import realmd-0.16.3-18.el8

2020-04-28 05:35:38 -04:00 · 2020-04-28 05:35:38 -04:00 · cccc2cf2c2
commit cccc2cf2c2
parent ff742b1c29
9 changed files with 2005 additions and 15 deletions
--- a/SOURCES/0001-configure-do-not-inherit-DISTRO-from-the-environment.patch
+++ b/SOURCES/0001-configure-do-not-inherit-DISTRO-from-the-environment.patch
@ -0,0 +1,32 @@
+From 506887297ea33339d8ad8b274be643d220bf22f8 Mon Sep 17 00:00:00 2001
+From: Sumit Bose <sbose@redhat.com>
+Date: Thu, 28 Nov 2019 18:51:30 +0100
+Subject: [PATCH] configure: do not inherit DISTRO from the environment
+
+The argument of the --with-distro configure option is stored in the
+variable DISTRO. If DISTRO is already set in the build environment it
+should not be used hence DISTRO must be cleared by the configure script
+if not set by --with-distro.
+
+Related to https://bugzilla.redhat.com/show_bug.cgi?id=1638396
+---
+ configure.ac | 3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/configure.ac b/configure.ac
+index e335247..a424a49 100644
+--- a/configure.ac
+++ b/configure.ac
+@@ -31,7 +31,8 @@ AC_ARG_WITH([distro],
+             [AS_HELP_STRING([--with-distro],
+                             [Configure for a specific distribution (eg: redhat)]
+                            )],
+-            [DISTRO=$withval])
+            [DISTRO=$withval],
+            [DISTRO=])
+ 
+ if test -z $DISTRO; then
+ 	AC_CHECK_FILE(/etc/redhat-release, [DISTRO="redhat"])
+-- 
+2.21.0
+
--- a/SOURCES/0001-doc-Add-short-arguments-like-U-arguments-to-realm-ma.patch
+++ b/SOURCES/0001-doc-Add-short-arguments-like-U-arguments-to-realm-ma.patch
@ -0,0 +1,158 @@
+From fee9bde11b42ab39af6397a0c0ce4775443b28ea Mon Sep 17 00:00:00 2001
+From: Stef Walter <stefw@redhat.com>
+Date: Mon, 6 Feb 2017 12:25:52 +0100
+Subject: [PATCH] doc: Add short arguments like -U arguments to realm manual
+ page
+
+And clean up the documentation for the various arguments.
+---
+ doc/manual/realm.xml | 70 +++++++++++++++++++++++---------------------
+ 1 file changed, 37 insertions(+), 33 deletions(-)
+
+diff --git a/doc/manual/realm.xml b/doc/manual/realm.xml
+index 6724d80..9d9136a 100644
+--- a/doc/manual/realm.xml
+++ b/doc/manual/realm.xml
+@@ -60,7 +60,7 @@
+ 
+ 	<variablelist>
+ 		<varlistentry>
+-			<term><option>--install=/path</option></term>
+			<term><option>-i</option>, <option>--install=/path</option></term>
+ 			<listitem><para>Run in install mode. This makes realmd
+ 			chroot into the specified directory and place files in
+ 			appropriate locations for use during an installer. No
+@@ -73,7 +73,7 @@
+ 			for input.</para></listitem>
+ 		</varlistentry>
+ 		<varlistentry>
+-			<term><option>--verbose, -v</option></term>
+			<term><option>-v</option>, <option>--verbose</option></term>
+ 			<listitem><para>Display verbose diagnostics while doing
+ 			running commands.</para></listitem>
+ 		</varlistentry>
+@@ -105,7 +105,7 @@ $ realm discover domain.example.com
+ 
+ 	<variablelist>
+ 		<varlistentry>
+-			<term><option>--all</option></term>
+			<term><option>-a</option>, <option>--all</option></term>
+ 			<listitem><para>Show all discovered realms (in various
+ 			configurations).</para></listitem>
+ 		</varlistentry>
+@@ -116,6 +116,10 @@ $ realm discover domain.example.com
+ 			<replaceable>sssd</replaceable> or
+ 			<replaceable>winbind</replaceable>.</para></listitem>
+ 		</varlistentry>
+		<varlistentry>
+			<term><option>-n</option>, <option>--name</option></term>
+			<listitem><para>Only show the names of the discovered realms.</para></listitem>
+		</varlistentry>
+ 		<varlistentry>
+ 			<term><option>--server-software=xxx</option></term>
