Resolves rhbz#1556448 - 'slapi-nis: FTBFS in F28'
389-ds-base is not available on i686 architecture in Fedora 28 or later
anymore, so it is not possible to build slapi-nis on i686.
None of currently supported distributions need that.
Last one was EL5 which is EOL for a while.
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
None of currently supported distributions need that.
It was needed last for EL5 which is EOL now
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
- CVE-2015-0283 slapi-nis: infinite loop in getgrnam_r() and
getgrgid_r() (#1206049)
- Make sure nss_sss.so.2 module is used directly
- Allow building slapi-nis with ID views against 389-ds-base from
RHEL7.0/CentOS7.0 releases
- correct the default NIS map settings for hosts.byname and hosts.byaddr,
from report by Rik Megens
- fix several problems when hitting out-of-memory conditions, spotted by
static analysis
- remove ExclusiveArch if %%{rhel} is 7 or higher, because 389-ds-base gets
built for everything now (#1055711)
- correctly reflect whether or not we're built with transaction support in
the module's nsslapd-pluginVersion attribute
- fix a couple of should've-used-memmove()-instead-of-memcpy() cases which
would hit when removing maps or groups of maps (#1043546)
- add {nis,schema-compat}-ignore-subtree and -restrict-subtree settings,
which should let us avoid deadlocks when tasks are modifying data in
the backend database (#1007451)
Update to 0.47.5:
- merge Alexander Bokovoy's patches to
- teach the schema compatibility plugin to optionally serve user and group
information retrieved from libc as part of a set of compat entries
- handle simple bind requests for those entries by calling out to PAM
- to rewrite the DN of incoming bind requests to compat entries to point
at the source entries, instead of returning a referral which most clients
won't handle
- when checking if we can skip processing for a given change, pay attention to
whether or not the changes cause the entry to need to be added or removed
from a map (#912673)
- check SLAPI_PLUGIN_OPRETURN in post-change hooks, in case the backend failed
to update things but the server called us anyway
* Work around multilib warnings in our example .ldif files by
taking advantage of the server's ability to turn a bare name into
a full module path.
* Fix the day-of-week in some of the packaging changelog, going by the
SCM changelog for the right values.
- add missing newline to a couple of debug log messages
- note whether or not betxn support is compiled in as part of the
nsslapd-pluginVersion value we report to the server
- register callbacks in the same order in both plugins, so that
their log messages are logged in the same order
update to 0.43:
- reintroduce support for directory server transactions (nhosoi, IPA#3046)
- control transaction support at run-time, deciding when to do things based
on the value of the nsslapd-pluginbetxn attribute in the plugin's entry
- NIS: add default settings for shadow.byname and passwd.adjunct.byname maps
- fixes a slow memory leak
- removes transaction support, because 389's new strategy for adding
transactions no longer expects plugins to change to accomodate the
feature, and attempts to do so are now bad
evaluated rather than simply as literal values (part of #767372)
- add a "default" function for trying to evaluate one expression, then
another, then another... (part of #767372)
- when creating a compat entry based on a real entry, set an entryUSN based on
the source entry or the rootDSE (freeipa #864); the "scaffolding" entries
won't have them