Commit Graph

38 Commits

Author SHA1 Message Date
Petr Vobornik
ece84f751e Update to upstream 4.2.1 2015-09-07 19:01:45 +02:00
Alexander Bokovoy
32b772b3ee Upstream 4.1.4 release to fix CVE-2015-1827 2015-03-26 16:46:20 +02:00
Petr Vobornik
fd86e26a5f Update to upstream 4.1.3
- see http://www.freeipa.org/page/Releases/4.1.3
2015-02-18 18:32:22 +01:00
Petr Vobornik
81defaec91 Update to upstream 4.1.2
- see http://www.freeipa.org/page/Releases/4.1.2
- fix CVE-2014-7850
2014-11-25 14:36:38 +01:00
Petr Vobornik
00870e3919 Update to upstream 4.1.1
- see http://www.freeipa.org/page/Releases/4.1.1
- fix CVE-2014-7828
2014-11-06 14:42:41 +01:00
Petr Vobornik
7ccb103e8e Update to upstream 4.1.0
see http://www.freeipa.org/page/Releases/4.1.0
2014-10-21 19:02:12 +02:00
Petr Viktorin
743ef0138f Update to upstream 4.0.3 - see http://www.freeipa.org/page/Releases/4.0.3 2014-09-12 21:59:09 +02:00
Petr Viktorin
694ce2174a Update to upstream 4.0.1 - see http://www.freeipa.org/page/Releases/4.0.2 2014-09-05 19:56:45 +02:00
Martin Kosek
f08947f751 Update to upstream 4.0.1 2014-07-25 14:14:39 +02:00
Petr Viktorin
92ad420100 Update to upstream 4.0.0
Remove Fedora patches, all are in the upstream release
Remove the freeipa-server-strict package
Update to upstream 4.0.0
2014-07-07 19:25:32 +02:00
Martin Kosek
78bfe5614a Update to upstream 3.3.5 2014-03-28 13:34:35 +01:00
Martin Kosek
9d21232151 3.3.4-1
- Update to upstream 3.3.4
- Install CA anchor into standard location (#928478)
- ipa-client-install part of ipa-server-install fails on reinstall (#1044994)
- Remove mod_ssl workaround (RHEL bug #1029046)
- Enable syncrepl plugin to support bind-dyndb-ldap 4.0
2014-01-28 13:37:46 +01:00
Martin Kosek
e17b01f313 3.3.3-3
Update to upstream 3.3.3, patch merged from F20.

