rpms / ipa

Clone
Source Code
GIT

ac7d03 import ipa-4.5.0-20.el7

Authored and Committed by centosrcm 6 years ago
raw patch tree parent
379 files changed. 24014 lines added. 15718 lines removed.
.gitignore
file modified
+1 -1
.ipa.metadata
file modified
+1 -1
SOURCES/0001-Add-options-to-allow-ticket-caching.patch
file added
+39
SOURCES/0001-Fix-incorrect-check-for-principal-type-when-evaluati.patch
file removed
-34
SOURCES/0002-Use-connection-keep-alive.patch
file added
+35
SOURCES/0002-uninstall-untrack-lightweight-CA-certs.patch
file removed
-31
SOURCES/0003-Add-debug-logging-for-keep-alive.patch
file added
+68
SOURCES/0003-ipa-nis-manage-Use-server-API-to-retrieve-plugin-sta.patch
file removed
-28
SOURCES/0004-Increase-Apache-HTTPD-s-default-keep-alive-timeout.patch
file added
+41
SOURCES/0004-ipa-compat-manage-use-server-API-to-retrieve-plugin-.patch
file removed
-28
SOURCES/0005-ipa-advise-correct-handling-of-plugin-namespace-iter.patch
file removed
-40
SOURCES/0005-ipapython.ipautil.nolog_replace-Do-not-replace-empty.patch
file added
+32
SOURCES/0006-kdb-check-for-local-realm-in-enterprise-principals.patch
file removed
-89
SOURCES/0006-tasks-run-systemctl-daemon-reload-after-httpd.servic.patch
file added
+49
SOURCES/0007-Enable-vault-commands-on-client.patch
file removed
-70
SOURCES/0007-man-ipa-cacert-manage-install-needs-clarification.patch
file added
+31
SOURCES/0008-certs-do-not-implicitly-create-DS-pin.txt.patch
file added
+48
SOURCES/0008-vault-add-set-the-default-vault-type-on-the-client-s.patch
file removed
-38
SOURCES/0009-caacl-expand-plugin-documentation.patch
file removed
-66
SOURCES/0009-httpinstance-clean-up-etc-httpd-alias-on-uninstall.patch
file added
+74
SOURCES/0010-Fixing-replica-install-fix-ldap-connection-in-domlvl.patch
file added
+43
SOURCES/0010-host-find-do-not-show-SSH-key-by-default.patch
file removed
-30
SOURCES/0011-Removed-unused-method-parameter-from-migrate-ds.patch
file removed
-31
SOURCES/0011-replica-prepare-fix-wrong-IPA-CA-nickname-in-replica.patch
file added
+51
SOURCES/0012-Preserve-user-principal-aliases-during-rename-operat.patch
file removed
-92
SOURCES/0012-ldap2-use-LDAP-whoami-operation-to-retrieve-bind-DN-.patch
file added
+43
SOURCES/0013-Backup-ipa-specific-httpd-unit-file.patch
file added
+47
SOURCES/0013-messages-specify-message-type-for-ResultFormattingEr.patch
file removed
-31
SOURCES/0014-WebUI-check-principals-in-lowercase.patch
file added
+36
SOURCES/0014-schema-Fix-subtopic-topic-mapping.patch
file removed
-29
SOURCES/0015-DNS-install-Ensure-that-DNS-servers-container-exists.patch
file removed
-93
SOURCES/0015-WebUI-add-method-for-disabling-item-in-user-dropdown.patch
file added
+105
SOURCES/0016-Heap-corruption-in-ipapwd-plugin.patch
file removed
-41
SOURCES/0016-WebUI-Add-support-for-login-for-AD-users.patch
file added
+341
SOURCES/0017-Use-server-API-in-com.redhat.idm.trust-fetch-domains.patch
file removed
-29
SOURCES/0017-cert-do-not-limit-internal-searches-in-cert-find.patch
file added
+105
SOURCES/0018-frontend-copy-command-arguments-to-output-params-on-.patch
file removed
-39
SOURCES/0018-ipa-kdb-add-ipadb_fetch_principals_with_extra_filter.patch
file added
+132
SOURCES/0019-IPA-certauth-plugin.patch
