Tue, Jun 04, 2013 at 03:25:12PM +0200, Jakub Hrozek wrote:
On Mon, Jun 03, 2013 at 11:58:02AM +0200, Jakub Hrozek wrote:
On Fri, May 31, 2013 at 04:01:51PM +0200, Jakub Hrozek wrote:
On Fri, May 31, 2013 at 03:47:32PM +0200, Jakub Hrozek wrote:
On Fri, May 31, 2013 at 10:59:21AM
On Tue, May 28, 2013 at 01:20:15PM +0200, Sumit Bose wrote:
Hi,
I have created a design page for one of the next major features of SSSD
at https://fedorahosted.org/sssd/wiki/DesignDocs/IPAServerMode . The
basic idea is that if SSSD is running on a FreeIPA server it should help
the FreeIPA
On Wed, Jun 05, 2013 at 10:06:28PM +0200, Jakub Hrozek wrote:
On Wed, Jun 05, 2013 at 11:32:39AM +0200, Jakub Hrozek wrote:
I pushed the code into my gc branch and I'm attaching an updated tarball
again. Sorry for the confusion, I only developed and tested on F19.
Sumit found out that the
On Thu, Jun 06, 2013 at 08:06:22PM +0200, Jakub Hrozek wrote:
On Thu, Jun 06, 2013 at 01:58:18PM +0200, Sumit Bose wrote:
On Wed, Jun 05, 2013 at 10:06:28PM +0200, Jakub Hrozek wrote:
On Wed, Jun 05, 2013 at 11:32:39AM +0200, Jakub Hrozek wrote:
I pushed the code into my gc branch
On Fri, Jun 07, 2013 at 12:27:49AM +0200, Jakub Hrozek wrote:
On Thu, Jun 06, 2013 at 08:45:34PM +0200, Sumit Bose wrote:
On Thu, Jun 06, 2013 at 08:06:22PM +0200, Jakub Hrozek wrote:
On Thu, Jun 06, 2013 at 01:58:18PM +0200, Sumit Bose wrote:
On Wed, Jun 05, 2013 at 10:06:28PM +0200
On Sun, Jun 09, 2013 at 01:40:27PM +0200, Jakub Hrozek wrote:
Found by Coverity.
ACK
bye,
Sumit
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
On Tue, May 28, 2013 at 01:20:15PM +0200, Sumit Bose wrote:
Hi,
I have created a design page for one of the next major features of SSSD
at https://fedorahosted.org/sssd/wiki/DesignDocs/IPAServerMode . The
basic idea is that if SSSD is running on a FreeIPA server it should help
the FreeIPA
On Mon, Jun 10, 2013 at 09:30:43PM +0200, Jakub Hrozek wrote:
Another Coverity issue.
From b01b9bc392cd21e72cdb04fa3893091fcac0f8e0 Mon Sep 17 00:00:00 2001
From: Jakub Hrozek jhro...@redhat.com
Date: Mon, 10 Jun 2013 21:29:25 +0200
Subject: [PATCH] Fix allocation check in the AD provider
On Tue, Jun 11, 2013 at 10:04:06AM +0200, Jakub Hrozek wrote:
On Tue, Jun 11, 2013 at 09:11:58AM +0200, Sumit Bose wrote:
On Mon, Jun 10, 2013 at 09:30:43PM +0200, Jakub Hrozek wrote:
Another Coverity issue.
From b01b9bc392cd21e72cdb04fa3893091fcac0f8e0 Mon Sep 17 00:00:00 2001
From
Hi,
this patch fixes some warning which were shown during 'make docs'.
bye,
Sumit
From a7b9ce79ba818524b376b4cfc49b8cdf3d718604 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Tue, 11 Jun 2013 11:46:28 +0200
Subject: [PATCH] Fix some doxygen warnings
---
src/confdb/confdb.h
On Wed, Jun 12, 2013 at 09:55:57AM +0200, Pavel Březina wrote:
Hi,
Sumit found warning caused by my latest patch set.
CC src/providers/dp_ptask.o
../src/providers/dp_ptask.c: In function 'be_ptask_create':
../src/providers/dp_ptask.c:249:41: warning: declaration of 'send'
shadows a
On Wed, Jun 12, 2013 at 10:37:44AM +0200, Pavel Březina wrote:
On 06/12/2013 10:20 AM, Sumit Bose wrote:
On Wed, Jun 12, 2013 at 09:55:57AM +0200, Pavel Březina wrote:
Hi,
Sumit found warning caused by my latest patch set.
