Miro Hrončok
d3ba8fb11a
BuildRequire python3-setuptools with Python 3.12+
...
distutils was removed from the Python standard library,
but setuptools can be used instead.
See https://peps.python.org/pep-0632/
2023-03-31 21:06:41 +02:00
Stephen Gallagher
52b92253b5
Rebuild against libunistring 1.1
...
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
2023-01-26 10:24:04 -05:00
Fedora Release Engineering
d754fc4089
Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2023-01-21 04:01:21 +00:00
Alexey Tikhonov
fc2376eb12
sssd-2.8.2-2: Rebuild against Samba 4.18rc1
2023-01-20 17:30:14 +01:00
Pavel Březina
a168c6ad5f
sssd-2.8.2-1: Rebase to latest upstream release
2022-12-09 14:12:55 +01:00
Pavel Březina
cf2cbdba82
sssd-2.8.1-1: Rebase to latest upstream release
2022-11-04 12:27:37 +01:00
Pavel Březina
d24bcc9e43
sssd-2.8.0-2: fix syslog spamming
...
Resolves: rhbz#2133437
2022-10-24 12:36:26 +02:00
Pavel Březina
ac043fc3b6
sssd-2.8.0-1: Rebase to latest upstream release
2022-10-07 13:39:37 +02:00
Pavel Březina
75b451ce66
sssd-2.7.4-1: Rebase to latest upstream release
2022-08-26 23:04:24 +02:00
Pavel Březina
de3d5df87d
Fix bogus date in changelog
2022-08-26 23:04:24 +02:00
Adam Williamson
d6d567aead
Rebuild against new libndr
2022-08-09 09:44:43 -07:00
Fedora Release Engineering
beee1ce0c2
Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2022-07-23 09:23:09 +00:00
Pavel Březina
6895b4538e
sssd-2.7.3-1: Rebase to latest upstream release
2022-07-04 13:32:42 +02:00
Python Maint
2e485e40e8
Rebuilt for Python 3.11
2022-06-15 18:47:48 +02:00
Pavel Březina
450f45b104
Include pac_check patch
2022-06-09 10:50:32 +02:00
Pavel Březina
ec123cd550
sssd-2.7.1-2: fix regression in IPA provider
...
Resolves: rhbz#2094685
2022-06-09 10:38:43 +02:00
Pavel Březina
562c0b9a10
sssd-2.7.1-1: Rebase to latest upstream release
2022-06-02 13:38:30 +02:00
Pavel Březina
aa08692c22
sssd-2.7.0-1: Rebase to latest upstream release
2022-04-14 20:56:18 +02:00
Iker Pedrosa
5591d45546
Reenable make check
...
This reverts commit 1e24a3ac9d
2022-04-12 10:32:26 +02:00
Pavel Březina
1e24a3ac9d
Temporarily disable make check
2022-03-24 12:58:54 +01:00
Pavel Březina
94f6ba0323
Add changelog for 2.6.3 rebase
2022-01-25 12:39:05 +01:00
Pavel Březina
a6c8ad89b6
sssd-2.6.3-1: Rebase to latest upstream release
2022-01-25 12:37:04 +01:00
Fedora Release Engineering
2136e097a2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2022-01-22 01:38:00 +00:00
Iker Pedrosa
637b653264
Fix IPA reply socket of selinux_child
...
Signed-off-by: Iker Pedrosa <ipedrosa@redhat.com>
2022-01-04 15:13:23 +01:00
Iker Pedrosa
2739fd3aa8
sssd-2.6.2-1: Rebase to latest upstream release
...
Signed-off-by: Iker Pedrosa <ipedrosa@redhat.com>
2021-12-23 16:53:38 +01:00
Pavel Březina
2bec749253
Revert "Temporarily disable make check"
...
This reverts commit 31f8189d14https://bugzilla.redhat.com/show_bug.cgi?id=2021214
2021-12-02 16:32:26 +01:00
Pavel Březina
31f8189d14
Temporarily disable make check
...
Until https://bugzilla.redhat.com/show_bug.cgi?id=2021214 is resolved.
2021-11-09 16:38:26 +01:00
Pavel Březina
a4a75d5f98
sssd-2.6.1-1: Rebase to latest upstream release
2021-11-09 16:37:26 +01:00
Pavel Březina
306f2f008c
sssd-2.6.0-2: pull latest upstream code
2021-11-01 19:10:28 +01:00
Pavel Březina
c0c482c21d
sssd-2.6.0-1: Commit new sources
2021-10-14 13:11:19 +02:00
Pavel Březina
879ffa1b7c
sssd-2.6.0-1: Rebase to latest upstream release
2021-10-14 12:24:52 +02:00
Iker Pedrosa
1f7c03c1eb
Solve compilation problem with autoconf
...
Signed-off-by: Iker Pedrosa <ipedrosa@redhat.com>
2021-09-21 10:10:03 +02:00
Sahana Prasad
7f02d6d429
Rebuilt with OpenSSL 3.0.0
2021-09-14 19:15:54 +02:00
Pavel Březina
866067e628
sssd-2.5.2-5: Fix CVE-2021-3621
2021-08-16 15:08:09 +02:00
Alexey Tikhonov
a7bc87a356
Support subid ranges managed by FreeIPA
2021-08-09 12:48:10 +02:00
Sumit Bose
bfbe7140ec
sssd.spec: disable running files provider by default
...
Disable the default files provider as described in
https://fedoraproject.org/wiki/Changes/FlexibleLocalUserCache
2021-08-09 11:30:58 +02:00
Fedora Release Engineering
aec1c33488
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2021-07-23 18:15:25 +00:00
Alexander Bokovoy
a41021524e
Rebuild against Samba 4.15.0 RC1
...
Samba's libndr did bump soname
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
2021-07-16 17:04:00 +03:00
Pavel Březina
279a6d02b9
sssd-2.5.2-1: Rebase to latest upstream release
2021-07-13 11:28:31 +02:00
Pavel Březina
d6f7b5cf84
sssd-2.5.1-2: debug_backtrace improvements
2021-06-24 12:11:56 +02:00
Pavel Březina
948a68a9af
sssd-2.5.1-1: Rebase to latest upstream release
2021-06-08 13:07:57 +02:00
Python Maint
099b94da59
Rebuilt for Python 3.10
2021-06-04 21:15:45 +02:00
Pavel Březina
f224e547f4
sssd-2.5.0-2: Fix KCM regression on long upgrade path
...
Resolves: rhbz#1962006
2021-05-19 19:42:02 +02:00
Pavel Březina
0f12c3fbb3
sssd-2.5.0-1: Rebase to latest upstream release
2021-05-10 16:02:51 +02:00
Iker Pedrosa
4243ecae87
sssd-2.4.2-5: Change configure to avoid errors with new autoconf version
...
(rhbz#1943130)
2021-04-08 15:46:53 +02:00
Pavel Březina
b1df55fa36
sssd-2.4.2-4: Add CAP_DAC_OVERRIDE to ifp service file if required by build configuration
2021-03-31 13:11:44 +02:00
Pavel Březina
ea1b261cc2
spec: update spec file with recent upstream fixes
...
* 815197cb1d9da41eb91053a865af5d
2021-03-31 11:52:40 +02:00
Marco Trevisan
29b29498d3
sssd.spec: BuildRequires on openssl binary
...
It's required by tests in order to generate the certificate files.
2021-03-27 22:52:22 +00:00
Zbigniew Jędrzejewski-Szmek
f0ffcb4e3e
Rebuilt for updated systemd-rpm-macros
...
See https://pagure.io/fesco/issue/2583 .
2021-03-02 16:12:16 +01:00
Pavel Březina
0460a368c6
sssd-2.4.2-2: Remove setuid from child binaries and relax requirement on python3-sssdconfig
2021-02-19 18:24:03 +01:00
Pavel Březina
ac57def994
sssd-2.4.2-1: Rebase to latest upstream release
2021-02-19 17:11:06 +01:00
Pavel Březina
9e5dd4b665
sssd-2.4.1-1: Rebase to latest upstream release
2021-02-05 19:00:09 +01:00
Fedora Release Engineering
331dfd3e60
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2021-01-27 21:01:16 +00:00
Pavel Březina
968f95e90a
sssd-2.4.0-6 - improve kcm performance
2020-12-11 11:30:39 +01:00
Pavel Březina
d86ed3a2a2
sssd-2.4.0.5 - improve kcm performance
2020-12-07 17:31:23 +01:00
Stephen Gallagher
e67274864c
Rebuild for Fedora ELN
...
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
2020-11-30 08:09:43 -05:00
Petr Lautrbach
709264858f
Rebuild with libsemanage.so.2
2020-11-03 16:56:27 +01:00
Pavel Březina
65e3d07e64
sssd-2.4.0-2: remove old patches
2020-10-12 14:14:07 +02:00
Pavel Březina
bc988250a3
sssd-2.4.0-1: Rebase to latest upstream release
2020-10-12 13:43:32 +02:00
Pavel Březina
1e74bee608
sssd-2.3.1-4: include 2.3.1 source
2020-07-28 11:52:54 +02:00
Pavel Březina
51e0d0ae04
sssd-2.3.1-3: fix test compilation with check-0.15
2020-07-28 10:27:21 +02:00
Pavel Březina
442c3962bb
sssd-2.3.1-2: switch to rundir
2020-07-28 10:26:30 +02:00
Pavel Březina
cf3c8f20ee
sssd-2.3.1-1: Rebase to latest upstream release
2020-07-24 16:47:30 +02:00
Merlin Mathesius
1424e14b42
Minor ELN conditional fix
...
Signed-off-by: Merlin Mathesius <mmathesi@redhat.com>
2020-07-24 16:36:14 +02:00
Tom Stellard
97eae27da7
Use make macros
...
https://fedoraproject.org/wiki/Changes/UseMakeBuildInstallMacro
2020-07-14 14:20:46 +00:00
Jeff Law
ca22aded04
Disable LTO
2020-07-01 12:15:35 -06:00
Peter Jones
2e48ae2d63
Fix github url typo
...
