SSH: Do not print an error message if sss_ssh_authorizedkeys is asked for a local user If an IPA client uses the SSH integration and a local user logs in with SSH, the sss_ssh_authorizedkeys looks up their keys in the SSH responder, which doesn't find the user and returns ENOENT. The sss_ssh_authorizedkeys reports a failure on any error, including ENOENT which produced a confusing error message in the logs. This patch adds a new error code that handles users that are not found by SSSD but exist on the system and also special cases root with the same error code. Therefore, logging in as a local user no longer prints an error message. Resolves: https://fedorahosted.org/sssd/ticket/3003 Reviewed-by: Pavel Březina <pbrezina@redhat.com>

Make DEBUG macro invocations variadic Use a script to update DEBUG macro invocations to use it as a variadic macro, supplying format string and its arguments directly, instead of wrapping them in parens. This script was used to update the code: grep -rwl --include '*.[hc]' DEBUG . | while read f; do mv "$f"{,.orig} perl -e \ 'use strict; use File::Slurp; my $text=read_file(\*STDIN); $text=~s#(\bDEBUG\s*\([^(]+)\((.*?)\)\s*\)\s*;#$1$2);#gs; print $text;' < "$f.orig" > "$f" rm "$f.orig" done Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> Reviewed-by: Stephen Gallagher <sgallagh@redhat.com> Reviewed-by: Simo Sorce <simo@redhat.com>

SSH: Use separate field for domain name in client requests Instead of appending @domain to names when the --domain option of sss_ssh_* is used, put domain name in a separate field in client requests.

Include talloc log in our debug facility https://fedorahosted.org/sssd/ticket/1495

SSH: Simplify public key formatting function

SSH: Return error code in SSH utility functions

SSH: Add support for hashed known_hosts https://fedorahosted.org/sssd/ticket/1203

SSH: Allow clients to explicitly specify host alias This change removes the need to canonicalize host names on the responder side - the relevant code was removed.

Fixed uninitialized pointer in SSH authorized keys client

SSH: Add more debugging messages

SSH: Refactor responder and client common code

SSH: OpenSSH authorized_keys client