7 changed files with 523 additions and 238 deletions
--- a/.adcli.metadata
+++ b/.adcli.metadata
@ -1 +0,0 @@
 5aba9ae88ad5a75f8ce143372cb8678b96ca5773 SOURCES/adcli-0.9.2.tar.gz
--- a/.gitignore
+++ b/.gitignore
@ -1 +1,20 @@
-SOURCES/adcli-0.9.2.tar.gz
+/adcli-0.1.tar.gz
 /adcli-0.2.tar.gz
 /adcli-0.3.tar.gz
 /adcli-0.4.tar.gz
 /adcli-0.5.tar.gz
 /adcli-0.6.tar.gz
 /adcli-0.7.tar.gz
 /adcli-0.7.1.tar.gz
 /old
 /adcli-0.7.2.tar.gz
 /adcli-0.7.3.tar.gz
 /adcli-0.7.4.tar.gz
 /adcli-0.7.5.tar.gz
 /adcli-0.7.6.tar.gz
 /adcli-0.8.0.tar.gz
 /adcli-0.8.2.tar.gz
 /adcli-0.9.0.tar.gz
 /adcli-0.9.1.tar.gz
 /adcli-0.9.2.tar.gz
 /adcli-0.9.3.1.tar.gz
--- a/0001-enroll-fix-issues-if-default-keytab-is-used.patch
+++ b/0001-enroll-fix-issues-if-default-keytab-is-used.patch
@ -0,0 +1,117 @@
 From 9c31bb06590f2d96a2d6d8ce87dc3273c283a671 Mon Sep 17 00:00:00 2001
 From: Sumit Bose <sbose@redhat.com>
 Date: Fri, 19 Dec 2025 14:48:13 +0100
 Subject: [PATCH] enroll: fix issues if default keytab is used
 librkb5 returns the default keytab with a 'FILE:' prefix which must be
 removed before calling libselinux functions to operate on the keytab
 file.
 Resolves: https://issues.redhat.com/browse/RHEL-78631
 ---
 library/adenroll.c | 32 ++++++++++++++++++++------------
 library/adenroll.h |  3 +--
 tools/computer.c   |  6 +++---
 3 files changed, 24 insertions(+), 17 deletions(-)
 diff --git a/library/adenroll.c b/library/adenroll.c
 index 20ad198..9484cbf 100644
 --- a/library/adenroll.c
 +++ b/library/adenroll.c
@@ -2116,30 +2116,38 @@ ensure_host_keytab (adcli_result res,
 	return ADCLI_SUCCESS;
 }
 -adcli_result
 -ensure_host_keytab_selinux_context (adcli_result res,
 -                                    adcli_enroll *enroll)
 +void
 +restore_host_keytab_selinux_context (adcli_enroll *enroll)
 {
 #ifdef BUILD_SELINUX_POLICY
 	int ret;
 -
 -	if (res != ADCLI_SUCCESS)
 -		return res;
 +	krb5_context k5;
 +	const char *name_start;
 	if (enroll->keytab_name == NULL) {
 		_adcli_info ("No keytab name available, skipping SELinux restorecon.");
 -		return ADCLI_SUCCESS;
 +		return;
 +	}
 +
 +	name_start = enroll->keytab_name;
 +	if (strncmp (name_start, "FILE:", 5) == 0) {
 +		name_start = enroll->keytab_name + 5;
 	}
 -	ret = selinux_restorecon (adcli_enroll_get_keytab_name (enroll), 0);
 +	if (enroll->keytab != NULL) {
 +		k5 = adcli_conn_get_krb5_context (enroll->conn);
 +		krb5_kt_close (k5, enroll->keytab);
 +		enroll->keytab = NULL;
 +	}
 +
 +	ret = selinux_restorecon (name_start, 0);
 	if (ret != 0) {
 -		_adcli_err ("Failed to set SELinux context for %s with error %d: %s",
 -		            enroll->keytab_name, ret, strerror (ret));
 -		return ADCLI_ERR_FAIL;
 +		_adcli_err ("Failed to set SELinux context for %s with error %d: %s, ignored",
 +		            name_start, ret, strerror (errno));
 	}
 #endif
 -	return ADCLI_SUCCESS;
 +	return;
 }
 diff --git a/library/adenroll.h b/library/adenroll.h
 index 79eb7a8..5aba81b 100644
 --- a/library/adenroll.h
 +++ b/library/adenroll.h
@@ -192,6 +192,5 @@ void               adcli_enroll_set_samba_data_tool     (adcli_enroll *enroll,