CC src/providers/dp_ptask.o
../src/providers/dp_ptask.c
On Wed, Jun 12, 2013 at 12:04:59PM +0200, Lukas Slebodnik wrote:
On (12/06/13 10:20), Sumit Bose wrote:
On Wed, Jun 12, 2013 at 09:55:57AM +0200, Pavel Březina wrote:
Hi,
Sumit found warning caused by my latest patch set.
CC src/providers/dp_ptask.o
../src/providers/dp_ptask.c
On Wed, Jun 12, 2013 at 06:19:38PM +0200, Jakub Hrozek wrote:
On Mon, Jun 10, 2013 at 11:45:08AM +0200, Sumit Bose wrote:
On Tue, May 28, 2013 at 01:20:15PM +0200, Sumit Bose wrote:
Hi,
I have created a design page for one of the next major features of SSSD
at https
On Mon, Jun 17, 2013 at 02:03:35AM +, greg.lehm...@csiro.au wrote:
Hi All,
We have Active Directory working with sssd for most clients.
In some of our HPC environments we use a 10.0.x.x subnet for the compute
nodes. They have no direct access to AD but can connect to head
,
Sumit
From 0869831977ff2cedfd8530c807bbf8d0e6a9f88c Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Mon, 17 Jun 2013 12:22:32 +0200
Subject: [PATCH 1/2] Use principal from the ticket to find validation entry
If canonicalization or enterprise principals are enabled the realm
c6943b2331a3d2a1cf4affcdae4795a946e72239 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Tue, 18 Jun 2013 15:42:02 +0200
Subject: [PATCH] PAC: do not expect that sysdb_search_object_by_sid() return
ENOENT
sysdb_search_object_by_sid() does not return ENOENT if no related object
was found
On Mon, Jun 17, 2013 at 12:02:02PM +0200, Lukas Slebodnik wrote:
On (12/06/13 16:05), Jakub Hrozek wrote:
On Wed, Jun 05, 2013 at 09:37:28AM +0200, Lukas Slebodnik wrote:
On (02/06/13 23:14), Jakub Hrozek wrote:
On Sat, 2013-06-01 at 11:43 +0200, Lukas Slebodnik wrote:
On (31/05/13
On Mon, Jun 24, 2013 at 11:04:40AM +0200, Jakub Hrozek wrote:
I think we didn't synchronize our changes with Sumit. The SID code
doesn't retry correctly when looking up users-or-groups by SID. The
attached patch fixes that.
ACK
bye,
Sumit
___
On Mon, Jun 24, 2013 at 11:12:33AM +0200, Jakub Hrozek wrote:
On Mon, Jun 24, 2013 at 11:04:40AM +0200, Jakub Hrozek wrote:
I think we didn't synchronize our changes with Sumit. The SID code
doesn't retry correctly when looking up users-or-groups by SID. The
attached patch fixes that.
17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Mon, 24 Jun 2013 12:51:53 +0200
Subject: [PATCH] PAC: do not delete originalDN or cached password if present
If the PAC responder recognizes some attribute changes between the
cached user entry and the PAC data it quite crudely just removes
Hi,
David Woodhouse identified an issue with Kerberos ticket renewal.
Attached two patches fix two issues related to the authtok refactoring
which make renewal for me working again.
bye,
Sumit
From 0f2fb036a9f3b7ef0a64fdfc17869b2d6b673334 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb
, Sumit Bose wrote:
Hi,
David Woodhouse identified an issue with Kerberos ticket renewal.
Attached two patches fix two issues related to the authtok refactoring
which make renewal for me working again.
bye,
Sumit
Works for me, too. Ack.
Pushed
On Wed, Jun 26, 2013 at 10:23:59AM +0200, Lukas Slebodnik wrote:
On (25/06/13 11:40), Jakub Hrozek wrote:
On Mon, Jun 24, 2013 at 10:54:30PM +0200, Lukas Slebodnik wrote:
On (24/06/13 22:06), Jakub Hrozek wrote:
On Sat, Jun 22, 2013 at 01:55:51PM +0200, Lukas Slebodnik wrote:
On (21/06/13
701 - 800 of 3319 matches
Mail list logo