Signed-off-by: Peter Jones <pjones@redhat.com>
2020-06-19 18:50:55 -04:00
Miro Hrončok
83988894b0
Rebuilt for Python 3.9
2020-05-26 03:51:04 +02:00
Pavel Březina
104d122fd9
sssd-2.3.0-1: Rebase to latest upstream release
2020-05-20 13:24:02 +02:00
Michal Židek
261327da76
Fix nss symbol collision Fedora Rawhide
2020-02-28 11:17:41 +01:00
Michal Židek
dfcf325701
Resolves: upstream#4159 - p11_child should have an option to skip C_WaitForSlotEvent if the PKCS#11 module does not implement it properly
2020-02-27 04:34:24 +01:00
Michal Židek
3e2905a176
Resolves: upstream#4135 - util/sss_ptr_hash.c: potential double free in sss_ptr_hash_delete_cb()
2020-02-27 04:34:24 +01:00
Michal Židek
44805f5ff8
Resolves: upstream#4118 sssd requires timed sudoers ldap entries to be specified up to the seconds
2020-02-27 04:34:24 +01:00
Michal Židek
8b47371b41
Add sssd-dbus package as a dependency of sssd-tools
2020-02-27 04:34:24 +01:00
Michal Židek
573cac525f
Resolves: upstream#4142 - sssd_be frequent crash
2020-02-27 04:34:24 +01:00
Michal Židek
8073b6af50
Resolves: upstream#4131 Force LDAPS over 636 with AD Provider
2020-02-27 04:34:24 +01:00
Michal Židek
9aa10702d4
Resolves: upstream#3630 - Randomize ldap_connection_expire_timeout either by default or w/ a configure option
2020-02-27 04:34:24 +01:00
Michal Židek
d61d68d902
Resolves: upstream#4135 - util/sss_ptr_hash.c: potential double free in sss_ptr_hash_delete_cb()
2020-02-27 04:34:24 +01:00
Michal Židek
9781b52c91
Resolves: upstream#4088 - server/be: SIGTERM handling is incorrect
2020-02-27 04:34:24 +01:00
Michal Židek
6c1563e282
Resolves: upstream##4089 Watchdog implementation or usage is incorrect
2020-02-27 04:34:24 +01:00
Michal Židek
b81369e441
Resolves: upstream#4126 pcscd rejecting sssd ldap_child as unauthorized
2020-02-27 04:34:24 +01:00
Michal Židek
069e6c9dc8
Resolves: upstream#4127 - [Doc]Provide explanation on escape character for match rules sss-certmap
2020-02-27 04:34:24 +01:00
Michal Židek
ec08164de5
Resolves: upstream#4129 - sssctl config-check command does not give proper error messages with line numbers
2020-02-27 04:34:24 +01:00
Michal Židek
54f0db91d3
Update to latest released upstream version 2.2.3
2020-02-27 04:34:24 +01:00
Fedora Release Engineering
8078a58a14
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2020-01-31 00:16:21 +00:00
Stephen Gallagher
2f22753551
Fix build against samba-4.12.0rc1
...
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
2020-01-24 16:18:38 +01:00
Mohan Boddu
b3516604c1
Rebuild for samba-4.12.0rc1
...
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
2020-01-24 07:17:14 -05:00
Adam Williamson
4e675b1715
Backport PR #900 to fix RHBZ #1755643
2019-10-22 11:27:01 -07:00
Adam Williamson
460a59ec3d
Backport PR #904 to fix RHBZ #1757224
2019-10-22 10:04:39 -07:00
Michal Židek
0aaf839d04
Update to latest released upstream version 2.2.2
2019-09-17 11:23:59 +02:00
Stephen Gallagher
e35ea7dfd4
Rebuilding for libldb 2.0.5
...
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
2019-08-26 17:57:25 -04:00
Miro Hrončok
3e66e97711
Rebuilt for Python 3.8
2019-08-19 11:06:22 +02:00
Fedora Release Engineering
21a512736f
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-07-27 00:08:51 +00:00
Jakub Hrozek
7f0d43352a
Resolves: rhbz#1721636 - sssd-kcm calls sssd-genconf which triggers nscd warning
2019-07-05 16:45:50 +02:00
Jakub Hrozek
d757370f98
Resolves: rhbz#1724717 - sssd-proxy crashes resolving groups with no members
2019-07-05 16:43:40 +02:00
Michal Židek
e1908a5bc4
Fix Python build failures on rawhide.
...
Thx. to Lukas Slebodnik for fixing this issue.
2019-06-19 10:53:12 +02:00
Michal Židek
76a13b3c78
Update to latest released upstream version 2.2.0
2019-06-17 14:51:15 +02:00
Michal Židek
1d0af0b97b
Resolves: upstream#3867 - [RFE] Need an option in SSSD so that it will skip GPOs that have groupPolicyContainers unreadable by SSSD.
...
- CVE-2018-16838
2019-03-28 00:06:39 +01:00
Michal Židek
27d612fd39
Update to latest released upstream version 2.1.0
2019-03-27 18:22:06 +01:00
Sinny Kumari
80cc892c48
Resolves: rhbz#1667444 - sssd: make python3-sssdconfig as suggest
...
Signed-off-by: Sinny Kumari <sinny@redhat.com>
2019-02-14 17:29:11 +05:30
Adam Williamson
786d467c78
Backport fix for RHBZ #1676946 (see upstream #3924 )
...
This backports three commits that are identified in upstream
issue #3924 as the fixes for RHBZ #1676946 (failure of sssd to
start in current Rawhide).
2019-02-13 17:55:26 -08:00
Fedora Release Engineering
5c6f906a0e
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-02-03 08:34:02 +00:00
Igor Gnatenko
fa80197b65
Remove obsolete Group tag
...
References: https://fedoraproject.org/wiki/Changes/Remove_Group_Tag
2019-01-28 20:24:50 +01:00
Igor Gnatenko
a5b776ca3c
Remove obsolete ldconfig scriptlets
...
References: https://fedoraproject.org/wiki/Changes/RemoveObsoleteScriptlets
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2019-01-22 18:41:04 +01:00
Adam Williamson
cbdd57fe9d
Backport other patches from master to fix build with recent krb5
2018-12-13 00:02:15 -08:00
Adam Williamson
64cb87e84a
Resolves: rhbz#1654537 - sbus: use 120 second default timeout
2018-12-12 22:41:39 -08:00
Michal Židek
9732e7fd7b
Resolves: rhbz#1629737 - sssd: Remove python2 (sub)packages from Fedora 30+
2018-11-07 15:18:49 +01:00
Michal Židek
c0971b7e39
Backport a bunch of upstream fixes
...
- Resolves: upstream#3821 - crash related to sbus_router_destructor()
- Resolves: upstream#3810 - sbus2: fix memory leak in sbus_message_bound_ref
- Resolves: upstream#3819 - sssd only sets the SELinux login context if it
differs from the default
- Resolves: upstream#3807 - The sbus codegen script relies on "python" which
might not be available on all distributions
- Resolves: upstream#3820 - sudo: search with lower cased name for case
insensitive domains
- Resolves: upstream#3701 - [RFE] Allow changing default behavior of SSSD from
an allow-any default to a deny-any default when it
can't find any GPOs to apply to a user login.
- Resolves: upstream#3828 - Invalid domain provider causes SSSD to abort
startup
- Resolves: upstream#3500 - Make sure sssd is a replacement for pam_pkcs11
also for local account authentication
- Resolves: upstream#3812 - sssd 2.0.0 segfaults on startup
- Resolves: upstream#3826 - Remove references of sss_user/group/add/del
commands in man pages since local provider is
deprecated
- Resolves: upstream#3827 - SSSD should log to syslog if a domain is not
started due to a misconfiguration
- Resolves: upstream#3830 - Printing incorrect information about domain with
sssctl utility
- Resolves: upstream#3489 - p11_child should work wit openssl1.0+
- Resolves: upstream#3750 - [RFE] man 5 sssd-files should mention necessary
changes in nsswitch.conf
- Resovles: upstream#3650 - RFE: Require smartcard authentication
- Resolves: upstream#3334 - sssctl config-check does not check any special
characters in domain name of domain section
- Resolves: upstream#3849 - Files: The files provider always enumerates
which causes duplicate when running getent passwd
- Related: upstream#3855 - session not recording for local user when groups
defined
- Resolves: upstream#3802 - Reuse sysdb_error_to_errno() outside sysdb
- Related: upstream#3493 - Remove the pysss.local interface
2018-10-24 14:40:58 +02:00
Michal Židek
129efc7839
Resolves: rhbz#1622760 - Console login as FreeIPA domain user fails in current Fedora Rawhide / 29
2018-08-29 16:58:06 +02:00
Michal Židek
4e478641d1
Fix linking issues
2018-08-29 16:58:06 +02:00
Michal Židek
2ef66b266c
New upstream release 2.0.0
2018-08-14 11:43:55 +02:00
Fedora Release Engineering
0a06c01711
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-07-14 06:42:21 +00:00
Jason Tibbitts
8a13e36b6a
Remove needless use of %defattr
2018-07-10 01:27:54 -05:00
Miro Hrončok
633afe1b94
Rebuilt for Python 3.7
2018-07-02 18:24:19 +02:00
Fabiano Fidêncio
68ef824a5f
Resolves: upstream#3766 - CVE-2018-10852: information leak from the sssd-sudo responder
...
And also ...
- Related: upstream#941 - return multiple server addresses to the Kerberos
locator plugin
- Related: upstream#3652 - kdcinfo doesn't get populated for other domains
- Resolves: upstream#3747 - sss_ssh_authorizedkeys exits abruptly if SSHD
closes its end of the pipe before reading all the
SSH keys
- Resolves: upstream#3607 - Handle conflicting e-mail addresses more gracefully
- Resolves: upstream#3754 - SSSD AD uses LDAP filter to detect POSIX attributes
stored in AD GC also for regular AD DC queries
- Related: upstream#3219 - [RFE] Regular expression used in sssd.conf not being
able to consume an @-sign in the user/group name.