+ 			<listitem><para>Only discover realms which run the
+@@ -187,10 +191,13 @@ $ realm join --user=admin --computer-ou=OU=Special domain.example.com
+ 			in the domain already.</para></listitem>
+ 		</varlistentry>
+ 		<varlistentry>
+-			<term><option>--user=xxx</option></term>
+-			<listitem><para>The user name to be used to authenticate
+-			with when joining the machine to the realm. You will
+-			be prompted for a password.</para></listitem>
+			<term><option>--client-software=xxx</option></term>
+			<listitem><para>Only join realms for which we can
+			use the given client software. Possible values include
+			<replaceable>sssd</replaceable> or
+			<replaceable>winbind</replaceable>. Not all values are
+			supported for all realms. By default the client software
+			is automatically selected.</para></listitem>
+ 		</varlistentry>
+ 		<varlistentry>
+ 			<term><option>--computer-ou=OU=xxx</option></term>
+@@ -201,6 +208,14 @@ $ realm join --user=admin --computer-ou=OU=Special domain.example.com
+ 			DSE portion of distinguished name. This is an Active
+ 			Directory specific option.</para></listitem>
+ 		</varlistentry>
+		<varlistentry>
+			<term><option>--membership-software=xxx</option></term>
+			<listitem><para>The software to use when joining to the
+			realm. Possible values include <replaceable>samba</replaceable> or
+			<replaceable>adcli</replaceable>. Not all values are
+			supported for all realms. By default the membership software
+			is automatically selected.</para></listitem>
+		</varlistentry>
+ 		<varlistentry>
+ 			<term><option>--no-password</option></term>
+ 			<listitem><para>Perform the join automatically without
+@@ -213,13 +228,16 @@ $ realm join --user=admin --computer-ou=OU=Special domain.example.com
+ 			all types of realms.</para></listitem>
+ 		</varlistentry>
+ 		<varlistentry>
+-			<term><option>--client-software=xxx</option></term>
+-			<listitem><para>Only join realms for which we can
+-			use the given client software. Possible values include
+-			<replaceable>sssd</replaceable> or
+-			<replaceable>winbind</replaceable>. Not all values are
+-			supported for all realms. By default the client software
+-			is automatically selected.</para></listitem>
+			<term><option>--os-name=xxx</option></term>
+			<listitem><para>The name of the operation system of the
+			client. When joining an AD domain the value is store in
+			the matching AD attribute.</para></listitem>
+		</varlistentry>
+		<varlistentry>
+			<term><option>--os-version=xxx</option></term>
+			<listitem><para>The version of the operation system of the
+			client. When joining an AD domain the value is store in
+			the matching AD attribute.</para></listitem>
+ 		</varlistentry>
+ 		<varlistentry>
+ 			<term><option>--server-software=xxx</option></term>
+@@ -229,12 +247,10 @@ $ realm join --user=admin --computer-ou=OU=Special domain.example.com
+ 			<replaceable>ipa</replaceable>.</para></listitem>
+ 		</varlistentry>
+ 		<varlistentry>
+-			<term><option>--membership-software=xxx</option></term>
+-			<listitem><para>The software to use when joining to the
+-			realm. Possible values include <replaceable>samba</replaceable> or
+-			<replaceable>adcli</replaceable>. Not all values are
+-			supported for all realms. By default the membership software
+-			is automatically selected.</para></listitem>
+			<term><option>-U</option>, <option>--user=xxx</option></term>
+			<listitem><para>The user name to be used to authenticate
+			with when joining the machine to the realm. You will
+			be prompted for a password.</para></listitem>