file added
+609
SOURCES/0019-Show-full-error-message-for-selinuxusermap-add-hostg.patch
file removed
-152
SOURCES/0020-allow-value-output-param-in-commands-without-primary.patch
file removed
-157
SOURCES/0020-configure-fix-disable-server-with-certauth-plugin.patch
file added
+55
SOURCES/0021-ipa-kdb-do-not-depend-on-certauth_plugin.h.patch
file added
+85
SOURCES/0021-server-uninstall-fails-to-remove-krb-principals.patch
file removed
-51
SOURCES/0022-WebUI-Add-support-for-suppressing-warnings.patch
file added
+46
SOURCES/0022-expose-secret-option-in-radiusproxy-commands.patch
file removed
-32
SOURCES/0023-WebUI-suppress-truncation-warning-in-select-widget.patch
file added
+37
SOURCES/0023-prevent-search-for-RADIUS-proxy-servers-by-secret.patch
file removed
-37
SOURCES/0024-WebUI-Fix-showing-vault-in-selfservice-view.patch
file added
+54
SOURCES/0024-trust-add-handle-all-raw-options-properly.patch
file removed
-89
SOURCES/0025-Set-KDC-Disable-Last-Success-by-default.patch
file added
+35
SOURCES/0025-unite-log-file-name-of-ipa-ca-install.patch
file removed
-54
SOURCES/0026-Host-del-fix-behavior-of-updatedns-and-PTR-records.patch
file removed
-95
SOURCES/0026-WebUI-Allow-to-add-certs-to-certmapping-with-CERT-LI.patch
file added
+69
SOURCES/0027-Bump-samba-version-for-FIPS-and-priv.-separation.patch
file added
+40
SOURCES/0027-help-Add-dnsserver-commands-to-help-topic-dns.patch
file removed
-67
SOURCES/0028-DNS-Locations-fix-update-system-records-unpacking-er.patch
file removed
-35
SOURCES/0028-Reworked-the-renaming-mechanism.patch
file added
+296
SOURCES/0029-Allow-renaming-of-the-HBAC-rule-objects.patch
file added
+103
SOURCES/0029-Fix-session-cookies.patch
file removed
-136
SOURCES/0030-Allow-renaming-of-the-sudorule-objects.patch
file added
+100
SOURCES/0030-Use-copy-when-replacing-files-to-keep-SELinux-contex.patch
file removed
-38
SOURCES/0031-Create-temporaty-directories-at-the-begining-of-unin.patch
file added
+36
SOURCES/0031-baseldap-Fix-MidairCollision-instantiation-during-en.patch
file removed
-38
SOURCES/0032-Create-indexes-for-krbCanonicalName-attribute.patch
file removed
-54
SOURCES/0032-dogtag-ipa-ca-renew-agent-submit-fix-the-is_replicat.patch
file added
+38
SOURCES/0033-Simplify-KRA-transport-cert-cache.patch
file added
+195
SOURCES/0033-harden-the-check-for-trust-namespace-overlap-in-new-.patch
file removed
-43
SOURCES/0034-Revert-Enable-vault-commands-on-client.patch
file removed
-65
SOURCES/0034-rpcserver.login_x509-Actually-return-reply-from-__ca.patch
file added
+33
SOURCES/0035-Backup-CA-cert-from-kerberos-folder.patch
file added
+27
SOURCES/0035-client-fix-hiding-of-commands-which-lack-server-supp.patch
file removed
-93
SOURCES/0036-Minor-fix-in-ipa-replica-manage-MAN-page.patch
file removed
-51
SOURCES/0036-spec-file-Bump-requires-to-make-Certificate-Login-in.patch
file added
+54
SOURCES/0037-Use-Custodia-0.3.1-features.patch
file added
+236
SOURCES/0037-compat-fix-ping-call.patch
file removed
-31
SOURCES/0038-replica-install-Fix-domain.patch
file removed
-71
SOURCES/0038-spec-file-bump-krb5-devel-BuildRequires-for-certauth.patch
file added
+40
SOURCES/0039-Avoid-growing-FILE-ccaches-unnecessarily.patch
file added