 const char *       adcli_enroll_get_samba_data_tool     (adcli_enroll *enroll);
 -adcli_result        ensure_host_keytab_selinux_context  (adcli_result res,
 -                                                         adcli_enroll *enroll);
 +void               restore_host_keytab_selinux_context  (adcli_enroll *enroll);
 #endif /* ADENROLL_H_ */
 diff --git a/tools/computer.c b/tools/computer.c
 index ee027dc..f056366 100644
 --- a/tools/computer.c
 +++ b/tools/computer.c
@@ -520,7 +520,7 @@ adcli_tool_computer_join (adcli_conn *conn,
 	else if (show_password)
 		dump_password (conn, enroll);
 -	ensure_host_keytab_selinux_context (ADCLI_SUCCESS, enroll);
 +	restore_host_keytab_selinux_context (enroll);
 	adcli_enroll_unref (enroll);
@@ -655,7 +655,7 @@ adcli_tool_computer_update (adcli_conn *conn,
 	else if (show_password)
 		dump_password (conn, enroll);
 -	ensure_host_keytab_selinux_context (ADCLI_SUCCESS, enroll);
 +	restore_host_keytab_selinux_context (enroll);
 	adcli_enroll_unref (enroll);
@@ -1275,7 +1275,7 @@ adcli_tool_computer_managed_service_account (adcli_conn *conn,
 	else if (show_password)
 		dump_password (conn, enroll);
 -	ensure_host_keytab_selinux_context (ADCLI_SUCCESS, enroll);
 +	restore_host_keytab_selinux_context (enroll);
 	adcli_enroll_unref (enroll);
 -- 
 2.52.0
--- a/SPECS/adcli.spec
+++ b/SPECS/adcli.spec
@ -1,236 +0,0 @@
 Name:    adcli
 Version: 0.9.2
 Release: 1%{?dist}
 Summary: Active Directory enrollment
 License: LGPLv2+
 URL:     https://gitlab.freedesktop.org/realmd/adcli
 Source0: https://gitlab.freedesktop.org/realmd/adcli/uploads/ea560656ac921b3fe0d455976aaae9be/adcli-%{version}.tar.gz
 BuildRequires: gcc
 BuildRequires: intltool pkgconfig
 BuildRequires: libtool
 BuildRequires: gettext-devel
 BuildRequires: krb5-devel
 BuildRequires: openldap-devel
 BuildRequires: libxslt
 BuildRequires: xmlto
 BuildRequires: make
 Requires: cyrus-sasl-gssapi
 Conflicts: adcli-doc < %{version}-%{release}
 # adcli no longer has a library of development files
 # the adcli tool itself is to be used by callers
 Obsoletes: adcli-devel < 0.5
 %description
 adcli is a tool for joining an Active Directory domain using
 standard LDAP and Kerberos calls.
 %define _hardened_build 1
 %prep
 %autosetup -p1
 %build
 autoreconf --force --install --verbose
 %configure --disable-static --disable-silent-rules \
 %if 0%{?rhel}
    --with-vendor-error-message='Please check\n    https://red.ht/support_rhel_ad \nto get help for common issues.' \
 %endif
    %{nil}
 make %{?_smp_mflags}
 %check
 make check
 %install
 make install DESTDIR=%{buildroot}
 find $RPM_BUILD_ROOT -name '*.la' -exec rm -f {} ';'
 %ldconfig_scriptlets
 %files
 %{_sbindir}/adcli
 %doc AUTHORS COPYING ChangeLog NEWS README
 %doc %{_mandir}/*/*
 %package doc
 Summary: adcli documentation
 BuildArch: noarch
 Conflicts: adcli < %{version}-%{release}
 %description doc
 adcli is a tool for joining an Active Directory domain using
 standard LDAP and Kerberos calls. This package contains its
 documentation.
