Jakub Hrozek
2013-07-18 15:11:25 UTC
=== SSSD 1.10.1 ===
The SSSD team is proud to announce the release of version 1.10.1 of
the System Security Services Daemon.
As always, the source is available from https://fedorahosted.org/sssd
RPM packages will be made available for Fedora 19 and rawhide shortly.
== Feedback ==
Please provide comments, bugs and other feedback via the sssd-devel
or sssd-users mailing lists:
https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
https://lists.fedorahosted.org/mailman/listinfo/sssd-users
== Highlights ==
* Another case where the dircache might have been created with the UID
of root was fixed
* Fixed a sssd_be crash in case the dynamic DNS update timed out
* Several packaging bugs that were introduced as a result of splitting
out the providers into separate subpackages was fixed
* The SRV resolution status is now correctly reset after receiving
notification about changed network conditions
== Tickets Fixed ==
https://fedorahosted.org/sssd/ticket/1778
Do not copy special files when creating a home directory from a skeldir
https://fedorahosted.org/sssd/ticket/1814
Empty Kerberos passwords handled incorrectly
https://fedorahosted.org/sssd/ticket/1827
Cannot change expired password of an AD user
https://fedorahosted.org/sssd/ticket/1846
cyclic group memberships may not work depending on order of operations
https://fedorahosted.org/sssd/ticket/1933
sssd fails to resolve hosts/services once the network is up
https://fedorahosted.org/sssd/ticket/1935
Several translated man pages are malformed
https://fedorahosted.org/sssd/ticket/1984
sssd-common requires libndr due to pac responder dependency
https://fedorahosted.org/sssd/ticket/1992
AD dyndns update crashed after attempting to update a standalone DNS server
https://fedorahosted.org/sssd/ticket/1999
shadowLastChange updates even when PAM reports password change failed
https://fedorahosted.org/sssd/ticket/2002
cc_residual_is_used might not work correctly with dircache
== Detailed Changelog ==
Jakub Hrozek (5):
* Updating the version for the 1.10.1 release
* RPM: Move sssd_pac to the krb5-common subpackage
* DB: sysdb_search_user_by_name: search by both name and alias
* RPM: Require libsss_idmap from sssd-common
* Updating translations for the 1.10.1 release
Jim Collins (1):
* ldap: only update shadowLastChange when password change is successful
Lukas Slebodnik (2):
* Return right directory name for dircache
* Every time use permissive control in function memberof_mod.
Michal Zidek (1):
* Always set port status to neutral when resetting service.
Ondrej Kos (5):
* Do not copy special files when creating homedir
* KRB5_CHILD: Fix handling of get_password return code
* Do not try to set password when authtok_length is zero
* KRB: Handle empty password gracefully
* KRB: Replace multiple calls with variable
Pavel Březina (3):
* print hint about password complexity when new password is rejected
* dyndns timeout test: catch SIGCHLD handler events
* SIGCHLD handler: do not call callback when pvt data where freed
Stephen Gallagher (3):
* Move pre and post scripts to sssd-common
* Remove sysv->systemd upgrade routines
* Move sssd_pac binary to the IPA and AD providers
== Packaging Changes ==
* The sssd_pac binary is now owned by the IPA and AD providers
* The sysv->systemd upgrade routines were removed
* Several packaging fixes
The SSSD team is proud to announce the release of version 1.10.1 of
the System Security Services Daemon.
As always, the source is available from https://fedorahosted.org/sssd
RPM packages will be made available for Fedora 19 and rawhide shortly.
== Feedback ==
Please provide comments, bugs and other feedback via the sssd-devel
or sssd-users mailing lists:
https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
https://lists.fedorahosted.org/mailman/listinfo/sssd-users
== Highlights ==
* Another case where the dircache might have been created with the UID
of root was fixed
* Fixed a sssd_be crash in case the dynamic DNS update timed out
* Several packaging bugs that were introduced as a result of splitting
out the providers into separate subpackages was fixed
* The SRV resolution status is now correctly reset after receiving
notification about changed network conditions
== Tickets Fixed ==
https://fedorahosted.org/sssd/ticket/1778
Do not copy special files when creating a home directory from a skeldir
https://fedorahosted.org/sssd/ticket/1814
Empty Kerberos passwords handled incorrectly
https://fedorahosted.org/sssd/ticket/1827
Cannot change expired password of an AD user
https://fedorahosted.org/sssd/ticket/1846
cyclic group memberships may not work depending on order of operations
https://fedorahosted.org/sssd/ticket/1933
sssd fails to resolve hosts/services once the network is up
https://fedorahosted.org/sssd/ticket/1935
Several translated man pages are malformed
https://fedorahosted.org/sssd/ticket/1984
sssd-common requires libndr due to pac responder dependency
https://fedorahosted.org/sssd/ticket/1992
AD dyndns update crashed after attempting to update a standalone DNS server
https://fedorahosted.org/sssd/ticket/1999
shadowLastChange updates even when PAM reports password change failed
https://fedorahosted.org/sssd/ticket/2002
cc_residual_is_used might not work correctly with dircache
== Detailed Changelog ==
Jakub Hrozek (5):
* Updating the version for the 1.10.1 release
* RPM: Move sssd_pac to the krb5-common subpackage
* DB: sysdb_search_user_by_name: search by both name and alias
* RPM: Require libsss_idmap from sssd-common
* Updating translations for the 1.10.1 release
Jim Collins (1):
* ldap: only update shadowLastChange when password change is successful
Lukas Slebodnik (2):
* Return right directory name for dircache
* Every time use permissive control in function memberof_mod.
Michal Zidek (1):
* Always set port status to neutral when resetting service.
Ondrej Kos (5):
* Do not copy special files when creating homedir
* KRB5_CHILD: Fix handling of get_password return code
* Do not try to set password when authtok_length is zero
* KRB: Handle empty password gracefully
* KRB: Replace multiple calls with variable
Pavel Březina (3):
* print hint about password complexity when new password is rejected
* dyndns timeout test: catch SIGCHLD handler events
* SIGCHLD handler: do not call callback when pvt data where freed
Stephen Gallagher (3):
* Move pre and post scripts to sssd-common
* Remove sysv->systemd upgrade routines
* Move sssd_pac binary to the IPA and AD providers
== Packaging Changes ==
* The sssd_pac binary is now owned by the IPA and AD providers
* The sysv->systemd upgrade routines were removed
* Several packaging fixes