+34
SOURCES/0039-idrange-fix-unassigned-global-variable.patch
file removed
-33
SOURCES/0040-Handle-failed-authentication-via-cookie.patch
file added
+120
SOURCES/0040-re-set-canonical-principal-name-on-migrated-users.patch
file removed
-86
SOURCES/0041-Do-not-initialize-API-in-ipa-client-automount-uninst.patch
file removed
-41
SOURCES/0041-Work-around-issues-fetching-session-data.patch
file added
+331
SOURCES/0042-Correct-path-to-HTTPD-s-systemd-service-directory.patch
file removed
-37
SOURCES/0042-Prevent-churn-on-ccaches.patch
file added
+71
SOURCES/0043-Generate-PIN-for-PKI-to-help-Dogtag-in-FIPS.patch
file added
+68
SOURCES/0043-vault-Catch-correct-exception-in-decrypt.patch
file removed
-30
SOURCES/0044-Increase-default-length-of-auto-generated-passwords.patch
file removed
-138
SOURCES/0044-httpinstance.disable_system_trust-Don-t-fail-if-modu.patch
file added
+47
SOURCES/0045-extdom-do-reverse-search-for-domain-separator.patch
file added
+49
SOURCES/0045-vault-add-missing-salt-option-to-vault_mod.patch
file removed
-31
SOURCES/0046-Fix-ipa-hbactest-output.patch
file removed
-46
SOURCES/0046-extdom-improve-cert-request.patch
file added
+243
SOURCES/0047-install-fix-external-CA-cert-validation.patch
file removed
-31
SOURCES/0047-spec-file-bump-libsss_nss_idmap-devel-BuildRequires.patch
file added
+37
SOURCES/0048-caacl-fix-regression-in-rule-instantiation.patch
file removed
-52
SOURCES/0048-server-make-sure-we-test-for-sss_nss_getlistbycert.patch
file added
+32
SOURCES/0049-Update-ipa-replica-install-documentation.patch
file removed
-45
SOURCES/0049-Upgrade-configure-PKINIT-after-adding-anonymous-prin.patch
file added
+34
SOURCES/0050-Remove-unused-variable-from-failed-anonymous-PKINIT-.patch
file added
+28
SOURCES/0050-ipa-kdb-Fix-unit-test-after-packaging-changes-in-krb.patch
file removed
-29
SOURCES/0051-Improvements-for-the-ipa-cacert-manage-man-and-help.patch
file removed
-117
SOURCES/0051-Split-out-anonymous-PKINIT-test-to-a-separate-method.patch
file added
+37
SOURCES/0052-Ensure-KDC-is-propery-configured-after-upgrade.patch
file added
+47
SOURCES/0052-Revert-spec-add-conflict-with-bind-chroot-to-freeipa.patch
file removed
-35
SOURCES/0053-Fix-unicode-characters-in-ca-and-domain-adders.patch
file removed
-41
SOURCES/0053-adtrust-make-sure-that-runtime-hostname-result-is-co.patch
file added
+77
SOURCES/0054-Allow-erasing-ipaDomainResolutionOrder-attribute.patch
file added
+42
SOURCES/0054-ipa-backup-backup-etc-tmpfiles.d-dirsrv-instance-.co.patch
file removed
-52
SOURCES/0055-Always-check-and-create-anonymous-principal-during-K.patch
file added
+70
SOURCES/0055-client-RPM-require-initscripts-to-get-domainname.ser.patch
file removed
-28
SOURCES/0056-Remove-duplicate-functionality-in-upgrade.patch
file added
+53
SOURCES/0056-parameters-move-the-confirm-kwarg-to-Param.patch
file removed
-89
SOURCES/0057-Fix-the-order-of-cert-files-check.patch
file added
+47
SOURCES/0057-client-add-missing-output-params-to-client-side-comm.patch
file removed
-95
SOURCES/0058-Don-t-allow-setting-pkinit-related-options-on-DL0.patch
file added
+95
SOURCES/0058-server-install-Fix-hostname-option-to-always-overrid.patch
file removed
-52