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-06-25 09:38:16 +02:00
Fabiano Fidêncio
192e845618
Resolves: rhbz#1591804 - something keeps /lib/libnss_systemd.so.2 open on minimal appliance image, breaking composes
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-06-21 21:38:33 +02:00
Miro Hrončok
d8abd616d9
Rebuilt for Python 3.7
2018-06-19 11:27:58 +02:00
Fabiano Fidêncio
a36f5fea4b
New upstream release 1.16.2
...
- https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_16_2.html
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-06-11 13:32:07 +02:00
Fabiano Fidêncio
29d69716ad
Related: upstream#3742 - Change of: User may not run sudo --> a password is required
...
Patch 0017-sudo-ldap-do-not-store-rules-without-sudoHost-attrib.patch
has been commented out as it caused some regressions on IPA tests.
In order to unblock IPA folks, let's revert this patch from Fedora till
we have a proper fix.
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-28 10:01:23 +02:00
Fabiano Fidêncio
4979898a6e
Revert "Add: "ExcludeArch: armv7hl""
...
This reverts commit bc3790f5a0
2018-05-17 17:53:56 +02:00
Fabiano Fidêncio
bc3790f5a0
Add: "ExcludeArch: armv7hl"
...
For some reason still unclear we're *not* able to build SSSD on koji's
buildroot for armv7hl. Some tests have been done and SSSD was built
successfully using real armv7hl hardware, which indicates that we're
facing https://bugzilla.redhat.com/show_bug.cgi?id=1576593
As soon as the bug is resolved, this patch could be safely reverted.
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-16 21:54:59 +02:00
Fabiano Fidêncio
0a2c83fbd0
Related: upstream#3436 - Certificates used in unit tests have limited lifetime
...
Fix a non harmful warning shown by recent versions of OpenSSL.
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-16 21:53:46 +02:00
Fabiano Fidêncio
c4f0508af1
Related: upstream#3436 - Add openssl, openssh and nss-tools as BuildRequires
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 11:36:56 +02:00
Fabiano Fidêncio
5f75f7e4f2
Resolves: upstream#3595 - ID override GID from Default Trust View is not properly resolved in case domain resolution order is set
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 09:59:20 +02:00
Fabiano Fidêncio
1511bcd8b2
Resolves: upstream#3731 - nss_clear_netgroup_hash_table(): only remove entries from the hash table, do not free them
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 09:58:02 +02:00
Fabiano Fidêncio
3ad9e211eb
Resolves: upstream#3728 - Request by ID outside the min_id/max_id limit of a first domain does not reach the second domain
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 09:57:11 +02:00
Fabiano Fidêncio
ed238e28ff
Resolves: upstream#3719 - The SSSD IPA provider allocates information about external groups on a long lived memory context, causing memory growth of the sssd_be process
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 09:56:23 +02:00
Fabiano Fidêncio
97a62b83f1
Related: upstream#2653 - Group renaming issue when "id_provider = ldap" is set.
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 09:55:43 +02:00
Fabiano Fidêncio
163543f40b
Resolves: upstream#3726 - SSSD with ID provider 'ad' should give a warning in case the ldap schema is manually changed to something different than 'ad'.
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 09:55:01 +02:00
Fabiano Fidêncio
510134aa02
Resolves: upstream#3725 - sssd not honoring dyndns_server if the DNS update process is terminated with a signal
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 09:54:10 +02:00
Fabiano Fidêncio
5e1db8fc3e
Related: upstream#3436 - Certificates used in unit tests have limited lifetime
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-14 09:53:04 +02:00
Fabiano Fidêncio
5254cdcca5
Resolves: rhbz#1574778 - sssd fails to download known_hosts from freeipa
...
Patch 0018-sysdb-custom-completely-replace-old-object-instead-o.patch
caused a regression, caught by lslebodn and reported by a few users.
Let's comment out this patch for now and uncomment it when we have a fix
that do not cause a regression.
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-05-05 21:42:38 +02:00
Fabiano Fidêncio
767645dca2
Add gcc to build dependencies
...
gcc will be revomed from buildroot in fedora 29
http://fedoraproject.org/wiki/Changes/Remove_GCC_from_BuildRoot
Upstream patch from Lukáš Slebodnik <lslebodn@redhat.com>
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:12 +02:00
Fabiano Fidêncio
90dd145c92
Resolves: upstream#3520 - Files provider supports only BE_FILTER_ENUM
...
Also ...
Resolves: rhbz#1540703 - FreeIPA/SSSD implicit_file sssd_nss error: The Data
Provider returned an error
[org.freedesktop.sssd.Error.DataProvider.Fatal]
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:12 +02:00
Fabiano Fidêncio
a305fc11b7
Resolves: upstream#3680 - GPO: SSSD fails to process GPOs If a rule is defined, but contains no SIDs
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:12 +02:00
Fabiano Fidêncio
b6696d97c4
Document which principal does the AD provider use
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:12 +02:00
Fabiano Fidêncio
2dd8451396
Resolves: upstream#2653 - Group renaming issue when "id_provider = ldap" is set.
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:12 +02:00
Fabiano Fidêncio
209701ef7f
Resolves: upstream#3715 - ipa 389-ds-base crash in krb5-libs - k5_copy_etypes list out of bound?
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
3115154117
Improve docs/debug message about GC detection
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
f47c82bc8d
Resolves: upstream#3469 - extend sss-certmap man page regarding priority processing
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
64b69ec813
Resolves: upstream#3634 - sssctl COMMAND --help fails if sssd is not configured
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
8d67726a47
Resolves: upstream#3679 - Make nss netgroup requests more robust
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
8565df471c
Resolves: upstream#3646 - SSSD's GPO code ignores ad_site option
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
9709b73a3f
Resolves: upstream#3402 - Support alternative sources for the files provider
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
a7d4f0b3f4
Resolves: upstream#3550 - refresh_expired_interval does not work with netgrous in 1.15
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
ab53ba849a
IPA: Qualify the externalUser sudo attribute
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
ef1d48a0c2
Tone down shutdown messages for socket activated responders
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
fcff118bbf
Resolves: upstream#3558 - sudo: report error when two rules share cn
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:11 +02:00
Fabiano Fidêncio
f3d06df50d
Resolves: upstream#3684 - A group is not updated if its member is removed with the cleanup task, but the group does not change
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-04-27 22:12:10 +02:00
Fabiano Fidêncio
32f2c81e59
A few KCM misc fixes
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-03-30 14:47:05 +02:00
Fabiano Fidêncio
99da72db23
Resolves: upstream#3666 - Fix usage of str.decode() in our test
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-03-30 14:45:42 +02:00
Fabiano Fidêncio
1c7376afc5
Resolves: upstream#3386 - KCM: Payload buffer is too small
...
Related to: rhbz#1494843 - KCM Does not work
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-03-30 14:43:19 +02:00
Fabiano Fidêncio
73735e9522
Resolves: usptream#3687 - KCM: Don't pass a non null terminated string to json_loads()
...
Related to: rhbz#1494843 - KCM Does not work
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-03-30 14:38:32 +02:00
Fabiano Fidêncio
563dd33f72
Resolves: upstream#3658 - Application domain is not interpreted correctly
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-03-30 14:35:59 +02:00
Fabiano Fidêncio
2c812f3cba
Resolves: upstream#3660 - confdb_expand_app_domains() always fails
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-03-30 14:33:25 +02:00
Fabiano Fidêncio
40fe76feb8
Resolves: upstream#3573 - sssd won't show netgroups with blank domai
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-03-30 14:30:01 +02:00
Fabiano Fidêncio
62a3258629
New upstream release 1.16.1
...
https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_16_1.html
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-03-09 15:42:19 +01:00
Lukas Slebodnik
5eba7a8f1f
Resolves: upstream#3621 - backport bug found by static analyzers
2018-02-20 15:12:59 +01:00
Fabiano Fidêncio
4b1fe8a0ab
Resolves: upstream#3621: FleetCommander integration must not require capability DAC_OVERRIDE
...
Together with the patches backported from upstream, we're changing
the deskprofilepath permissions from 755 to 751, reflecting the
upstream spec file changes.
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-02-14 23:03:25 +01:00
Fabiano Fidêncio
199a72e62a
Resolves: rhbz#1538643 - SSSD crashes when retrieving a Desktop Profile with no specific host/hostgroup set
...
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
2018-02-14 22:15:04 +01:00
Igor Gnatenko
11c6ee78b8
Remove BuildRoot definition
...
None of currently supported distributions need that.
It was needed last for EL5 which is EOL now
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-14 00:40:17 +01:00
Lukas Slebodnik
18ae44bc79
Resolves: upstream#3618 - selinux_child segfaults in a docker container
2018-02-07 22:04:27 +01:00
Lukas Slebodnik
f55e235d75
Resolves: rhbz#1431153 - sssd: libsss_proxy.so needs to be linked with -ldl
2018-02-06 13:11:55 +01:00
Lukas Slebodnik
e242e8ef93
Fix systemd executions/requirements
...
systemd was added to BuildRequires because it provides rpm macros
/usr/lib/rpm/macros.d/macros.systemd and it is unreliable to rely
on indirect dependency between systemd-devel and systemd
Related to: https://src.fedoraproject.org/rpms/sssd/pull-request/1
2018-02-06 13:04:26 +01:00
Lukas Slebodnik
6d370601d4
Revert "Workaround for BZ1537183"
...
This reverts commit 0a5a392684
2018-02-06 12:57:05 +01:00
Igor Gnatenko
a3b937064c
Fix systemd executions/requirements
...
Merges: https://src.fedoraproject.org/rpms/sssd/pull-request/1
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-01-25 20:42:01 +01:00
Lukas Slebodnik
ebdebbe467
Do not try to link with -Wl,-z,defs
...
https://bugzilla.redhat.com/show_bug.cgi?id=1535422
https://fedoraproject.org/wiki/Changes/BINUTILS2291
https://src.fedoraproject.org/rpms/redhat-rpm-config/blob/master/f/buildflags.md#strict-symbol-checks-in-the-link-editor-ld
sssd cannot be linked with -Wl,-z,defs atm.