+ 		</varlistentry>
+ 		<varlistentry>
+ 			<term><option>--user-principal=<parameter>host/name@REALM</parameter></option></term>
+@@ -243,18 +259,6 @@ $ realm join --user=admin --computer-ou=OU=Special domain.example.com
+ 			the value for this option, then a principal will be set
+ 			in the form of <literal>host/shortname@REALM</literal></para></listitem>
+ 		</varlistentry>
+-		<varlistentry>
+-			<term><option>--os-name=xxx</option></term>
+-			<listitem><para>The name of the operation system of the
+-			client. When joining an AD domain the value is store in
+-			the matching AD attribute.</para></listitem>
+-		</varlistentry>
+-		<varlistentry>
+-			<term><option>--os-version=xxx</option></term>
+-			<listitem><para>The version of the operation system of the
+-			client. When joining an AD domain the value is store in
+-			the matching AD attribute.</para></listitem>
+-		</varlistentry>
+ 	</variablelist>
+ 
+ </refsect1>
+@@ -300,7 +304,7 @@ $ realm leave domain.example.com
+ 			for a pasword.</para></listitem>
+ 		</varlistentry>
+ 		<varlistentry>
+-			<term><option>--user</option></term>
+			<term><option>-U</option>, <option>--user</option></term>
+ 			<listitem><para>The user name to be used to authenticate
+ 			with when leaving the realm. You will be prompted for a
+ 			password. Implies <option>--remove</option>.</para></listitem>
+-- 
+2.21.0
+
--- a/SOURCES/0001-doc-extend-description-of-config-handling.patch
+++ b/SOURCES/0001-doc-extend-description-of-config-handling.patch
@ -0,0 +1,104 @@
+From 98a69ca00e3441128b181b59c06bb06e8c362360 Mon Sep 17 00:00:00 2001
+From: Sumit Bose <sbose@redhat.com>
+Date: Fri, 29 Nov 2019 21:57:02 +0100
+Subject: [PATCH] doc: extend description of config handling
+
+Related to https://bugzilla.redhat.com/show_bug.cgi?id=1625005
+---
+ doc/manual/Makefile.am     |  8 ++++++++
+ doc/manual/realmd.conf.xml | 15 +++++++++++----
+ doc/privatedir.xml.in      |  1 +
+ 4 files changed, 21 insertions(+), 4 deletions(-)
+ create mode 100644 doc/privatedir.xml.in
+
+diff --git a/doc/manual/Makefile.am b/doc/manual/Makefile.am
+index 8b33fdd..9812c45 100644
+--- a/doc/manual/Makefile.am
+++ b/doc/manual/Makefile.am
+@@ -1,14 +1,20 @@
+XSLTPROC_FLAGS = --path $(abs_builddir):$(abs_srcdir):$(abs_builddir)/doc
+ 
+ man8_MANS += \
+ 	doc/manual/realm.8
+ man5_MANS += \
+ 	doc/manual/realmd.conf.5
+ 
+$(man5_MANS): doc/privatedir.xml
+
+ MAN_IN_FILES = \
+ 	$(man8_MANS:.8=.xml) \
+ 	$(man5_MANS:.5=.xml) \
+ 	$(NULL)
+ 
+doc/privatedir.xml: doc/privatedir.xml.in
+	$(V_SED) $(MKDIR_P) $(dir $@) && $(SED_SUBST) $< > $@
+
+ MANUAL_DOCBOOK = doc/manual/realmd-docs.xml
+ 
+ MANUAL_INCLUDES = \
+@@ -41,6 +47,7 @@ MANUAL_XSLT = \
+ 	$(NULL)
+ 
+ EXTRA_DIST += \
+	doc/privatedir.xml.in \
+ 	$(MANUAL_DOCBOOK) \
+ 	$(MANUAL_INCLUDES) \
+ 	$(MAN_IN_FILES) \
+@@ -50,6 +57,7 @@ EXTRA_DIST += \
+ 
+ CLEANFILES += \
+ 	realmd-org.freedesktop.realmd.generated \
+	doc/privatedir.xml \
+ 	$(DBUS_DOC_GENERATED) \
+ 	$(DBUS_ESCAPED) \
+ 	$(man8_MANS) \
+diff --git a/doc/manual/realmd.conf.xml b/doc/manual/realmd.conf.xml
+index 1592291..9062252 100644
+--- a/doc/manual/realmd.conf.xml
+++ b/doc/manual/realmd.conf.xml
+@@ -1,6 +1,9 @@
+ <?xml version='1.0'?>
+ <!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
+-        "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
+        "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd"
+[
+<!ENTITY privatedir SYSTEM "privatedir.xml">
+]>
+ 
+ <refentry id="realmd-conf">
+ 
+@@ -35,7 +38,9 @@
+ 	to act in specific ways. This is done by placing settings in a