SOURCES/0059-install-Call-hostnamectl-set-hostname-only-if-hostna.patch
file removed
-148
SOURCES/0059-replica-prepare-man-remove-pkinit-option-refs.patch
file added
+60
SOURCES/0060-Remove-redundant-option-check-for-cert-files.patch
file added
+41
SOURCES/0060-schema-Speed-up-schema-cache.patch
file removed
-415
SOURCES/0061-Hide-request_type-doc-string-in-cert-request-help.patch
file added
+34
SOURCES/0061-frontend-Change-doc-summary-topic-and-NO_CLI-to-clas.patch
file removed
-378
SOURCES/0062-Get-correct-CA-cert-nickname-in-CA-less.patch
file added
+60
SOURCES/0062-schema-Introduce-schema-cache-format.patch
file removed
-48
SOURCES/0063-Remove-publish_ca_cert-method-from-NSSDatabase.patch
file added
+49
SOURCES/0063-schema-Generate-bits-for-help-load-them-on-request.patch
file removed
-162
SOURCES/0064-help-Do-not-create-instances-to-get-information-abou.patch
file removed
-77
SOURCES/0064-httpinstance-make-sure-NSS-database-is-backed-up.patch
file added
+39
SOURCES/0065-Fix-ipa-caalc-add-service-error-message.patch
file removed
-31
SOURCES/0065-IPA-KDB-use-relative-path-in-ipa-certmap-config-snip.patch
file added
+72
SOURCES/0066-Add-pki_pin-only-when-needed.patch
file added
+62
SOURCES/0066-Don-t-show-force-ntpd-option-in-replica-install.patch
file removed
-42
SOURCES/0067-DNS-server-upgrade-do-not-fail-when-DNS-server-did-n.patch
file removed
-62
SOURCES/0067-idrange-add-properly-handle-empty-dom-name-option.patch
file added
+35
SOURCES/0068-DNS-allow-to-add-forward-zone-to-already-broken-sub-.patch
file removed
-32
SOURCES/0068-ipa-sam-create-the-gidNumber-attribute-in-the-truste.patch
file added
+145
SOURCES/0069-Upgrade-add-gidnumber-to-trusted-domain-entry.patch
file added
+104
SOURCES/0069-cert-speed-up-cert-find.patch
file removed
-479
SOURCES/0070-cert-do-not-crash-on-invalid-data-in-cert-find.patch
file removed
-81
SOURCES/0070-dsinstance-reconnect-ldap2-after-DS-is-restarted-by-.patch
file added
+53
SOURCES/0071-Add-warning-about-only-one-existing-CA-server.patch
file removed
-151
SOURCES/0071-httpinstance-avoid-httpd-restart-during-certificate-.patch
file added
+52
SOURCES/0072-Set-servers-list-as-default-facet-in-topology-facet-.patch
file removed
-32
SOURCES/0072-dsinstance-httpinstance-consolidate-certificate-requ.patch
file added
+289
SOURCES/0073-install-request-service-certs-after-host-keytab-is-s.patch
file added
+135
SOURCES/0073-schema-cache-Do-not-reset-ServerInfo-dirty-flag.patch
file removed
-32
SOURCES/0074-renew-agent-revert-to-host-keytab-authentication.patch
file added
+53
SOURCES/0074-schema-cache-Do-not-read-fingerprint-and-format-from.patch
file removed
-86
SOURCES/0075-Access-data-for-help-separately.patch
file removed
-121
SOURCES/0075-renew-agent-restart-scripts-connect-to-LDAP-after-ki.patch
file added
+117
SOURCES/0076-frontent-Add-summary-class-property-to-CommandOverri.patch
file removed
-34
SOURCES/0076-ipaserver-dcerpc-unify-error-processing.patch
file added
+93
SOURCES/0077-schema-cache-Read-server-info-only-once.patch
file removed
-50
SOURCES/0077-trust-always-use-oddjobd-helper-for-fetching-trust-i.patch
file added
+86
SOURCES/0078-WebUI-cert-login-Configure-name-of-parameter-used-to.patch
file added
+34
SOURCES/0078-schema-cache-Store-API-schema-cache-in-memory.patch