Fix -Werror=format-security errors (#1037070)
2013-12-03 12:10:14 +01:00
Petr Viktorin
3ee1e7d905 Update to upstream 3.3.1 2013-08-29 17:09:48 +02:00
Martin Kosek
8a7e6ad5ed Update to upstream 3.3.0 2013-08-08 15:30:10 +02:00
Martin Kosek
9f9581104f Update to upstream 3.2.2
- Drop freeipa-server-selinux subpackage
- Drop redundant directory /var/cache/ipa/sessions
- Do not create /var/lib/ipa/pki-ca/publish, retain reference as ghost
- Run ipa-upgradeconfig and server restart in posttrans to avoid inconsistency
  issues when there are still old parts of software (like entitlements plugin)
2013-07-18 15:09:09 +02:00
Rob Crittenden
5e12d2ddce Update to upstream 3.2.0 GA
- ipa-client-install fails if /etc/ipa does not exist (#961483)
- Certificate status is not visible in Service and Host page (#956718)
- ipa-client-install removes needed options from ldap.conf (#953991)
- Handle socket.gethostbyaddr() exceptions when verifying hostnames
  (#953957)
- Add triggerin scriptlet to support OpenSSH 6.2 (#953617)
- Require nss 3.14.3-12.0 to address certutil certificate import
  errors (#953485)
- Require pki-ca 10.0.2-3 to pull in fix for sslget and mixed IPv4/6
  environments. (#953464)
- ipa-client-install removes 'sss' from /etc/nsswitch.conf (#953453)
- ipa-server-install --uninstall doesn't stop dirsrv instances
  (#953432)
-   Add requires for openldap-2.4.35-4 to pickup fixed SASL_NOCANON
  behavior for socket based connections (#960222)
- Require libsss_nss_idmap-python
- Add Conflicts on nss-pam-ldapd < 0.8.4. The mapping from uniqueMember
  to member is now done automatically and having it in the config file
  raises an error.
- Add backup and restore tools, directory.
- require at least systemd 38 which provides the journal (we no longer
  need to require syslog.target)
- Update Requires on policycoreutils to 2.1.14-37
- Update Requires on selinux-policy to 3.12.1-42
- Update Requires on 389-ds-base to 1.3.1.0
2013-05-10 12:33:54 -04:00
Martin Kosek
45d13fba45 Update to upstream 3.2.0 Prerelease 1
Spec file was also merged with up-to-date upstream reference spec
file to keep them consistent.
2013-04-02 18:47:49 +02:00
Rob Crittenden
3d64806b7a Update to upstream 3.1.2
- CVE-2012-4546: Incorrect CRLs publishing
- CVE-2012-5484: MITM Attack during Join process
- CVE-2013-0199: Cross-Realm Trust key leak
2013-01-23 17:13:20 -05:00
Rob Crittenden
5e038ec750 Updated to upstream 3.1.0 GA
- Set minimum for sssd to 1.9.2
- Set minimum for pki-ca to 10.0.0-1
- Set minimum for 389-ds-base to 1.3.0
- Set minimum for selinux-policy to 3.11.1-60
- Remove unneeded dogtag package requires
2012-12-10 15:52:46 -05:00
Rob Crittenden
4de47b3304 Updated to upstream 3.0.0 GA
- Set minimum for samba to 4.0.0-153.
- Make sure server-trust-ad subpackage alternates winbind_krb5_locator.so
  plugin to /dev/null since they cannot be used when trusts are configured
- Restrict krb5-server to 1.10.
- Update minimum for 389-ds-base to 1.3.0
- Add directory /var/lib/ipa/pki-ca/publish for CRL published by pki-ca
- Add Requires on zip for generating FF browser extension
2012-10-12 12:02:17 -04:00
Rob Crittenden
8a8da0b567 - Updated to upstream 3.0.0 rc 2
- Include new FF configuration extension
2012-10-09 16:22:06 -04:00
Rob Crittenden
23bbd3f9b4 Updated to upstream 3.0.0 rc 1
- Update BR for 389-ds-base to 1.2.11.14
- Update BR for krb5 to 1.10
- Update BR for samba4-devel to 4.0.0-139 (rc1)
- Add BR for python-polib
- Update Requires on policycoreutils to 2.1.12-5
- Update Requires on 389-ds-base to 1.2.11.14
- Update Requires on selinux-policy to 3.11.1-21
- Update Requires on dogtag to 10.0.0-0.33.a1
- Update Requires on certmonger to 0.60
- Update Requires on tomcat to 7.0.29
- Update minimum version of bind to 9.9.1-10.P3
- Update minimum version of bind-dyndb-ldap to 1.1.0-0.16.rc1
- Remove Requires on authconfig from python sub-package
2012-09-21 16:34:00 -04:00
Rob Crittenden
3c1392be1b Update to upstream 3.0.0 beta 2 2012-08-17 11:31:03 -04:00
Rob Crittenden
a0ca5be798 Update to upstream 3.0.0 beta 1 2012-07-02 15:55:25 -04:00
Rob Crittenden
b191f14e04 - Updated to upstream 2.2.0 GA
- Update minimum n-v-r of certmonger to 0.53
- Update minimum n-v-r of slapi-nis to 0.40
- Add Requires in client to oddjob-mkhomedir and python-krbV
- Update minimum selinux-policy to 3.10.0-110
2012-05-03 14:40:11 -04:00
Rob Crittenden
18a9ea07cd Update to 2.2.0 beta1, fix shell escaping to work with dogtag 9.0.18.
- Update to upstream 2.2.0 beta 1 (2.1.90.rc1)
- Set minimum n-v-r for pki-ca and pki-silent to 9.0.18.
- Add Conflicts on mod_ssl
- Update minimum n-v-r of 389-ds-base to 1.2.10.4
- Update minimum n-v-r of sssd to 1.8.0
- Update minimum n-v-r of slapi-nis to 0.38
- Update minimum n-v-r of pki-* to 9.0.18
- Update conflicts on bind-dyndb-ldap to < 1.1.0-0.9.b1
- Update conflicts on bind to < 9.9.0-1
- Drop requires on krb5-server-ldap
- Add patch to remove escaping arguments to pkisilent
2012-05-03 14:40:05 -04:00
Rob Crittenden
c3929a4ff3 Update to upstream 2.2.0 alpha 1 (2.1.90.pre1)
Remove unused patches, update tarball, sync spec to upstream spec

ipa_kpasswd has been dropped upstream
2012-02-06 14:51:43 -05:00
Rob Crittenden
9cc2d9f70c Update to upstream 2.1.4 (CVE-2011-3636) 2011-12-06 12:09:19 -05:00
Alexander Bokovoy
70948ccd2a Upstream 2.1.3 release 2011-10-19 18:07:43 +03:00
Rob Crittenden
92a3878415 Update to 2.1.0 2011-08-16 17:20:37 -04:00
Rob Crittenden
eed524353c - Update minimum selinux-policy to 3.9.16-18
- Update minimum pki-ca and pki-selinux to 9.0.7
- Update minimum 389-ds-base to 1.2.8.0-1
- Update to upstream 2.0.1
2011-05-02 13:33:13 -04:00
Rob Crittenden
f2186254fd - Update to upstream GA release
- Automatically apply updates when the package is upgraded
2011-03-24 17:57:00 -04:00
Rob Crittenden
8a46b7d6ae - Update to upstream freeipa-2.0.0.rc2
- Set minimum version of python-nss to 0.11 to make sure IPv6 support is in
- Set minimum version of sssd to 1.5.1
- Patch to include SuiteSpotGroup when setting up 389-ds instances
- Move a lot of BuildRequires so this will build with ONLY_CLIENT enable
2011-02-25 18:11:01 -05:00
Rob Crittenden
68ba56c22b - Set minimum version of sssd to 1.5.1
- Update to upstream freeipa-2.0.0.rc1
- Move server-only binaries from admintools subpackage to server
2011-02-14 21:45:41 -05:00
Rob Crittenden
2bb258d1d1 Set min version of 389-ds-base to 1.2.8
Set min version of mod_nss 1.0.8-10
Set min version of selinux-policy to 3.9.7-27
Add dogtag themes to Requires
Update to upstream freeipa-2.0.0.pre2
2011-02-03 16:55:42 -05:00
Rob Crittenden
ce15e9e9d6 Initial import (#672986). 2011-01-27 23:33:55 -05:00
Fedora Release Engineering
f42e484d8e Initial setup of the repo 2011-01-28 02:15:10 +00:00