+ 	<filename>/etc/realmd.conf</filename>. This file does not exist by
+ 	default. The syntax of this file is the same as an INI file or
+-	Desktop Entry file.</para>
+	Desktop Entry file. If the file is changed and
+	<command>realmd</command> is running <command>realmd</command> must be
+	restarted to read the new values.</para>
+ 
+ 	<para>In general, settings in this file only apply at the point of
+ 	joining a domain or realm. Once the realm has been setup the settings
+@@ -46,8 +51,10 @@
+ 
+ 	<para>Only specify the settings you wish to override in the
+ 	<filename>/etc/realmd.conf</filename> file. Settings not specified will
+-	be loaded from their packaged defaults. Only override the settings
+-	below. You may find other settings if you look through the
+	be loaded from their packaged defaults which can be found in
+	<filename>&privatedir;/realmd-defaults.conf</filename> and
+	<filename>&privatedir;/realmd-distro.conf</filename>. Only override the
+	settings below. You may find other settings if you look through the
+ 	<command>realmd</command> source code. However these are not guaranteed
+ 	to remain stable.</para>
+ 
+diff --git a/doc/privatedir.xml.in b/doc/privatedir.xml.in
+new file mode 100644
+index 0000000..7f71afe
+--- /dev/null
+++ b/doc/privatedir.xml.in
+@@ -0,0 +1 @@
+@privatedir@
+\ No newline at end of file
+-- 
+2.21.0
+
--- a/SOURCES/0001-doc-extend-user-principal-section.patch
+++ b/SOURCES/0001-doc-extend-user-principal-section.patch
@ -0,0 +1,75 @@
+From d6d1ce2f8b1c81903115b018973c61fc71235b7b Mon Sep 17 00:00:00 2001
+From: Sumit Bose <sbose@redhat.com>
+Date: Fri, 29 Nov 2019 18:10:03 +0100
+Subject: [PATCH] doc: extend user-principal section
+
+Related to https://bugzilla.redhat.com/show_bug.cgi?id=1643814
+---
+ doc/manual/realm.xml       | 21 +++++++++++++++++++--
+ doc/manual/realmd.conf.xml | 15 ++++++++++-----
+ 2 files changed, 29 insertions(+), 7 deletions(-)
+
+diff --git a/doc/manual/realm.xml b/doc/manual/realm.xml
+index 7b73331..55a7640 100644
+--- a/doc/manual/realm.xml
+++ b/doc/manual/realm.xml
+@@ -254,10 +254,27 @@ $ realm join --user=admin --computer-ou=OU=Special domain.example.com
+ 		</varlistentry>
+ 		<varlistentry>
+ 			<term><option>--user-principal=<parameter>host/name@REALM</parameter></option></term>
+-			<listitem><para>Set the userPrincipalName field of the
+			<listitem><para>Set the
+			<option>userPrincipalName</option> field of the
+ 			computer account to this kerberos principal. If you omit
+ 			the value for this option, then a principal will be set
+-			in the form of <literal>host/shortname@REALM</literal></para></listitem>
+			based on the defaults of the membership software.</para>
+			<para>AD makes a distinction between user and service
+			principals. Only with user principals you can request a
+			Kerberos Ticket-Granting-Ticket (TGT), i.e. only user
+			principals can be used with the <command>kinit</command>
+			command. By default the user principal and the canonical
+			principal name of an AD computer account is
+			<code>shortname$@AD.DOMAIN</code>, where shortname is
+			the NetBIOS name which is limited to 15 characters.</para>
+			<para>If there are applications which are not aware of
+			the AD default and are using a hard-coded default
+			principal the <option>--user-principal</option> can be
+			used to make AD aware of this principal. Please note
+			that <option>userPrincipalName</option> is a single
+			value LDAP attribute, i.e. only one alternative user
+			principal besides the AD default user principal can be
+			set.</para></listitem>
+ 		</varlistentry>
+ 	</variablelist>
+ 