file removed
-125
SOURCES/0079-Create-system-users-for-FreeIPA-services-during-pack.patch
file added
+414
SOURCES/0079-client-Do-not-create-instance-just-to-check-isinstan.patch
file removed
-97
SOURCES/0080-Fix-s4u2self-with-adtrust.patch
file added
+60
SOURCES/0080-schema-cache-Read-schema-instead-of-rewriting-it-whe.patch
file removed
-104
SOURCES/0081-Add-debug-log-in-case-cookie-retrieval-went-wrong.patch
file added
+31
SOURCES/0081-schema-check-Check-current-client-language-against-c.patch
file removed
-57
SOURCES/0082-Fail-on-topology-disconnect-last-role-removal.patch
file removed
-51
SOURCES/0082-server-install-remove-broken-no-pkinit-check.patch
file added
+36
SOURCES/0083-Add-the-force-join-option-to-replica-install.patch
file added
+55
SOURCES/0083-server-install-do-not-prompt-for-cert-file-PIN-repea.patch
file removed
-98
SOURCES/0084-replicainstall-better-client-install-exception-handl.patch
file added
+120
SOURCES/0084-service-add-flag-to-allow-S4U2Self.patch
file removed
-122
SOURCES/0085-Add-trusted-to-auth-as-user-checkbox.patch
file removed
-50
SOURCES/0085-Fix-CA-less-to-CA-full-upgrade.patch
file added
+110
SOURCES/0086-Added-new-authentication-method.patch
file removed
-79
SOURCES/0086-cert-defer-cert-find-result-post-processing.patch
file added
+221
SOURCES/0087-schema-cache-Fallback-to-en_us-when-locale-is-not-av.patch
file removed
-39
SOURCES/0087-server-install-No-double-Kerberos-install.patch
file added
+42
SOURCES/0088-cert-revoke-fix-permission-check-bypass-CVE-2016-540.patch
file removed
-132
SOURCES/0088-ext.-CA-correctly-write-the-cert-chain.patch
file added
+35
SOURCES/0089-Fix-RA-cert-import-during-DL0-replication.patch
file added
+122
SOURCES/0089-Fix-container-owner-should-be-able-to-add-vault.patch
file removed
-34
SOURCES/0090-configure-fix-AC_CHECK_LIB-usage.patch
file added
+64
SOURCES/0090-ipaserver-dcerpc-reformat-to-make-the-code-closer-to.patch
file removed
-1005
SOURCES/0091-Fix-CAInstance.import_ra_cert-for-empty-passwords.patch
file added
+30
SOURCES/0091-trust-automatically-resolve-DNS-trust-conflicts-for-.patch
file removed
-382
SOURCES/0092-trust-make-sure-external-trust-topology-is-correctly.patch
file removed
-90
SOURCES/0092-upgrade-adtrust-update_tdo_gidnumber-plugin-must-che.patch
file added
+37
SOURCES/0093-compat-manage-behave-the-same-for-all-users.patch
file added
+34
SOURCES/0093-trust-make-sure-ID-range-is-created-for-the-child-do.patch
file removed
-71
SOURCES/0094-Move-the-compat-plugin-setup-at-the-end-of-install.patch
file added
+317
SOURCES/0094-ipa-kdb-simplify-trusted-domain-parent-search.patch
file removed
-87
SOURCES/0095-Remove-Custodia-server-keys-from-LDAP.patch
file removed
-78
SOURCES/0095-compat-ignore-cn-topology-cn-ipa-cn-etc-subtree.patch
file added
+62
SOURCES/0096-Handled-empty-hostname-in-server-del-command.patch
file removed
-42
SOURCES/0096-spec-file-bump-krb5-Requires-for-certauth-fixes.patch
file added
+68
SOURCES/0097-Hide-PKI-Client-database-password-in-log-file.patch
file added
+70
SOURCES/0097-Secure-permissions-of-Custodia-server.keys.patch
file removed
-69
SOURCES/0098-Require-httpd-2.4.6-31-with-mod_proxy-Unix-socket-su.patch
file removed
