Arthur de Jong

Open Source / Free Software developer

summaryrefslogtreecommitdiffstats
path: root/nslcd
Commit message (Collapse)AuthorAgeFilesLines
* don't shrink the buffer for passwd shell value (was part ↵Arthur de Jong2012-09-211-1/+1
| | | | | | of r1750) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7.15+squeeze@1774 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix log message for invalid pam_authz_search as reported ↵Arthur de Jong2012-09-201-1/+1
| | | | | | by Matt Rae (based on r1628 from 0.8, r1629 from 0.7) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7.15+squeeze@1773 ef36b2f9-881f-0410-afb5-c4e39611909c
* implements proper range checking numeric values returned ↵Arthur de Jong2012-09-209-12/+123
| | | | | | from LDAP (thanks Jakub Hrozek) (r1523, r1524 and r1528 from 0.8, r1600 from 0.7) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7.15+squeeze@1772 ef36b2f9-881f-0410-afb5-c4e39611909c
* increase buffer for pam_authz_search as suggested by ↵Arthur de Jong2012-09-081-2/+2
| | | | | | Chris J Arges (r1643 from 0.8, r1648 from 0.7) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7.15+squeeze@1753 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix possible NULL pointer dereference (r1591 from 0.8, ↵Arthur de Jong2012-09-081-0/+6
| | | | | | r1730 from 0.7) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7.15+squeeze@1752 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix possible NULL pointer dereference (r1589 from 0.8, ↵Arthur de Jong2012-09-081-0/+3
| | | | | | r1728 from 0.7) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7.15+squeeze@1751 ef36b2f9-881f-0410-afb5-c4e39611909c
* grow gecos buffer size and consistency improvements to ↵Arthur de Jong2012-09-082-4/+4
| | | | | | other buffers (r1540 from 0.8 branch, r1727 from 0.7 branch) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7.15+squeeze@1750 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix a typo in disconnect logic (r1560 from 0.8 branch)Arthur de Jong2011-12-091-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1561 ef36b2f9-881f-0410-afb5-c4e39611909c
* ensure that uid, gid and pid vars are properly ↵Arthur de Jong2011-12-081-3/+3
| | | | | | initialised (part of r1558 from trunk) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1559 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix a problem with uninitialised memory while parsing ↵Arthur de Jong2011-08-241-7/+5
| | | | | | the tls_ciphers option (r1471 from development) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1516 ef36b2f9-881f-0410-afb5-c4e39611909c
* grow static buffers so that they should be large enough ↵Arthur de Jong2011-07-023-6/+6
| | | | | | (part of r1476 from trunk) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1477 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix r1465 to split attribute/value at right placeArthur de Jong2011-06-051-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1469 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix problem with partial attribute name matches in DN ↵Arthur de Jong2011-05-211-0/+1
| | | | | | (e.g. uid vs. uidNumber) (thanks to Timothy White for the fix) (r1464 from trunk) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1465 ef36b2f9-881f-0410-afb5-c4e39611909c
* report correct reported error from ldap_abandon() (merge ↵Arthur de Jong2011-04-221-1/+1
| | | | | | r1431 from development) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1432 ef36b2f9-881f-0410-afb5-c4e39611909c
* return correct kind of error code from try_pwmod() ↵Arthur de Jong2010-12-111-1/+2
| | | | | | (r1313 from trunk) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1321 ef36b2f9-881f-0410-afb5-c4e39611909c
* call myldap_session_check() before adding a new search ↵Arthur de Jong2010-12-101-2/+2
| | | | | | to the session so the connection actually gets closed on timeout (the connection isn't closed when there are active searches) (r1294 from trunk) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1320 ef36b2f9-881f-0410-afb5-c4e39611909c
* set a short socket timeout when shutting down the ↵Arthur de Jong2010-10-291-16/+18
| | | | | | connection to the LDAP server (part of r1276 from trunk) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1291 ef36b2f9-881f-0410-afb5-c4e39611909c
* grow ruser buffer (small part of r1267 from trunk)Arthur de Jong2010-10-131-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1268 ef36b2f9-881f-0410-afb5-c4e39611909c
* handle errors from ldap_result() better and disconnect ↵Arthur de Jong2010-09-241-32/+37
| | | | | | (and reconnect) in more cases (r1207 and r1208 from trunk) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd-0.7@1211 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix commentArthur de Jong2010-07-181-2/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1165 ef36b2f9-881f-0410-afb5-c4e39611909c
* allow configuring NSS module's SONAME from configure and ↵Arthur de Jong2010-07-071-1/+1
| | | | | | use this in nslcd to dlopen() the correct library (thanks to Alexander V. Chernikov for the idea) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1161 ef36b2f9-881f-0410-afb5-c4e39611909c
* add logging to SASL interaction functionArthur de Jong2010-06-191-0/+12
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1154 ef36b2f9-881f-0410-afb5-c4e39611909c
* improve debug logging of SASL bind callsArthur de Jong2010-06-191-4/+14
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1153 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove warning messages from parsing the sasl_* options ↵Arthur de Jong2010-06-182-23/+18
| | | | | | and document them in the nslcd.conf(5) manual page (they should be functional) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1150 ef36b2f9-881f-0410-afb5-c4e39611909c
