diff --git a/sssd-1.12.5.tar.gz b/sssd-1.12.5.tar.gz deleted file mode 100644 index edd0deb..0000000 --- a/sssd-1.12.5.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:243d8db7c72ecb21aa9db8a09fe9f9b10049dbdb35a1cc2f55e214f21e3ce256 -size 4300869 diff --git a/sssd-1.12.5.tar.gz.asc b/sssd-1.12.5.tar.gz.asc deleted file mode 100644 index 7841619..0000000 --- a/sssd-1.12.5.tar.gz.asc +++ /dev/null @@ -1,7 +0,0 @@ ------BEGIN PGP SIGNATURE----- -Version: GnuPG v1 - -iEYEABECAAYFAlV6uQEACgkQHsardTLnvCWZCwCdEWMU5ry/swLp5y/DGPXp6GkH -4U4AnjTVtz1Vj1R7hyzVKKL6uqsR6kdR -=dk0K ------END PGP SIGNATURE----- diff --git a/sssd-1.13.0.tar.gz b/sssd-1.13.0.tar.gz new file mode 100644 index 0000000..b1b9e61 --- /dev/null +++ b/sssd-1.13.0.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:bd1dd95165bca02a08fbd0ea8ac6aa296bc339798d6c6566aee823c536718a5a +size 4417697 diff --git a/sssd-1.13.0.tar.gz.asc b/sssd-1.13.0.tar.gz.asc new file mode 100644 index 0000000..141d253 --- /dev/null +++ b/sssd-1.13.0.tar.gz.asc @@ -0,0 +1,7 @@ +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v1 + +iEYEABECAAYFAlWa1YEACgkQHsardTLnvCXJQACgtx+37IBGO6/nBGqBCx5Y/Eye +Su4AoIqcfMtZZnEPC/0D0TMwAGDBhv4i +=N/oh +-----END PGP SIGNATURE----- diff --git a/sssd.changes b/sssd.changes index 9b87fcc..a49b998 100644 --- a/sssd.changes +++ b/sssd.changes @@ -1,3 +1,29 @@ +------------------------------------------------------------------- +Thu Aug 20 08:34:44 UTC 2015 - jengelh@inai.de + +- Update to new upstream release 1.13 +* Support for separate prompts when using two-factor authentication +* Added support for one-way trusts between an IPA and Active + Directory environment. (Depends on IPA 4.2) +* The fast memory cache now also supports the initgroups operation. +* The PAM responder is now capable of caching authentication for + configurable period, which might reduce server load in cases + where accounts authenticate very frequently. + Refer to the "cached_auth_timeout" option in sssd.conf(5). +* The Active Directory provider has changed the default value of + the "ad_gpo_access_control" option from permissive to enforcing. + As a consequence, the GPO access control now affects all clients + that set access_provider to ad. In order to restore the previous + behaviour, set ad_gpo_access_control to permissive or use a + different access_provider type. +* Group Policy objects defined in a different AD domain that the + computer object is defined in are now supported. +* Credential caching and Offline authentication are also available + when using two-factor authentication +* The Python bindings are now built for both Python2 and Python3. +* The LDAP bind timeout, StartTLS timeout and password change + timeout are now configurable using the ldap_opt_timeout option. + ------------------------------------------------------------------- Wed Aug 12 18:20:25 UTC 2015 - jengelh@inai.de diff --git a/sssd.spec b/sssd.spec index e12f20c..4b3b5af 100644 --- a/sssd.spec +++ b/sssd.spec @@ -17,7 +17,7 @@ Name: sssd -Version: 1.12.5 +Version: 1.13.0 Release: 0 Summary: System Security Services Daemon License: GPL-3.0+ and LGPL-3.0+ @@ -53,8 +53,9 @@ BuildRequires: libxslt-tools BuildRequires: nscd BuildRequires: openldap2-devel BuildRequires: pam-devel -BuildRequires: pkg-config -BuildRequires: pkgconfig >= 0.21 +BuildRequires: pkg-config >= 0.21 +BuildRequires: python-devel +BuildRequires: python3-devel BuildRequires: systemd-rpm-macros BuildRequires: pkgconfig(augeas) >= 1.0.0 BuildRequires: pkgconfig(collection) >= 0.5.1 @@ -168,6 +169,7 @@ License: GPL-3.0+ and LGPL-3.0+ Group: System/Management Requires: python-sssd-config = %version Requires: sssd = %version +%py_requires %description tools The packages contains commandline tools for managing users and groups using @@ -294,32 +296,74 @@ A utility library to allow communication between sudo and SSSD. Summary: Python bindings for the FreeIPA HBAC Evaluator library License: LGPL-3.0+ Group: Development/Libraries/Python -%py_requires %description -n python-ipa_hbac The python-ipa_hbac package contains the bindings so that libipa_hbac can be used by Python applications. +%package -n python3-ipa_hbac +Summary: Python bindings for the FreeIPA HBAC Evaluator library +License: LGPL-3.0+ +Group: Development/Libraries/Python + +%description -n python3-ipa_hbac +The python-ipa_hbac package contains the bindings so that libipa_hbac +can be used by Python applications. + +%package -n python-sss-murmur +Summary: Python2 bindings for SSSD Murmur hash