+diff --git a/doc/manual/realmd.conf.xml b/doc/manual/realmd.conf.xml
+index f0b0879..a26a60c 100644
+--- a/doc/manual/realmd.conf.xml
+++ b/doc/manual/realmd.conf.xml
+@@ -365,12 +365,17 @@ computer-name = SERVER01
+ 	</listitem>
+ 	</varlistentry>
+ 	<varlistentry>
+-	<term><option>user-prinicpal</option></term>
+	<term><option>user-principal</option></term>
+ 	<listitem>
+-		<para>Set the <option>user-prinicpal</option> to <code>yes</code>
+-		to create <option>userPrincipalName</option> attributes for the
+-		computer account in the realm, in the form
+-		<code>host/computer@REALM</code></para>
+		<para>Set the <option>user-principal</option> to <code>yes</code>
+		to create <option>userPrincipalName</option> attribute for the
+		computer accounts in the realm. The exact value depends on the
+		defaults of the used membership software. To have full control
+		over the value please use the
+		<option>--user-principal</option> option of the
+		<command>realm</command> command, see
+		<citerefentry><refentrytitle>realm</refentrytitle>
+		<manvolnum>8</manvolnum></citerefentry> for details.</para>
+ 
+ 		<informalexample>
+ <programlisting language="js">
+-- 
+2.21.0
+
--- a/SOURCES/0001-doc-fix-discover-name-only.patch
+++ b/SOURCES/0001-doc-fix-discover-name-only.patch
@ -0,0 +1,26 @@
+From 878e40f5a3b50d37a0ed981a4f0872a9d5d99e6b Mon Sep 17 00:00:00 2001
+From: Sumit Bose <sbose@redhat.com>
+Date: Fri, 29 Nov 2019 18:49:15 +0100
+Subject: [PATCH 1/2] doc: fix discover name-only
+
+Related to https://bugzilla.redhat.com/show_bug.cgi?id=1625001
+---
+ doc/manual/realmd.conf.xml | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/doc/manual/realmd.conf.xml b/doc/manual/realmd.conf.xml
+index a26a60c..fc6a785 100644
+--- a/doc/manual/realmd.conf.xml
+++ b/doc/manual/realmd.conf.xml
+@@ -308,7 +308,7 @@ DOMAIN\user:*:13445:13446:Name:/home/DOMAIN/user:/bin/bash
+ 
+ 	<informalexample>
+ <screen>
+-$ <command>realm discover --name DOMAIN.example.com</command>
+$ <command>realm discover --name-only DOMAIN.example.com</command>
+ domain.example.com
+ ...
+ </screen>
+-- 
+2.21.0
+
--- a/SOURCES/0001-doc-make-sure-cross-reference-ids-are-predictable.patch
+++ b/SOURCES/0001-doc-make-sure-cross-reference-ids-are-predictable.patch
--- a/SOURCES/0001-service-use-kerberos-method-secrets-and-keytab.patch
+++ b/SOURCES/0001-service-use-kerberos-method-secrets-and-keytab.patch
@ -0,0 +1,30 @@
+From 517fa766782421302da827278ca17e6b2ad57da3 Mon Sep 17 00:00:00 2001
+From: Sumit Bose <sbose@redhat.com>
+Date: Fri, 21 Feb 2020 14:06:16 +0100
+Subject: [PATCH] service: use "kerberos method" "secrets and keytab"
+
+When using Samba with Winbind the host password stored in secrets.tdb is
+still important so the "secrets and keytab" should be the preferred
+"kerberos method".
+
+Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1801195
+---
+ service/realm-samba.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/service/realm-samba.c b/service/realm-samba.c
+index e2a3608..4940b38 100644
+--- a/service/realm-samba.c
+++ b/service/realm-samba.c
+@@ -200,7 +200,7 @@ on_join_do_winbind (GObject *source,
+ 		                         "template shell", realm_settings_string ("users", "default-shell"),
+ 		                         "netbios name", computer_name,
+ 		                         "password server", enroll->disco->explicit_server,
+-		                         "kerberos method", "system keytab",
+		                         "kerberos method", "secrets and keytab",
+ 		                         NULL);
+ 	}
+ 
+-- 
+2.24.1
+
--- a/SOURCES/0002-doc-add-see-also-to-man-pages.patch