-45
SOURCES/0098-Vault-Explicitly-default-to-3DES-CBC.patch
file added
+50
SOURCES/0099-Fix-ipa-server-install-in-pure-IPv6-environment.patch
file removed
-34
SOURCES/0099-separate-function-to-set-ipaConfigString-values-on-s.patch
file added
+244
SOURCES/0100-Allow-for-configuration-of-all-three-PKINIT-variants.patch
file added
+205
SOURCES/0100-support-multiple-uid-values-in-schema-compatibility-.patch
file removed
-53
SOURCES/0101-API-for-retrieval-of-master-s-PKINIT-status-and-publ.patch
file added
+99
SOURCES/0101-custodia-include-known-CA-certs-in-the-PKCS-12-file-.patch
file removed
-43
SOURCES/0102-Use-only-anonymous-PKINIT-to-fetch-armor-ccache.patch
file added
+79
SOURCES/0102-otptoken-permission-Convert-custom-type-parameters-o.patch
file removed
-46
SOURCES/0103-Raise-DuplicatedEnrty-error-when-user-exists-in-dele.patch
file removed
-61
SOURCES/0103-Stop-requesting-anonymous-keytab-and-purge-all-refer.patch
file added
+110
SOURCES/0104-Use-local-anchor-when-armoring-password-requests.patch
file added
+31
SOURCES/0104-cert-add-missing-param-values-to-cert-find-output.patch
file removed
-32
SOURCES/0105-Upgrade-configure-local-full-PKINIT-depending-on-the.patch
file added
+52
SOURCES/0105-rpcserver-assume-version-1-for-unversioned-command-c.patch
file removed
-130
SOURCES/0106-Do-not-test-anonymous-PKINIT-after-install-upgrade.patch
file added
+62
SOURCES/0106-custodia-force-reconnect-before-retrieving-CA-certs-.patch
file removed
-34
SOURCES/0107-rpcserver-fix-crash-in-XML-RPC-system-commands.patch
file removed
-59
SOURCES/0107-vault-piped-input-for-ipa-vault-add-fails.patch
file added
+104
SOURCES/0108-automount-install-fix-checking-of-SSSD-functionality.patch
file added
+83
SOURCES/0108-compat-Save-server-s-API-version-in-for-pre-schema-s.patch
file removed
-346
SOURCES/0109-Fix-CA-server-cert-validation-in-FIPS.patch
file added
+72
SOURCES/0109-compat-Fix-ping-command-call.patch
file removed
-30
SOURCES/0110-Fix-man-page-ipa-replica-manage-remove-duplicate-c-o.patch
file removed
-36
SOURCES/0110-restore-restart-reload-gssproxy-after-restore.patch
file added
+77
SOURCES/0111-cert-include-CA-name-in-cert-command-output.patch
file removed
-112
SOURCES/0111-kerberos-session-use-CA-cert-with-full-cert-chain-fo.patch
file added
+39
SOURCES/0112-Fix-CA-ACL-Check-on-SubjectAltNames.patch
file removed
-55
SOURCES/0112-ipa-client-install-remove-extra-space-in-pkinit_anch.patch
file added
+34
SOURCES/0113-Refresh-Dogtag-RestClient.ca_host-property.patch
file added
+114
SOURCES/0113-do-not-use-trusted-forest-name-to-construct-domain-a.patch
file removed
-37
SOURCES/0114-Always-fetch-forest-info-from-root-DCs-when-establis.patch
file removed
-85
SOURCES/0114-Remove-the-cachedproperty-class.patch
file added
+71
SOURCES/0115-factor-out-populate_remote_domain-method-into-module.patch
file removed
-132
SOURCES/0115-ipa-server-install-with-external-CA-fix-pkinit-cert-.patch
file added
+62
SOURCES/0116-Always-fetch-forest-info-from-root-DCs-when-establis.patch
file removed
-67
SOURCES/0116-kra-install-update-installation-failure-message.patch
file added
+32
SOURCES/0117-Make-sure-remote-hosts-have-our-keys.patch
file added
+114