2018-01-25 20:23:09 +01:00
Lukas Slebodnik
27d7dcb5bb
Revert "Override linker flags done in redhat-rpm-config-84-1.fc28"
...
This reverts commit 7cda4fbc6f
2018-01-25 20:18:39 +01:00
Lukas Slebodnik
b4343b24b6
Fix building on rawhide. Remove -Wl,-z,defs from LDFLAGS
2018-01-25 11:39:00 +01:00
Lukas Slebodnik
0a5a392684
Workaround for BZ1537183
...
unit test will pass but sssd will not be able to use nsupdate with realm
on i686
2018-01-23 15:11:46 +01:00
Lukas Slebodnik
7cda4fbc6f
Override linker flags done in redhat-rpm-config-84-1.fc28
...
https://bugzilla.redhat.com/show_bug.cgi?id=1535422
https://fedoraproject.org/wiki/Changes/BINUTILS2291
sssd cannot be linked with -Wl,-z,defs atm.
2018-01-23 14:37:32 +01:00
Lukas Slebodnik
b390855a98
Fix building of sssd-nfs-idmap with libnfsidmap.so.1
2018-01-11 16:53:36 +01:00
Björn Esser
f9e6094ac5
Rebuilt for libnfsidmap.so.1
2018-01-11 12:01:37 +01:00
Lukas Slebodnik
1dedfbb334
Resolves: upstream#3523 - ABRT crash - /usr/libexec/sssd/sssd_nss in setnetgrent_result_timeout
...
Resolves: upstream#3588 - sssd_nss consumes more memory until restarted
or machine swaps
Resolves: failure in glibc tests
https://sourceware.org/bugzilla/show_bug.cgi?id=22530
Resolves: upstream#3451 - When sssd is configured with id_provider proxy and
auth_provider ldap, login fails if the LDAP server
is not allowing anonymous binds
Resolves: upstream#3285 - SSSD needs restart after incorrect clock is
corrected with AD
Resolves: upstream#3586 - Give a more detailed debug and system-log message
if krb5_init_context() failed
Resolves: rhbz#1431153 - SSSD ships a drop-in configuration snippet
in /etc/systemd/system
Backport few upstream features from 1.16.1
2017-12-04 21:42:37 +01:00
Lukas Slebodnik
ce65f7d9ee
Resolves: rhbz#1494002 - sssd_nss crashed in cache_req_search_domains_next
2017-11-21 17:57:44 +01:00
Lukas Slebodnik
87763840cd
Revert "Disable nfsplugin due to bug rhbz#1509063"
...
This reverts commit b5c435b10b
2017-11-21 17:56:54 +01:00
Jakub Hrozek
7781c9e992
Backport extended NSS API from upstream master branch
2017-11-17 18:06:26 +01:00
Lukas Slebodnik
b5c435b10b
Disable nfsplugin due to bug rhbz#1509063
2017-11-03 22:58:37 +01:00
Lukas Slebodnik
7ac8b3c4b5
Resolves: upstream#3529 - sssd-kcm Fix restart during/after upgrade
2017-11-03 16:20:10 +01:00
Lukas Slebodnik
7667bd7429
Fix unit tests with libldb-1.3.0
2017-10-21 16:19:39 +02:00
Lukas Slebodnik
f2e72c8931
There are not empty lang files in 1.16.0
2017-10-20 23:18:12 +02:00
Lukas Slebodnik
4f58854911
New upstream release 1.16.0
...
https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_16_0.html
2017-10-20 18:02:02 +02:00
Lukas Slebodnik
1aff49b48c
Fix build with krb5 1.16
2017-10-11 18:06:00 +02:00
Lukas Slebodnik
7069858231
Resolves: rhbz#1499354 - CVE-2017-12173
...
sssd: unsanitized input when searching in local cache database access on
the sock_file system_bus_socket
2017-10-11 17:48:41 +02:00
Lukas Slebodnik
8eda442b2e
Fix few bugs/regressions
...
Resolves: rhbz#1488327 - SELinux is preventing selinux_child from write access
on the sock_file system_bus_socket
Resolves: rhbz#1490402 - SSSD does not create /var/lib/sss/deskprofile and
fails to download desktop profile data
Resolves: upstream#3485 - getsidbyid does not work with 1.15.3
Resolves: upstream#3488 - SUDO doesn't work for IPA users on IPA clients after
applying ID Views for them in IPA server
Resolves: upstream#3501 - Accessing IdM kerberos ticket fails while id mapping
is applied
2017-09-12 09:22:07 +02:00
Lukas Slebodnik
fa4807ec45
Backport few upstream patches/fixes
2017-09-01 21:34:35 +02:00
Lukas Slebodnik
11cd64de1c
Add krb5 conf snippet for default KCM
...
http://fedoraproject.org/wiki/Releases/27/ChangeSet#Kerberos_KCM_credential_cache_by_default
https://bugzilla.redhat.com/show_bug.cgi?id=1421604
2017-09-01 21:34:20 +02:00
Lukas Slebodnik
5ce8ae1166
Simplify spec file a little bit
...
The plugin for cifs-utils can be built on all supported versions of fedora.
Conditions are required only in upstream spec file for older
distributions. Definition of constant with_cifs_utils_plugin is still
in the beginning of spec file for simpler comparison of changes
between upstream and fedora.
2017-09-01 10:47:18 +02:00
Lukas Slebodnik
088151887a
Remove unused if condition krb5 localauth plugin
...
The plugin can be built on all supported versions of fedora.
And it was removed also from upstream spec file.
2017-09-01 10:39:14 +02:00
Ville Skyttä
308a55f49d
Own the %{_libdir}/%{name}/conf dir
...
https://bugzilla.redhat.com/show_bug.cgi?id=1483517
2017-08-21 12:42:13 +02:00
Fedora Release Engineering
df69f6e551
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
2017-07-27 19:16:38 +00:00
Lukas Slebodnik
1f58bd8dc4
Make fedora automated tests happy
...
dist.python-versions failed
dist.python-versions.requires_naming_scheme failed
These RPMs use `python-` prefix without Python version in *Requires:
sssd-1.15.3-1.fc26 BuildRequires:
* python-devel (python2-devel is available)
This is strongly discouraged and should be avoided. Please check
the required packages, and use names with either `python2-` or
`python3-` prefix.
2017-07-25 17:53:21 +02:00
Lukas Slebodnik
6302a22355
New upstream release 1.15.3
...
https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_15_3.html
2017-07-25 13:58:52 +02:00
Lukas Slebodnik
ca67484fda
Rebuild with libldb-1.2.0
...
sssd buill with older version of libldb will crash
(gdb) bt
#0 0x0000000000000001 in ?? ()
#1 0x00007fcb39ce28dc in ldb_db_lock_destructor () from /lib64/libldb.so.1
#2 0x00007fcb3a103f31 in _tc_free_internal (location=0x7fcb39ce9303 "../common/ldb.c:1026", tc=<optimized out>) at ../talloc.c:1078
#3 _talloc_free_internal (location=0x7fcb39ce9303 "../common/ldb.c:1026", ptr=0x55e267aebef0) at ../talloc.c:1174
#4 _talloc_free (ptr=0x55e267aebef0, location=0x7fcb39ce9303 "../common/ldb.c:1026") at ../talloc.c:1716
#5 0x00007fcb39ce02f2 in ldb_lock_backend_callback () from /lib64/libldb.so.1
#6 0x00007fcb31b172ae in ltdb_callback () from /usr/lib64/ldb/modules/ldb/tdb.so
#7 0x00007fcb3a31e8c1 in tevent_common_loop_timer_delay () from /lib64/libtevent.so.0
2017-07-07 12:44:33 +02:00
Lukas Slebodnik
538f424e10
Disable unit tests with expired certificates
2017-06-27 16:02:20 +02:00
Lukas Slebodnik
7be3dab725
Fix build issues: Update expided certificate in unit tests
2017-06-27 14:22:05 +02:00
Lukas Slebodnik
af87992184
Reduce diff between rhel and fedora
2017-05-03 15:41:35 +02:00
Lukas Slebodnik
c580b695b0
Do not patch README.md
...
README.md is not part of tarball
2017-05-01 09:00:54 +02:00
Lukas Slebodnik
7bddea6c90
Resolves: rhbz#1445680 - Properly fall back to local Smartcard authentication
...
Resolves: rhbz#1437199 - sssd-nfs-idmap-1.15.2-1.fc25.x86_64 conflicts with
file from package sssd-common-1.15.1-1.fc25.x86_64
Resolves: rhbz#1063278 - sss_ssh_knownhostsproxy doesn't fall back to ipv4
2017-04-29 23:49:52 +02:00
Lukas Slebodnik
576a19ee5a
Fix issue with IPA + SELinux in containers
...
Resolves: upstream https://fedorahosted.org/sssd/ticket/3297
2017-04-06 15:54:38 +02:00
Lukas Slebodnik
387014f928
Backport upstream patches for 1.15.3 pre-release
...
required for building freeipa-4.5.x in rawhide
2017-04-04 16:22:51 +02:00
Lukas Slebodnik
d663bd4a22
New upstream release 1.15.2
...
https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_15_2.html
2017-03-16 10:48:31 +01:00
Lukas Slebodnik
6a912ecf5d
Add missing file
2017-03-06 11:41:21 +01:00
Lukas Slebodnik
831e9fa984
New upstream release 1.15.1
...
https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_15_1.html
2017-03-06 10:48:38 +01:00
Jakub Hrozek
396c651083
Cherry-pick patches from upstream that enable the files provider
...
Required for:
https://bugzilla.redhat.com/show_bug.cgi?id=1357418 - SSSD fast cache for local users
2017-02-28 16:54:33 +01:00
Lukas Slebodnik
3e94aee54c
Add missing %license macro
2017-02-14 19:47:29 +01:00
Fedora Release Engineering
b5653d93c3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
2017-02-11 13:57:49 +00:00
Lukas Slebodnik
850071336e
New upstream release 1.15.0
...