 %files doc
 %doc %{_datadir}/doc/adcli/*
 %changelog
 * Fri Oct 21 2022 Sumit Bose <sbose@redhat.com> - 0.9.2-1
 - Update to upstream release 0.9.2
  Resolves: rhbz#1991619, rhbz#2111348, rhbz#2133838
 * Mon Jun 14 2021 Sumit Bose <sbose@redhat.com> - 0.8.2-12
 - [RFE] Allow adcli to create AD user with password as well as set or reset
  existing user password [#1952828]
 - [RFE] add option to populate "managed by" computer attribute [#1690920]
 * Thu Jun 03 2021 Sumit Bose <sbose@redhat.com> - 0.8.2-11
 - Add missing patch for [#1769644]
 * Thu Jun 03 2021 Sumit Bose <sbose@redhat.com> - 0.8.2-10
 - [RFE] Adcli and Realm Error Code Optimization Request [#1889386]
 - [RFE] adcli should allow to modify DONT_EXPIRE_PASSWORD attribute [#1769644]
 * Fri Dec 11 2020 Sumit Bose <sbose@redhat,com> - 0.8.2-9
 - Typo in CREATE A SERVICE ACCOUNT section of man page of adcli [#1906303]
 * Wed Nov 11 2020 Sumit Bose <sbose@redhat.com> - 0.8.2-8
 - Add --use-ldaps option to adcli update as well [#1883467]
 - Cannot join a pre-staged Computer Account on AD in Custom OU using Delegated
  user [#1734764]
 - missing documentation for required AD rights for adcli join and net
  join [#1852080]
 - [RFE] Add new mode to just create an AD account to be able to connect to
  LDAP [#1854112]
 * Thu Aug 13 2020 Sumit Bose <sbose@redhat.com> - 0.8.2-7
 - Improve "-C" option description in man page even more [#1791545]
 * Mon Jun 15 2020 Sumit Bose <sbose@redhat.com> - 0.8.2-6
 - [abrt] [faf] adcli: raise(): /usr/sbin/adcli killed by 6 [#1806260]
 - No longer able to delete computer from AD using adcli [#1846882]
 - adcli: presetting $computer in $domain domain failed: Cannot set computer
  password: Authentication error [#1846878]
 - Typo in adcli update --help option [#1791611]
 - Manpage and help does not explain the use of "-C" option [#1791545]
 * Wed Jan 29 2020 Sumit Bose <sbose@redhat.com> - 0.8.2-5
 - adcli should be able to Force LDAPS over 636 with AD Access Provider w.r.t
  sssd [#1762420]
 * Thu Nov 28 2019 Sumit Bose <sbose@redhat.com> - 0.8.2-4
 - adcli update --add-samba-data does not work as expected [#1745931]
 - Issue is that with arcfour-hmac as first encryption type [#1745932]
 - [RFE] enhancement adcli to set description attribute and to show all AD
  attributes [#1737342]
 * Fri Jun 14 2019 Sumit Bose <sbose@redhat.com> - 0.8.2-3
 - use autosetup macro to simplify patch handling
 - fixed rpmlint warnings in the spec file
 - join failed if hostname is not FQDN [#1677194]
 - adcli join fails in FIPS enabled environment [#1717355]
 - forward port of RHEL-7.7 fixes and enhancements
 * Tue Oct 09 2018 Sumit Bose <sbose@redhat.com> - 0.8.2-2
 - Do not add service principals twice and related fixes
 - Resolves: rhbz#1631734
 * Thu Jul 05 2018 Sumit Bose <sbose@redhat.com> - 0.8.2-1
 - Update to upstream release 0.8.2
 - various other fixes and improvements from the latest Fedora update
 * Wed Feb 07 2018 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-6
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
 * Wed Aug 02 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-5
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
 * Wed Jul 26 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-4
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
 * Fri Feb 10 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-3
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
 * Wed Feb 03 2016 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
 * Thu Dec 17 2015 Sumit Bose <sbose@redhat.com> - 0.8.0-1
 - Update to upstream release 0.8.0
 * Mon Oct 19 2015 Stef Walter <stefw@redhat.com> - 0.7.6-1
 - Fix issue with keytab use with sshd
 - Resolves: rhbz#1267319
 - Put documentation in a subpackage
 * Tue Jun 16 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.5-5
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
 * Fri Aug 15 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.5-4
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
