New upstream release 1.8.1

- Resolve issue where we could enter an infinite loop trying to connect to an
  auth server
- Fix serious issue with complex (3+ levels) nested groups
- Fix netgroup support for case-insensitivity and aliases
- Fix serious issue with lookup bundling resulting in requests never
  completing
- IPA provider will now check the value of nsAccountLock during pam_acct_mgmt
  in addition to pam_authenticate
- Fix several regressions in the proxy provider
- Resolves: rhbz#743133 - Performance regression with Kerberos authentication
                          against AD
- Resolves: rhbz#799031 - --debug option for sss_debuglevel doesn't work
This commit is contained in:
Stephen Gallagher 2012-03-12 19:25:42 -04:00
parent 41359781c6
commit 8c71823719
3 changed files with 41 additions and 5 deletions

1
.gitignore vendored
View File

@ -25,3 +25,4 @@ sssd-1.2.91.tar.gz
/sssd-1.8.0beta2.tar.gz /sssd-1.8.0beta2.tar.gz
/sssd-1.8.0beta3.tar.gz /sssd-1.8.0beta3.tar.gz
/sssd-1.8.0.tar.gz /sssd-1.8.0.tar.gz
/sssd-1.8.1.tar.gz

View File

@ -1 +1 @@
6dcbfe3f9971f60ffbd6f137f40529cd sssd-1.8.0.tar.gz 8f5e88fbdc8edeba7bc816da3448b726 sssd-1.8.1.tar.gz

View File

@ -4,7 +4,7 @@
%endif %endif
# we don't want to provide private python extension libs # we don't want to provide private python extension libs
%define __provides_exclude_from %{python_sitearch}.*.so$ %define __provides_exclude_from %{python_sitearch}/.*\.so$
%if (0%{?fedora} > 15) %if (0%{?fedora} > 15)
%define _hardened_build 1 %define _hardened_build 1
@ -15,8 +15,8 @@
%global ldb_version 1.1.4 %global ldb_version 1.1.4
Name: sssd Name: sssd
Version: 1.8.0 Version: 1.8.1
Release: 6%{?dist} Release: 7%{?dist}
Group: Applications/System Group: Applications/System
Summary: System Security Services Daemon Summary: System Security Services Daemon
License: GPLv3+ License: GPLv3+
@ -207,6 +207,9 @@ autoreconf -ivf
make %{?_smp_mflags} all docs make %{?_smp_mflags} all docs
%check %check
# 'patch' doesn't create the new tests with the executable flag
chmod +x src/tests/pyhbac-test.py
export CK_TIMEOUT_MULTIPLIER=10 export CK_TIMEOUT_MULTIPLIER=10
make %{?_smp_mflags} check make %{?_smp_mflags} check
unset CK_TIMEOUT_MULTIPLIER unset CK_TIMEOUT_MULTIPLIER
@ -257,12 +260,29 @@ do
sss_*) sss_*)
echo \%lang\(${lang}\) \%{_mandir}/${man}\* >> sssd_tools.lang echo \%lang\(${lang}\) \%{_mandir}/${man}\* >> sssd_tools.lang
;; ;;
pam_sss*)
echo \%lang\(${lang}\) \%{_mandir}/${man}\* >> sssd_client.lang
;;
sssd_krb5_locator_plugin*)
echo \%lang\(${lang}\) \%{_mandir}/${man}\* >> sssd_client.lang
;;
*) *)
echo \%lang\(${lang}\) \%{_mandir}/${man}\* >> sssd.lang echo \%lang\(${lang}\) \%{_mandir}/${man}\* >> sssd.lang
;; ;;
esac esac
done done
# Print these to the rpmbuild log
echo "sssd.lang:"
cat sssd.lang
echo "sssd_client.lang:"
cat sssd_client.lang
echo "sssd_tools.lang:"
cat sssd_tools.lang
%clean %clean
rm -rf $RPM_BUILD_ROOT rm -rf $RPM_BUILD_ROOT
@ -301,7 +321,7 @@ rm -rf $RPM_BUILD_ROOT
%{python_sitearch}/pysss.so %{python_sitearch}/pysss.so
%{python_sitelib}/*.py* %{python_sitelib}/*.py*
%files client %files client -f sssd_client.lang
%defattr(-,root,root,-) %defattr(-,root,root,-)
%doc src/sss_client/COPYING src/sss_client/COPYING.LESSER %doc src/sss_client/COPYING src/sss_client/COPYING.LESSER
/%{_lib}/libnss_sss.so.2 /%{_lib}/libnss_sss.so.2
@ -420,6 +440,21 @@ fi
%postun -n libipa_hbac -p /sbin/ldconfig %postun -n libipa_hbac -p /sbin/ldconfig
%changelog %changelog
* Mon Mar 12 2012 Stephen Gallagher <sgallagh@redhat.com> - 1.8.1-7
- New upstream release 1.8.1
- Resolve issue where we could enter an infinite loop trying to connect to an
auth server
- Fix serious issue with complex (3+ levels) nested groups
- Fix netgroup support for case-insensitivity and aliases
- Fix serious issue with lookup bundling resulting in requests never
completing
- IPA provider will now check the value of nsAccountLock during pam_acct_mgmt
in addition to pam_authenticate
- Fix several regressions in the proxy provider
- Resolves: rhbz#743133 - Performance regression with Kerberos authentication
against AD
- Resolves: rhbz#799031 - --debug option for sss_debuglevel doesn't work
* Tue Feb 28 2012 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-6 * Tue Feb 28 2012 Stephen Gallagher <sgallagh@redhat.com> - 1.8.0-6
- New upstream release 1.8.0 - New upstream release 1.8.0
- Support for the service map in NSS - Support for the service map in NSS