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.15.0
2017-01-27 20:07:00 +01:00
Miro Hrončok
4b9dd7c77c
Rebuild for Python 3.6
2016-12-19 18:20:38 +01:00
Lukas Slebodnik
eb6c560542
Resolves: rhbz#1369130 - nss_sss should not link against libpthread
...
Resolves: rhbz#1392916 - sssd failes to start after update
Resolves: rhbz#1398789 - SELinux is preventing sssd from 'write' accesses
on the directory /etc/sssd
2016-12-13 20:10:27 +01:00
Lukas Slebodnik
85427c072c
New upstream release 1.14.2
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.14.2
2016-10-20 16:20:34 +02:00
Lukas Slebodnik
856526f769
libwbclient-sssd: update interface to version 0.13
2016-10-14 19:06:17 +02:00
Lukas Slebodnik
8dd054482d
Revert "Do no use python_provide conditionally"
...
The macro python_provide is defined in /usr/lib/rpm/macros.d/macros.python
in the package python-rpm-macros. But this package is not part
of build root and therefore rpm cannot parse spec file.
This reverts commit 22c180263a
2016-09-22 23:40:41 +02:00
Lukas Slebodnik
75bb1ff2e0
Fix failing test
2016-09-22 22:55:43 +02:00
Lukas Slebodnik
640e44ca24
Fix regression with krb5_map_user
...
- Resolves: rhbz#1375552 - krb5_map_user doesn't seem effective anymore
- Resolves: rhbz#1349286 - authconfig fails with SSSDConfig.NoDomainError:
default if nonexistent domain is mentioned
2016-09-22 22:28:47 +02:00
Lukas Slebodnik
0fe5246e1a
Use weak dependencies
2016-09-21 12:47:08 +02:00
Lukas Slebodnik
22c180263a
Do no use python_provide conditionally
2016-09-15 17:53:58 +02:00
Lukas Slebodnik
2b61bbee11
Backport important patches from upstream 1.14.2 prerelease
...
- Resolves: upstream #3154 - sssd exits if clock is adjusted backwards after
boot
- Resolves: upstream #3163 - resolving IPA nested user group is broken in 1.14
2016-09-01 18:13:49 +02:00
Lukas Slebodnik
6bce0a242d
New upstream release 1.14.0
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.14.1
2016-08-19 18:02:03 +02:00
Stephen Gallagher
0e7292f369
Add workaround patch for RHBZ #1366403
2016-08-15 14:15:18 -04:00
Fedora Release Engineering
8a68f197ec
- https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_Packages
2016-07-19 12:41:42 +00:00
Lukas Slebodnik
08625190c5
New upstream release 1.14.0
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.14.0
2016-07-08 08:47:25 +02:00
Lukas Slebodnik
a100349631
Fix few mistakes
...
note: fedpkg lint is your best friend
2016-07-01 10:45:16 +02:00
Lukas Slebodnik
f9539d7319
New upstream release 1.14 beta
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.14.0beta
2016-07-01 10:11:33 +02:00
Lukas Slebodnik
966fddcfba
New upstream release 1.14 alpha
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.14.0alpha
2016-06-21 10:58:04 +02:00
Lukas Slebodnik
e3bb60bcdb
Rename python packages + using macro %python_provide
2016-05-13 11:09:38 +02:00
Lukas Slebodnik
9aeb640f15
Resolves: rhbz#1335639 - [abrt] sssd-dbus: ldb_msg_find_element():
...
sssd_ifp killed by SIGSEGV
2016-05-13 11:09:38 +02:00
Lukas Slebodnik
18bea94912
Resolves: rhbz#1328108 - Protocol error with FreeIPA on CentOS 6
2016-04-22 20:50:56 +02:00
Lukas Slebodnik
d9dece9b71
Backport netlink patch for link-local addresses
2016-04-14 13:05:33 +02:00
Lukas Slebodnik
19237d03ed
New upstream release 1.13.4
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.4
2016-04-14 12:59:47 +02:00
Lukas Slebodnik
6b01857bc5
Bump release
2016-03-22 09:07:32 +01:00
Lukas Slebodnik
e37379577b
Resolves: rhbz#1276868 - Sudo PAM Login should support multiple password
...
prompts (e.g. Password + Token)
- Resolves: rhbz#1313041 - ssh with sssd proxy fails with "Connection closed
by remote host" if locale not available
2016-03-22 09:06:29 +01:00
Lukas Slebodnik
e32d50862e
Resolves: rhbz#1310664 - [RFE] IPA: resolve external group memberships of IPA
...
groups during getgrnam and getgrgid
- Resolves: rhbz#1301303 - sss_obfuscate: SyntaxError: Missing parentheses
in call to 'print'
2016-02-25 13:58:00 +01:00
Lukas Slebodnik
00dde99057
Move libsss_autofs.so outside sssd-common
...
It will reduce dependency chain in container world.
libsss_autofs.so depends only on libc and requires
sssd unix sockets. And sssd-common has many requirements.
2016-02-19 09:27:27 +01:00
Lukas Slebodnik
584e0c3964
Remove unnecessary requirements
...
We do not need to requires specific version of libldb
or libtdb because it is automatically detected from
binary/library dependencies. We also need never version
of that libraries as it was specified in spec file.
e.g.
sh$ rpm -q --requires sssd-common | grep -E "TDB|LDB"
libldb.so.1(LDB_0.9.10)(64bit)
libtdb.so.1(TDB_1.2.1)(64bit)
There is also redundant dependency on sssd-common-pac
sssd -> sssd-ipa -> sssd-common-pac
-> sssd-ad -> sssd-common-pac
-> sssd-common-pac
sh$ rpm -q --whatrequires sssd-common-pac
sssd-ipa-1.13.3-1.fc23.x86_64
sssd-ad-1.13.3-1.fc23.x86_64
sssd-1.13.3-1.fc23.x86_64
2016-02-17 16:30:01 +01:00
Fedora Release Engineering
0a5378a924
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
2016-02-05 00:37:31 +00:00
Lukas Slebodnik
c38b881d88
Package uses only $RPM_BUILD_ROOT
...
Note: Using both %{buildroot} and $RPM_BUILD_ROOT
See: http://fedoraproject.org/wiki/Packaging/Guidelines#macros
2016-02-02 21:45:47 +01:00
Lukas Slebodnik
5719fdd6f8
Fix rpmlint issue for libsss_simpleifp
...
Patch removes unnecessary requires of dbus-libs
because it's already detected from library.
However we forgot to call ldconfig after (un)installation.
sh$ rpm -q -p --requires libsss_simpleifp-1.13.90-0.fc23.x86_64.rpm | grep dbus
libdbus-1.so.3()(64bit)
libdbus-1.so.3(LIBDBUS_1_3)(64bit)
sssd-dbus = 1.13.90-0.fc23
sh$ rpm -q --whatprovides "libdbus-1.so.3()(64bit)"
dbus-libs-1.10.6-1.fc23.x86_64
2016-02-02 18:07:45 +01:00
Lukas Slebodnik
fb84da9380
Remove unnecessary clean-up of buildroot
...
rhel5 required to clean buildroot in install section.
The %clean section is not required for F-13 and above, and EPEL 6 and
above. EPEL 5 MUST have a %clean section that cleans the buildroot:
https://fedoraproject.org/wiki/EPEL:Packaging#Prepping_BuildRoot_For_.25install
2016-02-02 18:06:09 +01:00
Lukas Slebodnik
d384e14059
Fix rpmlint warnings
...
fedpkg/sssd/sssd.spec:1232: W: macro-in-%changelog %preun
fedpkg/sssd/sssd.spec:1366: W: macro-in-%changelog %{_lib}
fedpkg/sssd/sssd.spec:1366: W: macro-in-comment %{_lib}
2016-02-02 11:59:36 +01:00
Lukas Slebodnik
6d11a34b89
Additional upstream fixes
2016-01-20 18:40:57 +01:00
Lukas Slebodnik
9bfc8ef4de
Resolves: rhbz#1256849 - SUDO: Support the IPA schema
2016-01-19 18:23:34 +01:00
Michal Sekletar
94f4c4dd6d
Use macros and don't call systemctl directly
...
- Resolves: rhbz#850328 - Introduce new systemd-rpm macros in sssd spec file
2016-01-19 15:26:15 +01:00
Lukas Slebodnik
9f85549912
Fix unowned directories
...
- https://fedoraproject.org/wiki/Packaging:UnownedDirectories
- Resolves: rhbz#1266940 - sssd-client.i686 on x86_64 has unowned directories
2016-01-19 15:15:32 +01:00
Lukas Slebodnik
f50233afd2
Move libsss_sudo.so outside sssd-common
...
The module ${libdir}/libsss_sudo.so is used only by /usr/bin/sudo.
If libsss_sudo.so was part of sssd-client then 32 bit version would
never be used on 64 bit machine and files in sssd-client can be used
by multilib applications e.g. libnss_sss.so can be indirectly "dlopened"
by 64 bit applications and 32 bit application.
(32-bit web browser; ordinary 64bit applications ...)
2016-01-19 15:06:17 +01:00
Lukas Slebodnik
aa27da2e1f
Change package ownership of %{pubconfpath}/krb5.include.d
...
krb5 domain mapping files are stored to the directory
%{pubconfpath}/krb5.include.d. It can be stored by ipa or ad provider.
However this directory was owned by sub-package sssd-ipa. And ad provider
can be installed without this package. Therefore %{pubconfpath}/krb5.include.d
should be owned by common dependency.
The owner of this directory was also fixed to sssd.
It's already done by make install. It was changed only in spec file.
2016-01-19 15:02:47 +01:00
Lukas Slebodnik
a89ed4b83f
Additional patch for upstream #2829
2015-12-16 08:51:17 +01:00
Lukas Slebodnik
5df019d5aa
New upstream release 1.13.3
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.3
2015-12-16 08:47:07 +01:00
Lukas Slebodnik
31ed44fa55
Backport patches from sssd master #2829
...