 * Sat Jun 07 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.5-3
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
 * Thu Jan 30 2014 Stef Walter <stefw@redhat.com> - 0.7.5-2
 - Fix incorrect ownership of manual page directory
 * Fri Sep 13 2013 Stef Walter <stefw@redhat.com> - 0.7.5-1
 - Update to upstream point release 0.7.5
 - Workaround for discovery via IPv6 address
 - Correctly put IPv6 addresses in temporary krb5.conf
 * Mon Sep 09 2013 Stef Walter <stefw@redhat.com> - 0.7.4-1
 - Update to upstream point release 0.7.4
 - Correctly handle truncating long host names
 - Try to contact all available addresses for discovery
 - Build fixes
 * Wed Aug 07 2013 Stef Walter <stefw@redhat.com> - 0.7.3-1
 - Update to upstream point release 0.7.3
 - Don't try to set encryption types on Windows 2003
 * Sat Aug 03 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.2-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
 * Mon Jul 22 2013 Stef Walter <stefw@redhat.com> - 0.7.2-1
 - Update to upstream point release 0.7.2
 - Part of fix for bug [#961244]
 * Mon Jul 15 2013 Stef Walter <stefw@redhat.com> - 0.7.1-4
 - Build with verbose output logging
 * Tue Jun 11 2013 Stef Walter <stefw@redhat.com> - 0.7.1-3
 - Run 'make check' when building the package
 * Mon May 13 2013 Stef Walter <stefw@redhat.com> - 0.7.1-2
 - Bump version to get around botched update
 * Mon May 13 2013 Stef Walter <stefw@redhat.com> - 0.7.1-1
 - Update to upstream 0.7.1 release
 - Fix problems with salt discovery [#961399]
 * Mon May 06 2013 Stef Walter <stefw@redhat.com> - 0.7-1
 - Work around broken krb5 with empty passwords [#960001]
 - Fix memory corruption issue [#959999]
 - Update to 0.7, fixing various bugs
 * Mon Apr 29 2013 Stef Walter <stefw@redhat.com> - 0.6-1
 - Update to 0.6, fixing various bugs
 * Wed Apr 10 2013 Stef walter <stefw@redhat.com> - 0.5-2
 - Add appropriate Obsoletes line for libadcli removal
 * Wed Apr 10 2013 Stef Walter <stefw@redhat.com> - 0.5-1
 - Update to upstream 0.5 version
 - No more libadcli, and thus no adcli-devel
 - Many new adcli commands
 - Documentation
 * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
 * Mon Nov 12 2012 Stef Walter <stefw@redhat.com> - 0.4-1
 - Update for 0.4 version, fixing various bugs
 * Sat Oct 20 2012 Stef Walter <stefw@redhat.com> - 0.3-1
 - Update for 0.3 version
 * Tue Sep 4 2012 Stef Walter <stefw@redhat.com> - 0.2-1
 - Update for 0.2 version
 * Wed Aug 15 2012 Stef Walter <stefw@redhat.com> - 0.1-1
 - Initial 0.1 package
--- a/adcli.spec
+++ b/adcli.spec
@ -0,0 +1,379 @@
 %global with_selinux 1
 %global selinuxtype targeted
 %global modulename adcli
 Name:    adcli
 Version: 0.9.3.1
 Release: 3%{?dist}
 Summary: Active Directory enrollment
 License: LGPL-2.1-or-later
 URL:     https://gitlab.freedesktop.org/realmd/adcli
 Source0: https://gitlab.freedesktop.org/-/project/1196/uploads/5a1c55410c0965835b81fbd28d820d46/adcli-%{version}.tar.gz
 Patch1: 0001-enroll-fix-issues-if-default-keytab-is-used.patch
 BuildRequires: gcc
 BuildRequires: intltool pkgconfig
 BuildRequires: libtool
 BuildRequires: gettext-devel
 BuildRequires: krb5-devel
 BuildRequires: openldap-devel
 BuildRequires: libxslt
 BuildRequires: xmlto
 BuildRequires: make
 BuildRequires: libnetapi-devel
 # Build dependencies for SELinux policy
 %if %{with selinux}
 BuildRequires:  libselinux-devel
 BuildRequires:  selinux-policy-devel
 %endif
 Requires: cyrus-sasl-gssapi
 Conflicts: adcli-doc < %{version}-%{release}
 # adcli no longer has a library of development files
 # the adcli tool itself is to be used by callers
 Obsoletes: adcli-devel < 0.5
 %if %{with selinux}
 # This ensures that the *-selinux package and all it’s dependencies are not
 # pulled into containers and other systems that do not use SELinux. The
 # policy defines types and file contexts for client and server.
 Requires:       (%{name}-selinux if selinux-policy-%{selinuxtype})
 %endif
 %description
 adcli is a tool for joining an Active Directory domain using
 standard LDAP and Kerberos calls.
