Commit Graph

14 Commits

Author SHA1 Message Date
Rafael Guterres Jeffman
69d51669a6 ipa release 4.9.13-8
- rpcserver: validate Kerberos principal name before running kinit
  Resolves: RHEL-26153
- Vault: add additional fallback to RSA-OAEP wrapping algo
  Resolves: RHEL-28259

Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
2024-03-07 15:45:41 -03:00
Rafael Guterres Jeffman
42e95578f4 Rebuild to pick changes for RHEL-12153
Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
2024-02-22 12:09:54 -03:00
Rafael Guterres Jeffman
7226ce6ce5 ipa release 4.9.13-5
- kdb: PAC generator: do not fail if canonical principal is missing
  Resolves: RHEL-23630
- ipa-kdb: Fix memory leak during PAC verification
  Resolves: RHEL-22644
- Fix session cookie access
  Resolves: RHEL-23622
- Do not ignore staged users in sidgen plugin\
  Resovlves: RHEL-23626
- ipa-kdb: Disable Bronze-Bit check if PAC not available
  Resolves: RHEL-22313
- krb5kdc: Fix start when pkinit and otp auth type are enabled
  Resolves: RHEL-4874
- hbactest was not collecting or returning messages
  Resolves: RHEL-12780

Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
2024-02-12 21:18:48 -03:00
Rafael Guterres Jeffman
1f27b1e8d7 Rebuild due to MBS outage. 2023-11-22 09:27:37 -03:00
Rafael Guterres Jeffman
d190ee85c6 ipa:
- Rebase to version 4.9.13
  Resolves: RHEL-16936

Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
2023-11-21 22:39:32 -03:00
Adam Samalik
9fd8386b12 branching - update refs 2023-09-04 10:47:34 +02:00
Rafael Guterres Jeffman
0ac5e3d530 ipa:
- ipatests: fix test_topology
  Resolves: RHBZ#2232351
- Installer: activate nss and pam services in sssd.conf
  Resolves: RHBZ#2216532

Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
2023-08-16 15:36:44 -03:00
Rafael Guterres Jeffman
24823b042e Rebuild for RHEL 8.9. 2023-07-11 20:05:15 -03:00
Rafael Guterres Jeffman
48084178b5 ipa release 4.9.12-4
- kdb: Use-krb5_pac_full_sign_compat() when available
  Resolves: RHBZ#2176406
- OTP: fix-data-type-to-avoid-endianness-issue
  Resolves: RHBZ#2218293
- Upgrade: fix replica agreement
  Resolves: RHBZ#2216551
- Upgrade: add PKI drop-in file if missing
  Resolves: RHBZ#2215336
- Use the python-cryptography parser directly in cert-find
  Resolves: RHBZ#2164349
- Backport test updates
  Resolves: RHBZ#221884

Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
2023-06-30 22:26:44 -03:00
Julien Rische
92ae3bb99c ipa:
- Rely on sssd-krb5 to include SSSD-generated krb5 configuration
  Resolves: RHBZ#2214563

Signed-off-by: Julien Rische <jrische@redhat.com>
2023-06-21 17:00:07 +02:00
Rafael Guterres Jeffman
97fd3f0840 Fix cert-find and module refs.
module:
   - Use stream-idm-DL1-rhel-{version} as RPM references. This will
     allow a more similar build process to previous RHEL 8 versions.

ipa:

   - Use the OpenSSL certificate parser in cert-find.
     Resolves: RHBZ#2209947

Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
2023-05-25 13:43:12 -03:00
Rafael Guterres Jeffman
c1a5c43947 ipa:
- Rebase ipa to 4.9.12
  Resolves: RHBZ#2196425
- user or group name: explain the supported format
  Resolves: RHBZ#2150217

Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
2023-05-24 16:40:05 -03:00
Adam Samalik
408e7816be update refs 2023-02-23 11:47:58 +00:00
Adam Samalik
d6b8e90801 update modulemd etc 2023-02-23 11:47:58 +00:00