Use after free in failover
2015-11-20 09:47:17 +01:00
Lukas Slebodnik
bdedaaad52
New upstream release 1.13.2
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.2
2015-11-20 09:47:17 +01:00
Robert Kuska
2b3b752656
Rebuilt for Python3.5 rebuild
2015-11-06 15:40:37 +01:00
Lukas Slebodnik
9f8eeed0c9
Fix building pac responder with the krb5-1.14
2015-10-27 09:41:14 +01:00
Lukas Slebodnik
c08e64289b
python-sssdconfig: Fix parssing sssd.conf without config_file_version
...
- Resolves: upstream #2837 - REGRESSION: ipa-client-automout failed
2015-10-19 15:04:51 +02:00
Lukas Slebodnik
4bdb4e48cd
Revert "Temporary disable tests due to broken krb5"
...
This reverts commit 1bedb06db6
2015-10-07 13:42:42 +02:00
Lukas Slebodnik
69b9d3f518
Fix few segfaults
...
- Resolves: upstream #2811 - PAM responder crashed if user was not set
- Resolves: upstream #2810 - sssd_be crashed in ipa_srv_ad_acct_lookup_step
2015-10-07 13:42:03 +02:00
Lukas Slebodnik
1bedb06db6
Temporary disable tests due to broken krb5
...
Should be fixed with krb5 >= 1.14-2.fc24
2015-10-01 08:16:23 +02:00
Lukas Slebodnik
00d900ad6f
Remove unnecessary requirement
...
libini-config-1.1 already provides version definition
which substitute this requirement.
sh$ objdump -p /usr/lib64/libini_config.so | grep -A4 definition
Version definitions:
1 0x01 0x05f25695 libini_config.so.5
2 0x00 0x00acdc20 INI_CONFIG_1.1.0
3 0x00 0x00acdd20 INI_CONFIG_1.2.0
INI_CONFIG_1.1.0
2015-10-01 08:16:23 +02:00
Lukas Slebodnik
05c3b14125
New upstream release 1.13.1
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.1
2015-10-01 08:16:16 +02:00
Lukas Slebodnik
996f9ec8f7
Fix OTP bug
...
- Resolves: upstream #2729 - Do not send SSS_OTP if both factors were
entered separately
2015-09-10 14:26:47 +02:00
Lukas Slebodnik
cc6c9ff159
Backport upstream patches required by FreeIPA 4.2.1
2015-09-07 18:37:40 +02:00
Lukas Slebodnik
cc1ba0d674
Fix ipa-migration bug
...
- Resolves: upstream #2719 - IPA: returned unknown dp error code with disabled
migration mode
2015-07-21 09:11:06 +02:00
Lukas Slebodnik
b46d3ce3db
New upstream release 1.13.0
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.0
2015-07-08 19:15:17 +02:00
Lukas Slebodnik
aa1a6b1ea9
Unify return type of list_active_domains for python{2,3}
2015-06-30 16:54:06 +02:00
Lukas Slebodnik
3fa3e7c22a
New upstream release 1.13 alpha
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.0alpha
2015-06-22 13:52:08 +02:00
Dennis Gilmore
b4d3da407f
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
2015-06-19 01:41:15 +00:00
Lukas Slebodnik
89ed4ffc3c
Fix libwbclient alternatives
2015-06-12 20:50:06 +02:00
Lukas Slebodnik
aac3cde5be
New upstream release 1.12.5
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.12.5
- backport important patches from upstream 1.13 prerelease
2015-06-12 14:49:22 +02:00
Lukas Slebodnik
05b6ed4f4e
Update source file for new release
2015-06-12 14:49:22 +02:00
Lukas Slebodnik
70e9980ac6
Backport important patches from upstream 1.13 prerelease
...
- Resolves: rhbz#1060325 - Does sssd-ad use the most suitable
attribute for group name
- Resolves: upstream #2335 - Investigate using the krb5 responder
for driving the PAM conversation with OTPs
- Enable cmocka tests for secondary architectures
2015-05-08 14:53:58 +02:00
Lukas Slebodnik
a0e4fecc9c
Fix cyclic dependencies between sssd-{krb5,}-common
...
The upstream ticket #2507 is prerequisite for BZ1212503
Patch also enables cmocka tests with secondary architectures.
2015-05-08 14:32:52 +02:00
Lukas Slebodnik
40a97f0f88
Backport patches from upstream 1.12.5 prerelease - contains many fixes
2015-05-08 14:13:58 +02:00
Lukas Slebodnik
6cfd9704c1
Bump version for patches related to #2624
2015-04-15 14:19:39 +02:00
Lukas Slebodnik
c4cf951d60
Fix slow login with ipa and SELinux
...
- Resolves: upstream #2624 - Only set the selinux context if the context
differs from the local one
2015-04-15 14:17:32 +02:00
Lukas Slebodnik
9a0389188d
Small spec file clean-up
...
* remove workaround for old rpmbuild (rhel5)
* remove conversion sysv scripts to systemd
* small code style update in bash scripts
2015-04-09 18:06:13 +02:00
Lukas Slebodnik
36805df397
Fix regressions with ipa and SELinux
...
- Resolves: upstream #2587 - With empty ipaselinuxusermapdefault security
context on client is staff_u
2015-03-23 17:17:30 +01:00
Jakub Hrozek
9f97bec3b0
Also relax libldb Requires and remove --enable-ldb-version-check
2015-03-06 11:45:13 +01:00
Jakub Hrozek
9c5af4ac2d
Relax libldb BuildRequires
...
Originally, we tried to stay on the safe side with libldb since it never
really commited to stable ABI or API, but since there were never any
issues in many years, it's safe to relax the requirement.
This change will benefit especially the storage developers who often
need a different (typically newer) libldb version and would like to
avoid to rebuild sssd for no reason.
2015-03-06 10:50:45 +01:00
Lukas Slebodnik
ed82d05320
Add support for python3 bindings
...
- Add requirement to python3 or python3 bindings
- Resolves: rhbz#1014594 - sssd: Support Python 3
2015-02-25 14:21:45 +01:00
Lukas Slebodnik
16372c2465
Replace python_* rpm macros with python2_*
2015-02-25 13:34:08 +01:00
Lukas Slebodnik
a8d019e332
Old python file names are just symbolic links
...
* add real files to packages as well.
2015-02-25 13:29:49 +01:00
Lukas Slebodnik
e37fc598a5
Move python bindings to separate packages
...
Some python bindings pysss and pysss_murmur was in package sssd-common.
Therefore package sssd-common had python as a dependency.
2015-02-25 10:35:28 +01:00
Lukas Slebodnik
7601087c69
Backport upstream patches for building python{2,3} bindings
2015-02-25 10:15:06 +01:00
Lukas Slebodnik
5e6bda777e
New upstream release 1.12.4
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.12.4
2015-02-18 21:24:59 +01:00
Lukas Slebodnik
59bb05ded2
Reverting change of rhbz ticket in changelog
...
This change was part of initial patch from BZ1184623.
2015-02-14 16:36:31 +01:00
Lukas Slebodnik
3412a6a279
Backport patches with Python3 support from upstream
2015-02-14 16:20:30 +01:00
Lukas Slebodnik
781433f093
Fix bogus date
2015-02-12 22:01:16 +01:00
Lukas Slebodnik
7d37b73369
Fix double free in monitor
...
- Resolves: rhbz#1186887 [abrt] sssd-common: talloc_abort():
sssd killed by SIGABRT
2015-02-12 21:58:28 +01:00
Jakub Hrozek
42e3400582
Rebuild for new libldb
2015-01-28 10:43:17 +01:00
Lukas Slebodnik
8fcc4c26b2
Decrease priority of sssd-libwbclient
...
- It should be lower than priority of samba veriosn of libwbclient.
- https://bugzilla.redhat.com/show_bug.cgi?id=1175511#c18
2015-01-22 11:11:33 +01:00
Lukas Slebodnik
35a0ddc9bc
Apply a number of patches from upstream to fix issues found 1.12.3
...
- Resolves: rhbz#1176373 - dyndns_iface does not accept multiple
interfaces, or isn't documented to be able to
- Resolves: rhbz#988068 - getpwnam_r fails for non-existing users when sssd is
not running
- Resolves: upstream #2557 authentication failure with user from AD
2015-01-19 13:39:53 +01:00
Lukas Slebodnik
1823f50b32
Reorder entries in spec file to match upstream version
2015-01-19 10:18:01 +01:00
Lukas Slebodnik
5e0303787e
Minor spec file updates
...
- Fix build requires for libini_config-devel (we need 1.1 for gpo)
- Remove rhel5 relics
- execute lddconfig in post/postun for libsss_nss_idmap
2015-01-19 09:57:27 +01:00
Lukas Slebodnik
572b806e90
Resolves: rhbz#1164156 - libsss_simpleifp should pull sssd-dbus
...
Resolves: rhbz#1179379 - gzip: stdin: file size changed while
zipping when rotating logfile
2015-01-09 15:12:09 +01:00
Lukas Slebodnik
d747a9c497
New upstream release 1.12.3
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.12.3
- Fix spelling errors in description (fedpkg lint)
2015-01-08 21:04:11 +01:00
Lukas Slebodnik
5bb93bf105
Rebuild for libldb 1.1.19
2015-01-06 11:49:40 +01:00
Sumit Bose
a7fd9ee43a
Resolves: rhbz#1175511 - sssd-libwbclient conflicts with Samba's and causes
...
crash in wbinfo
- in addition to the patch libwbclient.so is
filtered out of the Provides list of the package
2014-12-19 22:31:43 +01:00
Lukas Slebodnik
ebb3a9f2b4
Fix regressions and bugs in sssd upstream 1.12.2
...
- https://fedorahosted.org/sssd/ticket/{id}
- Regressions: #2471 , #2475 , #2483 , #2487 , #2529 , #2535
- Bugs: #2287 , #2445
2014-12-17 22:45:11 +01:00
Jakub Hrozek
9638a21d11
Rebuild for libldb 1.1.18
2014-12-07 20:45:08 +01:00
Jakub Hrozek
ab6f3739e8
Fix typo in libwbclient-devel %preun
2014-11-26 11:17:29 +01:00
Jakub Hrozek
1dcb9c312d
Use alternatives for libwbclient
2014-11-25 14:53:03 +01:00
Jakub Hrozek
3161db3512
Backport several patches from upstream.