 %if %{with selinux}
 # SELinux subpackage
 %package selinux
 Summary:             The adcli SELinux policy
 BuildArch:           noarch
 Requires:            selinux-policy-%{selinuxtype}
 Requires(post):      selinux-policy-%{selinuxtype}
 %{?selinux_requires_min}
 %description selinux
 Custom SELinux policy module for adcli to make sure generated Kerberos keytab
 files have the right SELinux context.
 %endif
 %define _hardened_build 1
 %prep
 %autosetup -p1
 %build
 autoreconf --force --install --verbose
 %configure --disable-static --disable-silent-rules \
 %if 0%{?rhel}
    --with-vendor-error-message='Please check\n    https://red.ht/support_rhel_ad \nto get help for common issues.' \
 %endif
    %{nil}
 %make_build
 %check
 make check
 %install
 %make_install
 find $RPM_BUILD_ROOT -name '*.la' -exec rm -f {} ';'
 %ldconfig_scriptlets
 %if %{with selinux}
 # SELinux contexts are saved so that only affected files can be
 # relabeled after the policy module installation
 %pre selinux
 %selinux_relabel_pre -s %{selinuxtype}
 %post selinux
 %selinux_modules_install -s %{selinuxtype} %{_datadir}/selinux/packages/%{selinuxtype}/%{modulename}.pp
 %postun selinux
 if [ $1 -eq 0 ]; then
    %selinux_modules_uninstall -s %{selinuxtype} %{modulename}
 fi
 %posttrans selinux
 %selinux_relabel_post -s %{selinuxtype}
 %endif
 %files
 %{_sbindir}/adcli
 %doc AUTHORS COPYING ChangeLog NEWS README
 %doc %{_mandir}/*/*
 %package doc
 Summary: The adcli documentation package
 BuildArch: noarch
 Conflicts: adcli < %{version}-%{release}
 %description doc
 adcli is a tool for joining an Active Directory domain using
 standard LDAP and Kerberos calls. This package contains its
 documentation.
 %files doc
 %doc %{_datadir}/doc/adcli/*
 %if %{with selinux}
 %files selinux
 %{_datadir}/selinux/packages/%{selinuxtype}/%{modulename}.pp
 %ghost %verify(not md5 size mode mtime) %{_sharedstatedir}/selinux/%{selinuxtype}/active/modules/200/%{modulename}
 %endif
 %changelog
 * Mon Dec 22 2025 Sumit Bose <sbose@redhat.com> - 0.9.3.1-3
 - Fix issue with restoring SELinux file label
 * Wed Dec 17 2025 Sumit Bose <sbose@redhat.com> - 0.9.3.1-2
 - Use selinux_requires_min to avoid policycoreutils-python-utils dependency
  Resolves: RHEL-78631
 * Tue Dec 09 2025 Sumit Bose <sbose@redhat.com> - 0.9.3.1-1
 - Rebase to latest upstream version
  Resolves: RHEL-2518
  Resolves: RHEL-5044
  Resolves: RHEL-5050
  Resolves: RHEL-16141
  Resolves: RHEL-44580
  Resolves: RHEL-56353
  Resolves: RHEL-78631
  Resolves: RHEL-73686
 * Thu Feb 13 2025 Sumit Bose <sbose@redhat.com> - 0.9.2-9
 - Fixes for RHEL SAST Automation
  Resolves: RHEL-45146
 * Tue Oct 29 2024 Troy Dawson <tdawson@redhat.com> - 0.9.2-8
 - Bump release for October 2024 mass rebuild:
  Resolves: RHEL-64018
 * Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 0.9.2-7
 - Bump release for June 2024 mass rebuild
 * Mon Jan 22 2024 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.2-6
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
 * Fri Jan 19 2024 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.2-5
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
 * Wed Oct 18 2023 Sumit Bose <sbose@redhat.com> - 0.9.2-4
 - migrated to SPDX license
 * Wed Jul 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.2-3
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
 * Wed Jan 18 2023 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.2-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
 * Thu Sep 29 2022 Sumit Bose <sbose@redhat.com> - 0.9.2-1
 - Update to upstream release 0.9.2
 * Wed Jul 20 2022 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.1-11
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
 * Wed Jan 19 2022 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.1-10
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
 * Wed Jul 28 2021 Sumit Bose <sbose@redhat.com> - 0.9.1-9
 - Add ns_get16() and ns_get32() to configure check
  Resolves: rhbz#1984891