* make SASL binding code a little earier to readArthur de Jong2010-06-181-16/+12
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1149 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove the use_sasl option and instead rely on sasl_mech ↵Arthur de Jong2010-06-183-7/+2
| | | | | | being specified git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1148 ef36b2f9-881f-0410-afb5-c4e39611909c
* use RTLD_NODELETE during dlopen() instead of not using ↵Arthur de Jong2010-06-161-3/+4
| | | | | | dlclose() git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1144 ef36b2f9-881f-0410-afb5-c4e39611909c
* pass pthread flags correctly to nslcd Makefile and ↵Arthur de Jong2010-06-151-1/+1
| | | | | | rename save_ vars to not conflict with AX_PTHREAD test git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1142 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement a global symbol inside the NSS module to allow ↵Arthur de Jong2010-06-141-8/+38
| | | | | | applications to disable NSS lookups over LDAP and use it in nslcd to avoid deadlocks git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1141 ef36b2f9-881f-0410-afb5-c4e39611909c
* make include guard names consistent throughout the ↵Arthur de Jong2010-06-145-15/+15
| | | | | | source and avoid conflicts with system headers git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1140 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove commented out memberOf and ipNetmaskNumber ↵Arthur de Jong2010-06-124-5/+0
| | | | | | attributes and small cleanups git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1138 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix and remove source code commentsArthur de Jong2010-06-111-3/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1136 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix bug in test (r1127)Arthur de Jong2010-06-011-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1130 ef36b2f9-881f-0410-afb5-c4e39611909c
* add a debug log message when user authentication was ↵Arthur de Jong2010-06-011-0/+2
| | | | | | successful git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1127 ef36b2f9-881f-0410-afb5-c4e39611909c
* make debug logging for pam_authz_search option a little ↵Arthur de Jong2010-05-221-4/+5
| | | | | | more readable git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1113 ef36b2f9-881f-0410-afb5-c4e39611909c
* always clear returned buffer when performing attribute ↵Arthur de Jong2010-05-152-5/+10
| | | | | | mapping (based on a patch by Nalin Dahyabhai <nalin@redhat.com>) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1111 ef36b2f9-881f-0410-afb5-c4e39611909c
* make logging of buffer checks consistentArthur de Jong2010-05-131-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1104 ef36b2f9-881f-0410-afb5-c4e39611909c
* small compatibility improvementsArthur de Jong2010-05-121-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1100 ef36b2f9-881f-0410-afb5-c4e39611909c
* only log "connected to LDAP server" if the previous ↵Arthur de Jong2010-05-091-2/+3
| | | | | | connect failed or we are failing over to a different server git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1095 ef36b2f9-881f-0410-afb5-c4e39611909c
* rename reconnect_maxsleeptime option to reconnect_retrytimeArthur de Jong2010-05-093-8/+11
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1094 ef36b2f9-881f-0410-afb5-c4e39611909c
* don't log errno if it is not set (make error less confusing)Arthur de Jong2010-05-091-6/+9
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1093 ef36b2f9-881f-0410-afb5-c4e39611909c
* handle authentication searches a little differently ↵Arthur de Jong2010-05-091-6/+14
| | | | | | (only try once if an authentication error is returned) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1092 ef36b2f9-881f-0410-afb5-c4e39611909c
* refactor retry timing mechanism to use time between ↵Arthur de Jong2010-05-093-27/+40
| | | | | | first and last error to determin when to rerty and only try once (and don't sleep) when we have been failing for a long time git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1091 ef36b2f9-881f-0410-afb5-c4e39611909c
* rename authz_search option to pam_authz_searchArthur de Jong2010-05-083-6/+6
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1089 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement an authz_search option to test whether the ↵Arthur de Jong2010-05-073-1/+130
| | | | | | user is authorised git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1088 ef36b2f9-881f-0410-afb5-c4e39611909c
* tune some buffer sizes and small cleanupsArthur de Jong2010-05-0711-33/+32
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1087 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix buffer overflowArthur de Jong2010-05-071-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1085 ef36b2f9-881f-0410-afb5-c4e39611909c
* don't have myldap_set_credentials() try to open a ↵Arthur de Jong2010-04-133-17/+16
| | | | | | connection but have the PAM code perform a search with the new credentials so we re-use the fail-over mechanism in myldap_search() git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1079 ef36b2f9-881f-0410-afb5-c4e39611909c
* also have myldap_search() return an LDAP status codeArthur de Jong2010-04-135-25/+33
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1078 ef36b2f9-881f-0410-afb5-c4e39611909c
* add an nss_initgroups_ignoreusers option to ignore ↵Arthur de Jong2010-03-203-0/+62
| | | | | | username to group lookups for the specified users git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1076 ef36b2f9-881f-0410-afb5-c4e39611909c