...
- Fix a potential crash against old (pre-4.0) IPA servers
2014-10-22 13:09:58 +02:00
Jakub Hrozek
1caa247c9e
New upstream release 1.12.2
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.12.2
2014-10-20 17:29:11 +02:00
Jakub Hrozek
f5fb14a9ce
Resolves: rhbz#1139962 - Fedora 21, FreeIPA 4.0.2: sssd does not find user private group from server
2014-09-15 10:27:34 +02:00
Jakub Hrozek
788fd7f1d8
Remove upstreamed patch
2014-09-15 10:24:04 +02:00
Jakub Hrozek
19acdd3ef7
New upstream release 1.12.1
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.12.1
2014-09-08 22:06:09 +02:00
Jakub Hrozek
34e089bd00
Do not crash on resolving a group SID in IPA server mode
2014-08-22 15:33:51 +02:00
Peter Robinson
a6a5820ca0
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
2014-08-18 03:41:37 +00:00
Stephen Gallagher
f73310eae6
Fix release version for upgrades
2014-07-10 12:41:28 -04:00
Jakub Hrozek
7d4b57e76e
Upload the 1.12.0 tarball
2014-07-09 21:07:43 +02:00
Jakub Hrozek
95cd407957
New upstream release 1.12.0
2014-07-09 21:04:06 +02:00
Dennis Gilmore
2b26bf5bcb
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
2014-06-08 02:10:13 -05:00
Jakub Hrozek
1113dec8d0
New upstream release 1.12 beta1
...
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.12.0beta2
2014-06-04 21:46:10 +02:00
Jakub Hrozek
6307570cd8
Fix tests on big-endian
2014-06-02 11:08:39 +02:00
Jakub Hrozek
c9a7a9b259
New upstream release 1.12 beta1
...
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.12.0beta1
2014-05-30 22:16:22 +02:00
Jakub Hrozek
03322d356d
Rebuild against new ding-libs
2014-05-29 09:30:16 +02:00
Stephen Gallagher
793c29a821
Make LDB dependency a strict equivalency
2014-05-08 16:26:19 -04:00
Stephen Gallagher
f1284494dc
Rebuild against new libldb
2014-05-08 16:14:33 -04:00
Jakub Hrozek
4c0bb78ec9
New upstream release 1.11.5.1
2014-04-11 19:34:52 +02:00
Stephen Gallagher
72f83f8ad8
Fix bug in generation of systemd unit file
...
There was a bug in the generation of the tarball that results in
a unit file with a path to /usr/local/sbin, which is incorrect.
2014-04-10 13:21:12 -04:00
Stephen Gallagher
1dd48b52ba
Remove old patches
2014-04-10 13:17:08 -04:00
Jakub Hrozek
5b600e343d
New upstream release 1.11.5
...
- Remove upstreamed patches
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.5
2014-04-08 13:39:37 +02:00
Sumit Bose
cfb3146269
Handle new error code for IPA password migration
2014-03-13 20:14:42 +01:00
Jakub Hrozek
1fd6df7177
Include couple of patches from upstream 1.11 branch
2014-03-11 13:35:03 +01:00
Jakub Hrozek
4d4fe7434d
New upstream release 1.11.4
...
- Remove upstreamed patch
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.4
2014-02-17 20:53:20 +01:00
Jakub Hrozek
4b219e485d
Fix the double separator error in sssd.spec (Thanks, baude)
2014-02-12 23:15:07 +01:00
Jakub Hrozek
42c4dcb65e
Fix changelog entry to be in descending order (wow, it's 2014 already)
2014-02-11 15:49:49 +01:00
Jakub Hrozek
9c2fb314df
Handle OTP response from FreeIPA server gracefully
2014-02-11 15:46:54 +01:00
Jakub Hrozek
d323e2f10a
New upstream release 1.11.3
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.3
2013-12-19 20:01:09 +01:00
Jakub Hrozek
4dcc16e6e6
New upstream release 1.11.2
...
- Remove upstreamed patches
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.2
2013-10-31 00:33:55 +01:00
Jakub Hrozek
0b3b35863c
Remove the explicit ccache dir setting
2013-10-29 18:20:16 +01:00
Jakub Hrozek
797caead4f
Fix potential crash with external groups in trusted IPA-AD setup
2013-10-16 14:01:28 +02:00
Sumit Bose
df4dbc81ab
Add plugin for cifs-utils
...
- Resolves: rhbz#998544
2013-10-15 12:35:12 +02:00
Jakub Hrozek
f99cfe2513
Fix failover from Global Catalog to LDAP in case GC is not available
2013-10-08 15:26:18 +02:00
Jakub Hrozek
72c2cb49be
Remove the ability to create public ccachedir ( #1015089 )
2013-10-04 09:51:35 +02:00
Jakub Hrozek
36fd89e84a
Backport the sssd-common-pac subpackage from upstream
2013-09-27 22:42:45 +02:00
Jakub Hrozek
b524a0328d
New upstream release 1.11.1
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.1
2013-09-27 22:28:08 +02:00
Jakub Hrozek
3ec8adb72a
Fix multicast checks in the SSSD
...
- Resolves: rhbz#1007475 - The multicast check is wrong in the sudo source
code getting the host info
2013-09-26 01:33:52 +02:00
Jakub Hrozek
8d72fcd900
Backport simplification of ccache management from 1.11.1
...
- Resolves: rhbz#1010553 - sssd setting KRB5CCNAME=(null) on login
2013-09-23 14:45:29 +02:00
Jakub Hrozek
c5481c88cf
Relax the libldb requirement
2013-09-02 12:13:25 +02:00
Jakub Hrozek
5a4b44398b
New upstream release 1.11.0
2013-08-29 00:37:47 +02:00
Jakub Hrozek
413e09fdbc
Fix #967012 and #996214
2013-08-23 15:41:45 +02:00
Jakub Hrozek
a35bab9380
Remove stray leading slash from file path
...
Related: #906427 - Do not use %{_lib} in specfile for the nss and pam libraries
2013-08-09 10:28:06 +02:00
Dennis Gilmore
fd29083550
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
2013-08-04 10:45:00 -05:00
Jakub Hrozek
6fdf7eb42e
Resolves : #906427 - Do not use %{_lib} in specfile for the nss and pam libraries
2013-07-31 13:00:22 +02:00
Jakub Hrozek
b2e72bcb34
New upstream release 1.11 beta 2
2013-07-24 16:36:08 +02:00
Jakub Hrozek
8190be00e7
New upstream release 1.10.1
...
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.1
2013-07-18 17:29:52 +02:00
Jakub Hrozek
1c82bbb70c
sssd-tools should require sssd-common, not sssd
...
This bug was already fixed upstream.
2013-07-08 12:16:10 +02:00
Stephen Gallagher
d7b4fa2655
Move sssd_pac to the sssd-ipa and sssd-ad subpackages
...
- Trim out RHEL5-specific macros since we don't build on RHEL 5
- Trim out macros for Fedora older than F18
- Update libldb requirement to 1.1.16
- Trim RPM changelog down to the last year
2013-07-02 12:31:25 -04:00
Stephen Gallagher
94bf18fb85
Move sssd_pac to the sssd-krb5 subpackage
2013-07-02 09:23:43 -04:00
Stephen Gallagher
604fe3f870
Fix Obsoletes: to account for dist tag
...
- Convert post and pre scripts to run on the sssd-common subpackage
- Remove old conversion from SYSV
2013-07-01 18:57:07 -04:00
Jakub Hrozek
e7f2b6f482
New upstream release 1.10
...
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0
2013-06-27 23:36:41 +02:00
Dan Horák
bc0fb19593
- the cmocka toolkit exists only on selected arches
2013-06-17 15:43:14 +02:00
Jakub Hrozek
ba06c0ac1d
Apply a number of patches from upstream to fix issues found post-beta
...
In particular:
-- segfault with a high DEBUG level
-- Fix IPA password migration (upstream #1873 )
-- Fix fail over when retrying SRV resolution (upstream #1886 )
2013-06-16 13:12:37 +02:00
Jakub Hrozek
1577261624
Remove unused patches
2013-06-16 13:05:20 +02:00
Jakub Hrozek
31184a1e66
Only BuildRequire libcmocka on Fedora
2013-06-13 12:33:22 +02:00
Jakub Hrozek
63b3e9558a
Fix typo in Requires that prevented an upgrade ( #973916 )
...
- Use a hardcoded version in Conflicts, not less-than-current
2013-06-13 11:14:50 +02:00
Jakub Hrozek
20cbf86dca
Fix date in changelog
2013-06-12 13:03:15 +02:00
Jakub Hrozek
6739bfa630
Enable hardened build for RHEL7
2013-06-12 13:01:57 +02:00
Jakub Hrozek
b9ffc0a290
New upstream release 1.10 beta2
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0beta2
- BuildRequire libcmocka-devel in order to run all upstream tests during build
- BuildRequire libnl3 instead of libnl1
- No longer BuildRequire initscripts, we no longer use /sbin/service
- Remove explicit krb5-libs >= 1.10 requires; this platform doensn't carry
any older krb5-libs version
2013-06-12 12:22:15 +02:00
Jakub Hrozek
af82f760d4
Always initialize ID mapping objects
...
Apply a couple of patches from upstream git that resolve crashes when
ID mapping object was not initialized properly but needed later
2013-05-24 10:44:53 +02:00
Jakub Hrozek
2f295ac01f
Backport fixes for rhbz#961278, rhbz#961278 and rhbz#961251
...
- Resolves: rhbz#961357 - Missing dyndns_update entry in sssd.conf during
realm join
- Resolves: rhbz#961278 - Login failure: Enterprise Principal enabled by
default for AD Provider
- Resolves: rhbz#961251 - sssd does not create user's krb5 ccache dir/file
parent directory when logging in
2013-05-14 16:51:09 +02:00
Jakub Hrozek
3cfed3426f
Bump release number
2013-05-07 15:22:24 +02:00
Jakub Hrozek
a0794d8e0f
BuildRequire recent libini_config to ensure consistent behaviour
2013-05-07 15:11:22 +02:00
Jakub Hrozek
14fef6c6d9
Update SSSD for the F19 test day
...