 * Wed Jul 21 2021 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.1-8
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
 * Mon Jun 28 2021 Sumit Bose <sbose@redhat.com> - 0.9.1-7
 - Add user-passwd sub-command
 - Add setattr/delattr option
 * Thu Jun 03 2021 Sumit Bose <sbose@redhat.com> - 0.9.1-6
 - Add fix for dont-expire-password option
 * Wed Jun 02 2021 Sumit Bose <sbose@redhat.com> - 0.9.1-5
 - Add dont-expire-password option and coverity fixes
 * Wed Apr 07 2021 Sumit Bose <sbose@redhat.com> - 0.9.1-4
 - Add macro updates for autoconf-2.71 and downstream gating
 * Mon Mar 29 2021 Sumit Bose <sbose@redhat.com> - 0.9.1-3
 - Add vendor error message
  Resolves: rhbz#1889386
 * Sat Feb 20 2021 Sumit Bose <sbose@redhat.com> - 0.9.1-2
 - Add Conflicts to avoid update/downgrade issues
 * Sat Feb 20 2021 Sumit Bose <sbose@redhat.com> - 0.9.1-1
 - Update to upstream release 0.9.1
 * Mon Jan 25 2021 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.0-7
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
 * Fri Nov 13 2020 Sumit Bose <sbose@redhat.com> - 0.9.0-6
 - Include the latest upstream patches with use-ldaps fixes, man page
  improvements and a new sub-command to create managed service accounts
 * Thu Aug 13 2020 Sumit Bose <sbose@redhat.com> - 0.9.0-5
 - man page and help output fixes
 * Fri Jul 31 2020 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.0-4
 - Second attempt - Rebuilt for
  https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
 * Mon Jul 27 2020 Fedora Release Engineering <releng@fedoraproject.org> - 0.9.0-3
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
 * Mon Jun 08 2020 Sumit Bose <sbose@redhat.com> - 0.9.0-2
 - Include the latest upstream patches
 * Wed Mar 18 2020 Sumit Bose <sbose@redhat.com> - 0.9.0-1
 - Update to upstream release 0.9.0 and latest patches
 * Tue Jan 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.2-9
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
 * Mon Aug 26 2019 Sumit Bose <sbose@redhat.com> - 0.8.2-8
 - various fixes and improvements
  Resolves: rhbz#1683745, rhbz#1738573
 * Wed Jul 24 2019 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.2-7
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
 * Fri Jul  5 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.8.2-6
 - Resolves: rhbz#1727144 - adcli join fails with new krb5-libs; adcli
                           needs to backport patches to only use permitted
                           enctypes from upstream
 * Tue Apr 30 2019 Sumit Bose <sbose@redhat.com> - 0.8.2-5
 - addition patch for rhbz#1630187 and new ones for rhbz#1588596
  Resolves: rhbz#1630187, rhbz#1588596
 * Fri Mar 22 2019 Sumit Bose <sbose@redhat.com> - 0.8.2-4
 - various fixes and improvements
  Resolves: rhbz#1593240, rhbz#1608212, rhbz#1547014, rhbz#1547014,
            rhbz#1649868, rhbz#1588596, rhbz#1642546, rhbz#1595911,
            rhbz#1644311, rhbz#1337489, rhbz#1630187, rhbz#1622583
 * Thu Jan 31 2019 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.2-3
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
 * Thu Jul 12 2018 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.2-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
 * Thu Jul 05 2018 Sumit Bose <sbose@redhat.com> - 0.8.0-1
 - Update to upstream release 0.8.2
 - various other fixes and improvements
 - add option to enable "Trust this computer for delegation"
  Resolves: rhbz#988349
 - fix typos in the adcli man page
  Resolves: rhbz#1440533
 * Wed Mar 07 2018 Sumit Bose <sbose@redhat.com> - 0.8.0-7
 - Added BuildRequires gcc
 * Wed Feb 07 2018 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-6
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
 * Wed Aug 02 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-5
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
 * Wed Jul 26 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-4
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
