History log of /sssd-io/src/responder/nss/nss_iface.c
Revision Date Author Comments Expand
851d31264c826d7e1bca38bb6d49e66b446707e7 25-Apr-2018 Fabiano Fidêncio <fidencio@redhat.com>

NSS: Add InvalidateGroupById handler There are some situations where, from the backend, the NSS responder will have to be notified to invalidate a group. In order to achieve this in a clean way, let's add the InvalidateGroupById handler and make use of it later in this very same series. Related: https://pagure.io/SSSD/sssd/issue/2653 Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
677a31351c80453d9ce006481364399a96312052 29-Jan-2018 René Genz <liebundartig@freenet.de>

Fix minor spelling mistakes in responder/* Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>

/sssd-io/src/responder/autofs/autofssrv.c /sssd-io/src/responder/common/cache_req/cache_req_plugin.h /sssd-io/src/responder/common/negcache.c /sssd-io/src/responder/common/negcache.h /sssd-io/src/responder/common/responder_common.c /sssd-io/src/responder/common/responder_dp.c /sssd-io/src/responder/common/responder_get_domains.c /sssd-io/src/responder/ifp/ifpsrv.c /sssd-io/src/responder/kcm/kcm.c nss_iface.c nss_protocol_grent.c nsssrv.c nsssrv_mmap_cache.c /sssd-io/src/responder/pac/pacsrv.c /sssd-io/src/responder/pam/pam_LOCAL_domain.c /sssd-io/src/responder/pam/pamsrv.c /sssd-io/src/responder/pam/pamsrv_cmd.c /sssd-io/src/responder/pam/pamsrv_p11.c /sssd-io/src/responder/secrets/local.c /sssd-io/src/responder/secrets/providers.c /sssd-io/src/responder/secrets/secsrv.c /sssd-io/src/responder/ssh/sshsrv.c /sssd-io/src/responder/sudo/sudosrv.c
0e6248c60791ccfe840a2938f27b56b9e72370e3 25-Sep-2017 Fabiano Fidêncio <fidencio@redhat.com>

NSS: Fix "-Wold-style-definition" caught by GCC Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
255ea36747ace7555cfe5d57ba8e1e85bc2c6254 02-May-2017 Fabiano Fidêncio <fidencio@redhat.com>

NSS: Fix typo inigroups -> initgroups Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
43d07601094f869745f2b43529b48e2b63fb07f8 10-Mar-2017 Jakub Hrozek <jhrozek@redhat.com>

NSS: Fix invalidating memory cache for subdomain users get_next_domain() was called without any special flags, meaning it only iterates over main domains. We need to instead use the SSS_GND_DESCEND flag to make sure sudomains are taken into account, too. Reviewed-by: Michal Židek <mzidek@redhat.com>
f2047f6c5b56d6759bd8e6d504f572a593476c65 15-Feb-2017 Pavel Březina <pbrezina@redhat.com>

NSS: Rename the interface to invalidate memory cache initgroup records for consistency Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
c3a225d4d735d3a01883125592dda7a030a64e00 15-Feb-2017 Jakub Hrozek <jhrozek@redhat.com>

NSS: Add sbus interface to clear memory cache Adds three new NSS interface sbus methods to disable memory caches of users, groups and initgroups. It's enough to add this interface to the NSS responder because the NSS responder is the only writer to the memory cache. Reviewed-by: Pavel Březina <pbrezina@redhat.com>
4049b63f8c67ada17b453463b0451ca6be3d5de4 19-Dec-2016 Pavel Březina <pbrezina@redhat.com>

nss: rewrite nss responder so it uses cache_req Given the size of the current nss responder it was quite impossible to simply switch into using the cache_req interface, especially because most of the code was duplication of cache lookups. This patch completely rewrites the responder from scratch. The amount of code was reduced to less than a half lines of code with no code duplication, better documentation and better maintainability and readability. All functionality should be intact. *Code organization* All protocol (parsing input message and send a reply) is placed in nss_protocol.c. Functions that deals with creating a reply packet are placed into their specific nss_protocol_$object.c files. All supported commands are placed into nss_cmd.c. Functions that deals with cache req are in nss_get_object.c and nss_enum.c. *Code flow for non-enumeration* An nss_getby_$input-type is called for each non-enumeration command. This function parses the input message, creates a cache_req_data structure and issues nss_get_object that calls cache_req. When this request is done nss_getby_done make sure a reply is sent to the client. *Comments on enumeration* I made some effort to make sure enumeration shares the same code for users, groups, services and netgroups. Netgroups now uses nss negative cache instead of implementing its own. Resolves: https://fedorahosted.org/sssd/ticket/3151 Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
04e870d99e72aa3160bdb6ab05d986fb4005c3ed 16-Aug-2016 Pavel Březina <pbrezina@redhat.com>

DP: Remove old data provider interface Reverse data provider interface is moved to a better location in NSS responder. All responders now can have an sbus interface defined per data provider connection. The unused old data provider interface is removed. Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>

/sssd-io/Makefile.am /sssd-io/src/providers/data_provider.h /sssd-io/src/providers/data_provider/dp_target_id.c /sssd-io/src/providers/data_provider_iface.xml /sssd-io/src/providers/data_provider_iface_generated.c /sssd-io/src/providers/data_provider_iface_generated.h /sssd-io/src/responder/autofs/autofssrv.c /sssd-io/src/responder/common/responder.h /sssd-io/src/responder/common/responder_common.c /sssd-io/src/responder/common/responder_get_domains.c /sssd-io/src/responder/ifp/ifpsrv.c nss_iface.c nss_iface.h nss_iface.xml nss_iface_generated.c nss_iface_generated.h nsssrv.c nsssrv.h /sssd-io/src/responder/pac/pacsrv.c /sssd-io/src/responder/pam/pamsrv.c /sssd-io/src/responder/pam/pamsrv_dp.c /sssd-io/src/responder/ssh/sshsrv.c /sssd-io/src/responder/sudo/sudosrv.c /sssd-io/src/tests/cwrap/Makefile.am