Resolves: RHEL-36586 - Rebase SSSD for RHEL 9.5

Resolves: RHEL-27716 - SSSD fails to process AD groups with 'Global Scope' correctly causing incomplete group-membership on RHEL if cache is empty
Resolves: RHEL-17659 - [RfE] SSSD Failover Enhancements
Resolves: RHEL-35781 - Passkey errors when handling multiple altSecurityIdentities values
Resolves: RHEL-30142 - sssd_pac is crashing
Resolves: RHEL-22206 - Errors in krb5_child.log every time a user authenticates - Pre-authentication failed: No pkinit_anchors supplied
Resolves: RHEL-32595 - Excessive "Domain not found' messages logged to sssd_nss & sssd_be in multidomain AD forest
Resolves: RHEL-28666 - sssctl config-check is reporting false positive error msg
Resolves: RHEL-29454 - NULL dereference in inotify handling
Resolves: RHEL-1654 - Improve documentation for allowing e-mail address as username

.gitignore

@@ -105,3 +105,4 @@ sssd-1.2.91.tar.gz
 /sssd-2.9.2.tar.gz
 /sssd-2.9.3.tar.gz
 /sssd-2.9.4.tar.gz
+/sssd-2.9.5.tar.gz

sources

@@ -1 +1 @@
-SHA512 (sssd-2.9.4.tar.gz) = 9546cf074628f32137b16ca0c763988785271124244b645d1e786762e8578f10d983793a29bffcc004b064452fe8d465476a3041688d2f3c11c2751fb5bec3e2
+SHA512 (sssd-2.9.5.tar.gz) = d219f12ffc75af233f0e4ffc62c0442acc6da3cd94ed4eab7102a78821af5257c8e4ba0d06b2c99c08e06502f8d0d0bcc80540d63823dbe0f52eb0432ae7e14d

sssd.spec

@@ -26,30 +26,15 @@
 %global samba_package_version %(rpm -q samba-devel --queryformat %{version}-%{release})
 
 Name: sssd
-Version: 2.9.4
-Release: 7%{?dist}
+Version: 2.9.5
+Release: 1%{?dist}
 Summary: System Security Services Daemon
 License: GPLv3+
 URL: https://github.com/SSSD/sssd/
 Source0: https://github.com/SSSD/sssd/releases/download/%{version}/sssd-%{version}.tar.gz
 
 ### Patches ###
-Patch0001: 0001-sssd-adding-mail-as-case-insensitive.patch
-Patch0002: 0002-sdap-add-search_bases-option-to-groups_by_user_send.patch
-Patch0003: 0003-sdap-add-naming_context-as-new-member-of-struct-sdap.patch
-Patch0004: 0004-pam-fix-SC-auth-with-multiple-certs-and-missing-logi.patch
-Patch0005: 0005-sss-client-handle-key-value-in-destructor.patch
-Patch0006: 0006-krb5-Allow-fallback-between-responder-questions.patch
-Patch0007: 0007-krb5-Add-fallback-password-change-support.patch
-Patch0008: 0008-pam-fix-invalid-if-condition.patch
-Patch0009: 0009-krb5-add-OTP-to-krb5-response-selection.patch
-Patch0010: 0010-krb5-make-sure-answer_pkinit-use-matching-debug-mess.patch
-Patch0011: 0011-krb5-make-prompter-and-pre-auth-debug-message-less-i.patch
-Patch0012: 0012-pam_sss-prefer-Smartcard-authentication.patch
-Patch0013: 0013-pam-fix-storing-auth-types-for-offline-auth.patch
-Patch0014: 0014-ad-gpo-use-hash-to-store-intermediate-results.patch
-Patch0015: 0015-tests-Drop-extensions-from-openssl-command-if-there-.patch
-Patch0016: 0016-Fix-the-build-with-Samba-4.20.patch
+#Patch0001:
 
 ### Dependencies ###
 
@@ -1099,6 +1084,18 @@ fi
 %systemd_postun_with_restart sssd.service
 
 %changelog
+* Thu May 16 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.5-1
+- Resolves: RHEL-36586 - Rebase SSSD for RHEL 9.5
+- Resolves: RHEL-27716 - SSSD fails to process AD groups with 'Global Scope' correctly causing incomplete group-membership on RHEL if cache is empty
+- Resolves: RHEL-17659 - [RfE] SSSD Failover Enhancements
+- Resolves: RHEL-35781 - Passkey errors when handling multiple altSecurityIdentities values
+- Resolves: RHEL-30142 - sssd_pac is crashing
+- Resolves: RHEL-22206 - Errors in krb5_child.log every time a user authenticates - Pre-authentication failed: No pkinit_anchors supplied
+- Resolves: RHEL-32595 - Excessive "Domain not found' messages logged to sssd_nss & sssd_be in multidomain AD forest
+- Resolves: RHEL-28666 - sssctl config-check is reporting false positive error msg
+- Resolves: RHEL-29454 - NULL dereference in inotify handling
+- Resolves: RHEL-1654 - Improve documentation for allowing e-mail address as username
+
 * Mon Apr 29 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.4-7
 - Relates: RHEL-33645 - Rebase Samba to the latest 4.20.x release