 * Fri Feb 10 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-3
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
 * Wed Feb 03 2016 Fedora Release Engineering <releng@fedoraproject.org> - 0.8.0-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
 * Thu Dec 17 2015 Sumit Bose <sbose@redhat.com> - 0.8.0-1
 - Update to upstream release 0.8.0
 * Mon Oct 19 2015 Stef Walter <stefw@redhat.com> - 0.7.6-1
 - Fix issue with keytab use with sshd
 - Resolves: rhbz#1267319
 - Put documentation in a subpackage
 * Tue Jun 16 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.5-5
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
 * Fri Aug 15 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.5-4
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
 * Sat Jun 07 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.5-3
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
 * Thu Jan 30 2014 Stef Walter <stefw@redhat.com> - 0.7.5-2
 - Fix incorrect ownership of manual page directory
 * Fri Sep 13 2013 Stef Walter <stefw@redhat.com> - 0.7.5-1
 - Update to upstream point release 0.7.5
 - Workaround for discovery via IPv6 address
 - Correctly put IPv6 addresses in temporary krb5.conf
 * Mon Sep 09 2013 Stef Walter <stefw@redhat.com> - 0.7.4-1
 - Update to upstream point release 0.7.4
 - Correctly handle truncating long host names
 - Try to contact all available addresses for discovery
 - Build fixes
 * Wed Aug 07 2013 Stef Walter <stefw@redhat.com> - 0.7.3-1
 - Update to upstream point release 0.7.3
 - Don't try to set encryption types on Windows 2003
 * Sat Aug 03 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.2-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
 * Mon Jul 22 2013 Stef Walter <stefw@redhat.com> - 0.7.2-1
 - Update to upstream point release 0.7.2
 - Part of fix for bug [#961244]
 * Mon Jul 15 2013 Stef Walter <stefw@redhat.com> - 0.7.1-4
 - Build with verbose output logging
 * Tue Jun 11 2013 Stef Walter <stefw@redhat.com> - 0.7.1-3
 - Run 'make check' when building the package
 * Mon May 13 2013 Stef Walter <stefw@redhat.com> - 0.7.1-2
 - Bump version to get around botched update
 * Mon May 13 2013 Stef Walter <stefw@redhat.com> - 0.7.1-1
 - Update to upstream 0.7.1 release
 - Fix problems with salt discovery [#961399]
 * Mon May 06 2013 Stef Walter <stefw@redhat.com> - 0.7-1
 - Work around broken krb5 with empty passwords [#960001]
 - Fix memory corruption issue [#959999]
 - Update to 0.7, fixing various bugs
 * Mon Apr 29 2013 Stef Walter <stefw@redhat.com> - 0.6-1
 - Update to 0.6, fixing various bugs
 * Wed Apr 10 2013 Stef walter <stefw@redhat.com> - 0.5-2
 - Add appropriate Obsoletes line for libadcli removal
 * Wed Apr 10 2013 Stef Walter <stefw@redhat.com> - 0.5-1
 - Update to upstream 0.5 version
 - No more libadcli, and thus no adcli-devel
 - Many new adcli commands
 - Documentation
 * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
 * Mon Nov 12 2012 Stef Walter <stefw@redhat.com> - 0.4-1
 - Update for 0.4 version, fixing various bugs
 * Sat Oct 20 2012 Stef Walter <stefw@redhat.com> - 0.3-1
 - Update for 0.3 version
 * Tue Sep 4 2012 Stef Walter <stefw@redhat.com> - 0.2-1
 - Update for 0.2 version
 * Wed Aug 15 2012 Stef Walter <stefw@redhat.com> - 0.1-1
 - Initial 0.1 package
--- a/gating.yaml
+++ b/gating.yaml
@ -0,0 +1,6 @@
 --- !Policy
 product_versions:
  - rhel-10
 decision_context: osci_compose_gate
 rules:
  - !PassingTestCaseRule {test_case_name: idm-ci.brew-build.tier1.functional}
--- a/1
+++ b/1
@ -0,0 +1 @@
 SHA512 (adcli-0.9.3.1.tar.gz) = 3f501173b5344b38f33a3f65faec9e894da81b44b37bb161da103d8a29459d8807dfe566a5dd0a8c7eec466567b6cca4331c81dd70158b5478a61b03be37355d
		`@ -1 +0,0 @@`
			`5aba9ae88ad5a75f8ce143372cb8678b96ca5773 SOURCES/adcli-0.9.2.tar.gz`
		`@ -0,0 +1 @@`
							`SHA512 (adcli-0.9.3.1.tar.gz) = 3f501173b5344b38f33a3f65faec9e894da81b44b37bb161da103d8a29459d8807dfe566a5dd0a8c7eec466567b6cca4331c81dd70158b5478a61b03be37355d`