- Explicitly Require libini_config >= 1.0.0.1 to work around a SONAME bug in ding-libs
- Fix SSH integration with fully-qualified domains
- Add the ability to dynamically discover the NetBIOS name
2013-05-07 15:02:05 +02:00
Jakub Hrozek
3726d5f5e7
Upload the 1.10 beta1 tarball
2013-05-03 22:28:50 +02:00
Jakub Hrozek
6d4f357f0c
New upstream release 1.10 beta1
...
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0beta1
2013-05-03 22:24:02 +02:00
Jakub Hrozek
90d9c5609a
Add a patch to fix krb5 ccache creation issue with krb5 1.11
2013-04-17 13:35:52 +02:00
Jakub Hrozek
3077f7f104
Remove patches obsoleted by 1.10 alpha release
2013-04-03 15:05:55 +02:00
Jakub Hrozek
809727fd06
New upstream release 1.10 alpha1
...
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0alpha1
2013-04-02 20:08:54 +02:00
Jakub Hrozek
7ad84675dd
Add a patch to fix krb5 unit tests
2013-03-29 13:59:48 +01:00
Stephen Gallagher
c0672862e6
Split internal helper libraries into a shared object
...
- Significantly reduce disk-space usage
2013-03-01 08:23:37 -05:00
Jakub Hrozek
21a05ac540
Fix the Kerberos password expiration warning ( #912223 )
2013-02-21 11:53:21 +01:00
Jakub Hrozek
c7ed4e1efe
Do not write out dots in the domain-realm mapping file ( #905650 )
2013-02-14 19:47:00 +01:00
Jakub Hrozek
15e195c705
Include upstream patch to build with krb5-1.11
2013-02-11 16:04:12 +01:00
Jakub Hrozek
930a3f3778
Rebuild against new libldb
2013-02-07 11:49:02 +01:00
Jakub Hrozek
94fb015ff9
Remove two obsolete patches from F19 branch
2013-02-04 16:39:42 +01:00
Jakub Hrozek
9507d125c2
Fix build with new automake versions
2013-02-04 16:38:36 +01:00
Jakub Hrozek
2da8f67cdb
Recreate Kerberos ccache directory if it's missing
...
Resolves: rhbz#853558 - [sssd[krb5_child[PID]]]: Credential cache
directory /run/user/UID/ccdir does not exist
2013-01-30 14:45:14 +01:00
Jakub Hrozek
e4c185bf07
Fix changelog dates to make F19 rpmbuild happy
2013-01-29 11:00:35 +01:00
Jakub Hrozek
ad9c6955a3
New upstream release 1.9.4
2013-01-28 23:42:27 +01:00
Jakub Hrozek
36b8b7a8cb
New upstream release 1.9.3
2012-12-06 19:51:06 +01:00
Jakub Hrozek
a2ee98d91a
rhbz#867874: sssd does not resolve group names from AD
2012-10-30 19:39:45 +01:00
Jakub Hrozek
fdd9aa55f7
rhbz:#871176 Check the validity of namingContext
2012-10-30 10:59:25 +01:00
Jakub Hrozek
81d04d0257
Move the sss_cache tool to the main package
2012-10-18 20:00:12 +02:00
Jakub Hrozek
86429099a5
Include the 1.9.2 sources for real
2012-10-14 21:45:46 +02:00
Jakub Hrozek
c8ad006286
Include the 1.9.2 sources
2012-10-14 21:44:09 +02:00
Jakub Hrozek
89ce7cbfb4
New upstream version 1.9.2
2012-10-14 21:43:04 +02:00
Jakub Hrozek
a48646c55d
New upstream release 1.9.1
2012-10-07 16:17:58 +02:00
Jakub Hrozek
fbc5fa9bce
Require latest libldb
2012-10-03 11:00:52 +02:00
Jakub Hrozek
3a1ca05a36
BuildRequire diffstat
2012-09-25 14:55:48 +02:00
Jakub Hrozek
1756cca820
Use mcpath insted of mcachepath macro to be consistent with upstream spec file
2012-09-25 14:13:46 +02:00
Jakub Hrozek
827279f87c
New upstream release 1.9.0
2012-09-25 13:20:37 +02:00
Jakub Hrozek
6cde68d41f
New upstream release 1.9.0 RC1
2012-09-14 14:36:08 +02:00
Jakub Hrozek
586ea1b402
Obsolete patches that are part of the beta7 upstream
2012-09-06 22:04:39 +02:00
Jakub Hrozek
64a7ceb4e2
New upstream release 1.9.0 beta 7
2012-09-06 21:44:03 +02:00
Jakub Hrozek
26c9bc8ead
Rebuild against libldb 1.12
2012-09-03 13:10:15 +02:00
Jakub Hrozek
b19546a95d
Rebuild against libldb 1.11
2012-08-28 12:46:57 +02:00
Jakub Hrozek
5be1b0deaf
rhbz#851304: Change the default ccache location to DIR:/run/user/1001/krb5cc
2012-08-24 17:11:43 +02:00
Jakub Hrozek
a35b2922c3
Rebuild against libldb 1.10
2012-08-20 18:45:15 +02:00
Jakub Hrozek
66374adaa7
Only create the SELinux login file if there are SELinux mappings on the IPA server
2012-08-17 15:00:20 +02:00
Jakub Hrozek
a1657400dd
Don't discard HBAC rule processing result if SELinux is on
...
Resolves: rhbz#846792 (CVE-2012-3462)
2012-08-10 22:38:17 +02:00
Jakub Hrozek
292c0dcaf2
New upstream release 1.9.0-13.beta6
2012-08-02 18:04:25 +02:00
Dennis Gilmore
61dbc61004
Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
2012-07-27 03:35:23 -05:00
Jakub Hrozek
b75ed0d13d
New upstream release 1.9.0 beta 5
2012-07-19 12:51:26 +02:00
Stephen Gallagher
9e16356e4a
Add missing patch
2012-07-16 10:02:33 -04:00
Stephen Gallagher
7a12c895a2
Fix broken ARM build
...
- Add missing DP_OPTION_TERMINATOR in AD provider options
2012-07-16 09:50:52 -04:00
Jakub Hrozek
f681bd4766
Own several directories
...
https://bugzilla.redhat.com/show_bug.cgi?id=839782
2012-07-15 17:14:01 +02:00
Jakub Hrozek
32842a881b
New upstream release 1.9.0 beta 4
2012-07-11 09:57:09 +02:00
Stephen Gallagher
058cfb833c
New upstream release 1.9.0 beta 3
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta3
- Add a new PAC responder for dealing with cross-realm Kerberos trusts
- Terminate idle connections to the NSS and PAM responders
2012-06-25 13:15:35 -04:00
Stephen Gallagher
2cb25205a4
Switch unicode library from libunistring to Glib
...
- Drop unnecessary explicit Requires on keyutils
- Guarantee that versioned Requires include the correct architecture
2012-06-20 10:32:39 -04:00
Stephen Gallagher
f8c88041e5
Fix accidental disabling of the DIR cache support
2012-06-18 10:16:49 -04:00
Stephen Gallagher
666a39284d
New upstream release 1.9.0 beta 2
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta2
- Add support for the Kerberos DIR cache for storing multiple TGTs
automatically
- Major performance enhancement when storing large groups in the cache
- Major performance enhancement when performing initgroups() against Active
Directory
- SSSDConfig data file default locations can now be set during configure for
easier packaging
2012-06-15 15:43:49 -04:00
Stephen Gallagher
26151dabf9
Fix regression in endianness patch
2012-05-30 15:10:43 -04:00
Stephen Gallagher
12d78e10a6
Rebuild SSSD against ding-libs 0.3.0beta1
...
- Fix endianness bug in service map protocol
2012-05-29 11:23:46 -04:00
Stephen Gallagher
359d341a35
Fix several regressions since 1.5.x
...
- Ensure that the RPM creates the /var/lib/sss/mc directory
- Add support for Netscape password warning expiration control
- Rebuild against libldb 1.1.6
2012-05-24 08:23:25 -04:00
Stephen Gallagher
7fa00add1e
New upstream release 1.9.0 beta 1
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta1
- Add native support for autofs to the IPA provider
- Support for ID-mapping when connecting to Active Directory
- Support for handling very large (> 1500 users) groups in Active Directory
- Support for sub-domains (will be used for dealing with trust relationships)
- Add a new fast in-memory cache to speed up lookups of cached data on
repeated requests
2012-05-11 16:02:54 -04:00
Stephen Gallagher
05471b8b76
New upstream release 1.8.3
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.3
- Numerous manpage and translation updates
- LDAP: Handle situations where the RootDSE isn't available anonymously
- LDAP: Fix regression for users using non-standard LDAP attributes for user
information
2012-05-03 15:46:32 -04:00
Stephen Gallagher
77acf296a2
New upstream release 1.8.2
...
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.2
- Several fixes to case-insensitive domain functions
- Fix for GSSAPI binds when the keytab contains unrelated principals
- Fixed several segfaults
- Workarounds added for LDAP servers with unreadable RootDSE
- SSH knownhostproxy will no longer enter an infinite loop preventing login
- The provided SYSV init script now starts SSSD earlier at startup and stops
it later during shutdown
- Assorted minor fixes for issues discovered by static analysis tools
2012-04-09 15:06:43 -04:00
Stephen Gallagher
d023298922
Don't duplicate libsss_autofs.so in two packages
...
- Set explicit package contents instead of globbing
2012-03-26 09:35:25 -04:00
Stephen Gallagher
af80d0ea8a
Fix uninitialized value bug causing crashes throughout the code
...
- Resolves: rhbz#804783 - [abrt] Segfault during LDAP 'services' lookup
2012-03-21 07:36:22 -04:00