+++ b/SOURCES/0002-doc-add-see-also-to-man-pages.patch
@ -0,0 +1,46 @@
+From 799821650c538754aae842d400df75d3bd8864bf Mon Sep 17 00:00:00 2001
+From: Sumit Bose <sbose@redhat.com>
+Date: Fri, 29 Nov 2019 18:49:51 +0100
+Subject: [PATCH 2/2] doc: add see also to man pages
+
+Related to https://bugzilla.redhat.com/show_bug.cgi?id=1625001
+---
+ doc/manual/realm.xml       | 7 +++++++
+ doc/manual/realmd.conf.xml | 7 +++++++
+ 2 files changed, 14 insertions(+)
+
+diff --git a/doc/manual/realm.xml b/doc/manual/realm.xml
+index 55a7640..e5d4608 100644
+--- a/doc/manual/realm.xml
+++ b/doc/manual/realm.xml
+@@ -440,4 +440,11 @@ $ realm deny --all
+ 
+ </refsect1>
+ 
+<refsect1 id='realm_see_also'>
+	<title>SEE ALSO</title>
+
+	<para><citerefentry><refentrytitle>realmd.conf</refentrytitle>
+	<manvolnum>5</manvolnum></citerefentry></para>
+</refsect1>
+
+ </refentry>
+diff --git a/doc/manual/realmd.conf.xml b/doc/manual/realmd.conf.xml
+index fc6a785..1592291 100644
+--- a/doc/manual/realmd.conf.xml
+++ b/doc/manual/realmd.conf.xml
+@@ -471,4 +471,11 @@ fully-qualified-names = no
+ 	</variablelist>
+ </refsect1>
+ 
+<refsect1 id='realmd_conf_see_also'>
+	<title>SEE ALSO</title>
+
+	<para><citerefentry><refentrytitle>realm</refentrytitle>
+	<manvolnum>8</manvolnum></citerefentry></para>
+</refsect1>
+
+ </refentry>
+-- 
+2.21.0
+
--- a/SPECS/realmd.spec
+++ b/SPECS/realmd.spec
@ -1,6 +1,6 @@
 Name:		realmd
 Version:	0.16.3
-Release:	16%{?dist}
+Release:	18%{?dist}
 Summary:	Kerberos realm enrollment service
 License:	LGPLv2+
 URL:		http://cgit.freedesktop.org/realmd/realmd/
@ -22,6 +22,24 @@ Patch12:	0001-Change-qualified-names-default-for-IPA.patch

 Patch13:	0001-IPA-do-not-call-sssd-enable-logins.patch

+# rhbz#1747454 - rebuild fails if DISTRO variable is exported
+Patch14:	0001-configure-do-not-inherit-DISTRO-from-the-environment.patch
+
+# rhbz#1747452 - realmd.conf user-principal RFE and clarification (plus dependencies)
+Patch15:	0001-doc-Add-short-arguments-like-U-arguments-to-realm-ma.patch
+Patch16:	0001-doc-make-sure-cross-reference-ids-are-predictable.patch
+Patch17:	0001-doc-extend-user-principal-section.patch
+
+# rhbz#1747457 - realmd.conf documentation incorrect
+Patch18:	0001-doc-fix-discover-name-only.patch
+Patch19:	0002-doc-add-see-also-to-man-pages.patch
+
+# rhbz#1747456 - Document realmd.conf and how realmd reads the configuration
+Patch20:	0001-doc-extend-description-of-config-handling.patch
+
+# rhbz#1801195
+Patch21:	0001-service-use-kerberos-method-secrets-and-keytab.patch
+
 BuildRequires:	gcc
 BuildRequires:	automake
 BuildRequires:	autoconf
@ -54,20 +72,7 @@ applications that use %{name}.
 %define _hardened_build 1

 %prep
-%setup -q
-%patch1 -p1
-%patch2 -p1
-%patch3 -p1
-%patch4 -p1
-%patch5 -p1
-%patch6 -p1
-%patch7 -p1
-%patch8 -p1
-%patch9 -p1
-%patch10 -p1
-%patch11 -p1
-%patch12 -p1
-%patch13 -p1
+%autosetup -p1

 %build
 autoreconf -fi
@ -102,6 +107,20 @@ make install DESTDIR=%{buildroot}
 %doc ChangeLog

 %changelog
+* Fri Feb 21 2020 Sumit Bose <sbose@redhat.com> - 0.16.3-18
+- Fix kerberos method
+  Resolves: rhbz#1801195
+
+* Sun Dec 01 2019 Sumit Bose <sbose@redhat.com> - 0.16.3-17
+- rebuild fails if DISTRO variable is exported
+  Resolves: rhbz#1747454
+- realmd.conf user-principal RFE and clarification
+  Resolves: rhbz#1747452
+- realmd.conf documentation incorrect
+  Resolves: rhbz#1747457
+- Document realmd.conf and how realmd reads the configuration
+  Resolves: rhbz#1747456
+
 * Thu Sep 27 2018 Sumit Bose <sbose@redhat.com> - 0.16.3-16
 - Do not call authselect for IPA domains
  Resolves: rhbz#1633572