Accepting request 452485 from home:stroeder:branches:network:ldap

update to 1.15.0 (testing needed) OBS-URL: https://build.opensuse.org/request/show/452485 OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=180
2017-01-26 14:22:39 +00:00
parent e55ddcabba
commit aab7330625
7 changed files with 44 additions and 44 deletions
--- a/sssd.changes
+++ b/sssd.changes
@@ -1,3 +1,37 @@
+-------------------------------------------------------------------
+Wed Jan 25 19:25:09 UTC 2017 - michael@stroeder.com
+
+- Removed 0001-krb5-1.15-build-fix.patch obsoleted by upstream update
+- Update to new upstream release 1.15.0
+  * SSSD now allows the responders to be activated by the systemd service
+    manager and exit when idle. This means the services line in sssd.conf is
+    optional and the responders can be started on-demand, simplifying the sssd
+    configuration. Please note that this change is backwards-compatible and
+    the responders listed explicitly in sssd.conf's services line are managed
+    by sssd in the same manner as in previous releases. Please refer to man
+    sssd.conf(5) for more information
+  * The sudo provider is no longer disabled for configurations that do not
+    explicitly include the sudo responder in the services list. In order to
+    disable the sudo-related back end code that executes the periodic LDAP
+    queries, set the sudo_provider to none explicitly
+  * The watchdog signal handler no longer uses signal-unsafe functions. This
+    bug was causing a deadlock in case the watchdog was about to kill a
+    stuck process
+  * A bug that prevented TLS to be set up correctly on systems where libldap
+    links with GnuTLS was fixed
+  * The functionality to alter SSSD configuration through the D-Bus interface
+    provided by the IFP responder was removed. This functionality was not used to
+    the best of our knowledge, had no tests and prevented the InfoPipe responder
+    from running as a non-privileged user.
+  * A bug that prevented statically-linked applications from using libnss_sss
+    was fixed by removing dependency on -lpthreads from the libnss_sss library
+    (please see https://sourceware.org/bugzilla/show_bug.cgi?id=20500 for
+    an example on why linking with -lpthread from an NSS modules is problematic)
+  * Previously, SSSD did not ignore GPOs that were missing the
+    gPCFunctionalityVersion attribute and failed the whole GPO
+    processing. Starting with this version, the GPOs without the
+    gPCFunctionalityVersion are skipped.
+
 -------------------------------------------------------------------
 Mon Dec 12 13:36:18 UTC 2016 - dimstar@opensuse.org