SOURCES/0117-cli-use-full-name-when-executing-a-command.patch
file removed
-31
SOURCES/0118-Use-RSA-OAEP-instead-of-RSA-PKCS-1-v1.5.patch
file removed
-33
SOURCES/0118-Use-proper-SELinux-context-with-http.keytab.patch
file added
+40
SOURCES/0119-Fix-ipa-certupdate-for-CA-less-installation.patch
file removed
-44
SOURCES/0119-ipa-kra-install-fix-check_host_keys.patch
file added
+47
SOURCES/0120-Track-lightweight-CAs-on-replica-installation.patch
file removed
-208
SOURCES/0120-python2-ipalib-add-missing-python-dependency.patch
file added
+30
SOURCES/0121-dns-normalize-record-type-read-interactively-in-dnsr.patch
file removed
-36
SOURCES/0121-installer-service-fix-typo-in-service-entry.patch
file added
+31
SOURCES/0122-dns-prompt-for-missing-record-parts-in-CLI.patch
file removed
-201
SOURCES/0122-upgrade-add-missing-suffix-to-http-instance.patch
file added
+31
SOURCES/0123-Turn-on-NSSOCSP-check-in-mod_nss-conf.patch
file added
+227
SOURCES/0123-dns-fix-crash-in-interactive-mode-against-old-server.patch
file removed
-106
SOURCES/0124-cert-show-writable-files-does-not-mean-dirs.patch
file added
+31
SOURCES/0124-schema-cache-Store-and-check-info-for-pre-schema-ser.patch
file removed
-393
SOURCES/0125-Bump-version-of-ipa.conf-file.patch
file added
+30
SOURCES/0125-Fix-parse-errors-with-link-local-addresses.patch
file removed
-38
SOURCES/0126-Add-support-for-additional-options-taken-from-table-.patch
file removed
-104
SOURCES/0126-ipa-kra-install-manpage-document-domain-level-1.patch
file added
+72
SOURCES/0127-WebUI-Fix-showing-certificates-issued-by-sub-CA.patch
file removed
-57
SOURCES/0127-renew-agent-respect-CA-renewal-master-setting.patch
file added
+54
SOURCES/0128-WebUI-add-support-for-sub-CAs-while-revoking-certifi.patch
file removed
-252
SOURCES/0128-server-upgrade-always-fix-certmonger-tracking-reques.patch
file added
+93
SOURCES/0129-cainstance-use-correct-profile-for-lightweight-CA-ce.patch
file added
+182
SOURCES/0129-cert-fix-cert-find-certificate-when-the-cert-is-not-.patch
file removed
-46
SOURCES/0130-Make-host-service-cert-revocation-aware-of-lightweig.patch
file removed
-184
SOURCES/0130-renew-agent-allow-reusing-existing-certs.patch
file added
+260
SOURCES/0131-Fix-regression-introduced-in-ipa-certupdate.patch
file removed
-33
SOURCES/0131-renew-agent-always-export-CSR-on-IPA-CA-certificate-.patch
file added
+51
SOURCES/0132-Start-named-during-configuration-upgrade.patch
file removed
-48
SOURCES/0132-renew-agent-get-rid-of-virtual-profiles.patch
file added
+321
SOURCES/0133-Catch-DNS-exceptions-during-emptyzones-named.conf-up.patch
file removed
-54
SOURCES/0133-ipa-cacert-manage-add-external-ca-type.patch
file added
+97
SOURCES/0134-Fixing-adding-authenticator-indicators-to-host.patch
file added
+70
SOURCES/0134-trust-fetch-domains-contact-forest-DCs-when-fetching.patch
file removed
-60
SOURCES/0135-Added-plugins-directory-to-ipaclient-subpackages.patch
file added
+35
SOURCES/0135-ipa-passwd-use-correct-normalizer-for-user-principal.patch
file removed
-52
SOURCES/0136-Keep-NSS-trust-flags-of-existing-certificates.patch
file removed
-47
SOURCES/0136-ipaclient-fix-missing-RPM-ownership.patch
file added
+71
SOURCES/0137-Properly-handle-LDAP-socket-closures-in-ipa-otpd.patch
