November 2020 - sssd-devel - Fedora Mailing-Lists

[sssd PR#175][opened] Add module for starting services

by lslebodn

URL: https://github.com/SSSD/sssd/pull/175 Author: lslebodn Title: #175: Add module for starting services Action: opened PR body: """ This is a WIP version of reducing code duplication in our cwrap integration tests. I am still not sure whether we should also reuse function `create_sssd_fixture`. And if yes; then probably in different nodule then `services` And comments are welcome. BTW I wrote patches few weeks ago; therefore new tests are not converted. I am just sending patches to get some feedback. Site effect of this patches is that tests are cca 20% faster (IIRC) """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/175/head:pr175 git checkout pr175

2 years

5
5
0 / 0

[sssd PR#844][opened] sssd-ad and gpo_child: GPO apply fixes during reading fails

by mastersin

URL: https://github.com/SSSD/sssd/pull/844 Author: mastersin Title: #844: sssd-ad and gpo_child: GPO apply fixes during reading fails Action: opened PR body: """ Ignore AD GPO errors: - if SecEdit/GptTmpl.inf is missing or - if reading sysvol_gpt_version fails and cached_gpt_version already exists """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/844/head:pr844 git checkout pr844

2 years, 4 months

7
16
0 / 0

[sssd PR#5419][opened] Adding tests to cover ad discovery improvements using cldap

by sidecontrol

URL: https://github.com/SSSD/sssd/pull/5419 Author: sidecontrol Title: #5419: Adding tests to cover ad discovery improvements using cldap Action: opened PR body: """ * This test requires a primary and secondary domain controller so AD can be moved between sites * Currently contains four test cases ** Two DCs in one site no restrictions. ** Two DCs in one site, traffic blocked to the other DC ** DCs in seperate sites no restrictions ** DCs in seperate sites, traffic blocked to the other DC Signed-off-by: Dan Lavu <dlavu(a)redhat.com> SSSD-2497 """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/5419/head:pr5419 git checkout pr5419

2 years, 5 months

4
10
0 / 0

[sssd PR#5245][opened] RESOLV: Avoid DNS search to improve fail-over reaction

by thalman

URL: https://github.com/SSSD/sssd/pull/5245 Author: thalman Title: #5245: RESOLV: Avoid DNS search to improve fail-over reaction Action: opened PR body: """ In case of unreachable DNS server or invalid hostname sssd/c-ares tries to search in multiple domains based on the search directive in resolv.conf But the hostnames in config file are fully qualified and this just extends the time spent with DNS resolution. This patch set the c-ares library flags to avoid DNS search Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1608496 """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/5245/head:pr5245 git checkout pr5245

2 years, 8 months

5
31
0 / 0

[sssd PR#5407][opened] kcm: check socket path loaded from configuration

by ikerexxe

URL: https://github.com/SSSD/sssd/pull/5407 Author: ikerexxe Title: #5407: kcm: check socket path loaded from configuration Action: opened PR body: """ There are three major execution flows for this change: 1. If kcm socket path is not defined in sssd configuration, then log it and fall back to the default location. 2. If kcm socket path is defined in sssd configuration but the location is invalid, then log it and fall back to the default location. 3. If kcm socket path is defined in sssd configuration and the location is valid, then use it. Apart from that some unit-tests have been implement to check that the changes work as expected. I wonder if the changes included in confdb_get_string() should be ported to all confdb_get_*() methods. Resolves: https://github.com/SSSD/sssd/issues/5406 """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/5407/head:pr5407 git checkout pr5407

2 years, 9 months

4
49
0 / 0

[sssd PR#5264][opened] Utils: White space replace with another character

by elkoniu

URL: https://github.com/SSSD/sssd/pull/5264 Author: elkoniu Title: #5264: Utils: White space replace with another character Action: opened PR body: """ Function responsible for replacing white space has wrong log levels set. It can create false positive critical error messages broadcasted across the system without any real reason. This patch adjusts those log levels to be on the debug level rather than criticar error level. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1818671 """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/5264/head:pr5264 git checkout pr5264

2 years, 10 months

3
7
0 / 0

[sssd PR#5365][opened] Translations update from Weblate

by weblate

URL: https://github.com/SSSD/sssd/pull/5365 Author: weblate Title: #5365: Translations update from Weblate Action: opened PR body: """ Translations update from [Weblate](https://translate.fedoraproject.org/projects/sssd/sssd-master/) for SSSD/sssd. """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/5365/head:pr5365 git checkout pr5365

2 years, 10 months

2
10
0 / 0

[sssd PR#5268][opened] proxy_child hardening

by alexey-tikhonov

URL: https://github.com/SSSD/sssd/pull/5268 Author: alexey-tikhonov Title: #5268: proxy_child hardening Action: opened PR body: """ Fixes #3730 """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/5268/head:pr5268 git checkout pr5268

2 years, 10 months

4
32
0 / 0

[sssd PR#5357][opened] Provide missing defines which otherwise are available on glibc system…

by akuster

URL: https://github.com/SSSD/sssd/pull/5357 Author: akuster Title: #5357: Provide missing defines which otherwise are available on glibc system… Action: opened PR body: """ … headers Signed-off-by: Armin Kuster <akuster808(a)gmail.com> """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/5357/head:pr5357 git checkout pr5357

2 years, 10 months

4
16
0 / 0

[sssd PR#616][opened] become_user: add supplementary groups so ad provider can access keytab

by asheplyakov

URL: https://github.com/SSSD/sssd/pull/616 Author: asheplyakov Title: #616: become_user: add supplementary groups so ad provider can access keytab Action: opened PR body: """ For security reasons one might want to run providers as a non-privileged user (say, _sssd). However some providers (in particular ad) might need an access to restricted (non world-readable) files (for instance, /etc/krb5.keytab). One of the possible ways to solve the problem is to - add a special group (for instance, _keytab) - set the owner:group of the file in question to root:_keytab - set the permissions of the file in question to 640 - make the _sssd user a member of the _keytab group For this to work become_user should assign supplementary groups, which is what this patch does. """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/616/head:pr616 git checkout pr616

2 years, 10 months

5
13
0 / 0

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

sssd-devel November 2020