function +License: LGPL-3.0+ +Group: Development/Libraries/Python + +%description -n python-sss-murmur +This subpackage provides the python2 module for calculating the +Murmur hash version 3. + +%package -n python3-sss-murmur +Summary: Python3 bindings for SSSD Murmur hash function +License: LGPL-3.0+ +Group: Development/Libraries/Python + +%description -n python3-sss-murmur +This subpackage provides the python3 module for calculating the +Murmur hash version 3. + %package -n python-sss_nss_idmap Summary: Python bindings for libsss_nss_idmap License: LGPL-3.0+ Group: Development/Libraries/Python -%py_requires %description -n python-sss_nss_idmap The libsss_nss_idmap-python contains the bindings so that libsss_nss_idmap can be used by Python applications. +%package -n python3-sss_nss_idmap +Summary: Python bindings for libsss_nss_idmap +License: LGPL-3.0+ +Group: Development/Libraries/Python + +%description -n python3-sss_nss_idmap +The libsss_nss_idmap-python contains the bindings so that +libsss_nss_idmap can be used by Python applications. + %package -n python-sssd-config Summary: Python API for configuring sssd License: GPL-3.0+ and LGPL-3.0+ Group: Development/Libraries/Python -%py_requires %description -n python-sssd-config Provide python module to access and manage configuration of the System Security Services Daemon (sssd). +%package -n python3-sssd-config +Summary: Python API for configuring sssd +License: GPL-3.0+ and LGPL-3.0+ +Group: Development/Libraries/Python + +%description -n python3-sssd-config +Provide python module to access and manage configuration of the System +Security Services Daemon (sssd). + %prep %setup -q %patch -P 1 -p1 @@ -371,6 +415,7 @@ install -m644 %{S:4} "$b/%_unitdir/sssd.service"; rm -Rf "$b/%_initddir" ln -s service "$b/%_sbindir/rcsssd" +mkdir -p "$b/%sssdstatedir/mc" mkdir -p "$b/%_sysconfdir/ld.so.conf.d" cat >"$b/%_sysconfdir/ld.so.conf.d/sssd-wbclient.conf" <<-EOF %_libdir/%name/modules @@ -435,6 +480,7 @@ rm -f /var/lib/sss/db/*.ldb %_mandir/man8/sssd.8* %dir %_libdir/%name/ %_libdir/%name/libsss_child* +%_libdir/%name/libsss_cert* %_libdir/%name/libsss_crypt* %_libdir/%name/libsss_debug* %_libdir/%name/libsss_semanage* @@ -458,6 +504,8 @@ rm -f /var/lib/sss/db/*.ldb %attr(755,root,root) %dir %pipepath/ %attr(700,root,root) %dir %pipepath/private/ %attr(755,root,root) %dir %pubconfpath/ +%attr(755,root,root) %dir %sssdstatedir/mc/ +%attr(700,root,root) %dir %sssdstatedir/keytabs/ %attr(750,root,root) %dir %_localstatedir/log/%name/ %dir %_sysconfdir/sssd/ %config(noreplace) %_sysconfdir/sssd/sssd.conf @@ -490,6 +538,9 @@ rm -f /var/lib/sss/db/*.ldb %dir %_datadir/%name/sssd.api.d/ %_datadir/%name/sssd.api.d/sssd-ad.conf %_mandir/man5/sssd-ad.5* +%dir %_mandir/??/ +%dir %_mandir/??/man5/ +%_mandir/??/man5/sssd-ad.5* %files dbus %defattr(-,root,root) @@ -510,6 +561,9 @@ rm -f /var/lib/sss/db/*.ldb %dir %_datadir/%name/sssd.api.d %_datadir/%name/sssd.api.d/sssd-ipa.conf %_mandir/man5/sssd-ipa.5* +%dir %_mandir/??/ +%dir %_mandir/??/man5/ +%_mandir/??/man5/sssd-ipa.5* %files krb5 %defattr(-,root,root) @@ -599,6 +653,8 @@ rm -f /var/lib/sss/db/*.ldb %defattr(-,root,root) %_libdir/libnfsidmap/ %_mandir/man5/sss_rpcidmapd.5* +%dir %_mandir/??/man5/ +%_mandir/??/man5/sss_rpcidmapd.5* %files -n libsss_idmap0 %defattr(-,root,root) @@ -633,17 +689,47 @@ rm -f /var/lib/sss/db/*.ldb %files -n python-ipa_hbac %defattr(-,root,root) %dir %python_sitearch +%python_sitearch/_py2hbac.so %python_sitearch/pyhbac.so +%files -n python3-ipa_hbac +%defattr(-,root,root) +%dir %python3_sitearch +%python3_sitearch/_py3hbac.so +%python3_sitearch/pyhbac.so + +%files -n python-sss-murmur +%defattr(-,root,root) +%python_sitearch/_py2sss_murmur.so +%python_sitearch/pysss_murmur.so + +%files -n python3-sss-murmur +%defattr(-,root,root) +%python3_sitearch/_py3sss_murmur.so +%python3_sitearch/pysss_murmur.so + %files -n python-sss_nss_idmap %defattr(-,root,root) %dir %python_sitearch +%python_sitearch/_py2sss_nss_idmap.so %python_sitearch/pysss_nss_idmap.so +%files -n python3-sss_nss_idmap +%defattr(-,root,root) +%dir %python3_sitearch +%python3_sitearch/_py3sss_nss_idmap.so +%python3_sitearch/pysss_nss_idmap.so + %files -n python-sssd-config %defattr(-,root,root) +%python_sitearch/_py2sss.so %python_sitearch/pysss.so -%python_sitearch/pysss_murmur.so %python_sitelib/SSSDConfig* +%files -n python3-sssd-config +%defattr(-,root,root) +%python3_sitearch/_py3sss.so +%python3_sitearch/pysss.so +%python3_sitelib/SSSDConfig* + %changelog