file removed
-81
SOURCES/0137-otptoken-add-yubikey-When-digits-not-provided-use-de.patch
file added
+36
SOURCES/0138-cert-add-revocation-reason-back-to-cert-find-output.patch
file removed
-54
SOURCES/0138-ipa-server-install-fix-uninstall.patch
file added
+34
SOURCES/0139-Make-httpd-publish-its-CA-certificate-on-DL1.patch
file removed
-34
SOURCES/0139-ca-install-merge-duplicated-code-for-DM-password.patch
file added
+85
SOURCES/0140-Add-cert-checks-in-ipa-server-certinstall.patch
file removed
-88
SOURCES/0140-installutils-add-DM-password-validator.patch
file added
+55
SOURCES/0141-WebUI-services-without-canonical-name-are-shown-corr.patch
file removed
-152
SOURCES/0141-ca-kra-install-validate-DM-password.patch
file added
+73
SOURCES/0142-Fix-missing-file-that-fails-DL1-replica-installation.patch
file removed
-55
SOURCES/0142-ipa-kra-install-fix-pkispawn-setting-for-pki_securit.patch
file added
+45
SOURCES/0143-certdb-add-named-trust-flag-constants.patch
file added
+344
SOURCES/0143-trustdomain-del-fix-the-way-how-subdomain-is-searche.patch
file removed
-46
SOURCES/0144-certdb-certs-make-trust-flags-argument-mandatory.patch
file added
+181
SOURCES/0144-spec-file-bump-minimal-required-version-of-389-ds-ba.patch
file removed
-40
SOURCES/0145-certdb-use-custom-object-for-trust-flags.patch
file added
+358
SOURCES/0145-replication-ensure-bind-DN-group-check-interval-is-s.patch
file removed
-37
SOURCES/0146-bindinstance-use-data-in-named.conf-to-determine-con.patch
file removed
-38
SOURCES/0146-install-trust-IPA-CA-for-PKINIT.patch
file added
+202
SOURCES/0147-client-install-fix-client-PKINIT-configuration.patch
file added
+254
SOURCES/0147-gracefully-handle-setting-replica-bind-dn-group-on-o.patch
file removed
-93
SOURCES/0148-add-missing-attribute-to-ipaca-replica-during-CA-top.patch
file removed
-60
SOURCES/0148-install-introduce-generic-Kerberos-Augeas-lens.patch
file added
+98
SOURCES/0149-Check-for-conflict-entries-before-raising-domain-lev.patch
file removed
-64
SOURCES/0149-server-install-fix-KDC-PKINIT-configuration.patch
file added
+292
SOURCES/0150-certprofile-mod-correctly-authorise-config-update.patch
file removed
-43
SOURCES/0150-ipapython.ipautil.run-Add-option-to-set-umask-before.patch
file added
+85
SOURCES/0151-certs-do-not-export-keys-world-readable-in-install_k.patch
file added
+33
SOURCES/0151-password-policy-Add-explicit-default-password-policy.patch
file removed
-192
SOURCES/0152-certs-do-not-export-CA-certs-in-install_pem_from_p12.patch
file added
+33
SOURCES/0152-ipa-kdb-search-for-password-policies-globally.patch
file removed
-38
SOURCES/0153-Set-up-DS-TLS-on-replica-in-CA-less-topology.patch
file removed
-29
SOURCES/0153-server-install-fix-KDC-certificate-validation-in-CA-.patch
file added
+203
SOURCES/0154-replica-install-respect-pkinit-cert-file.patch
file added
+56
SOURCES/0154-wait_for_entry-use-only-DN-as-parameter.patch
file removed
-63
SOURCES/0155-Wait-until-HTTPS-principal-entry-is-replicated-to-re.patch
file removed
-45
SOURCES/0155-cacert-manage-support-PKINIT.patch
file added
+74
SOURCES/0156-Use-proper-logging-for-error-messages.patch
file removed
-45
SOURCES/0156-server-certinstall-support-PKINIT.patch
file added
+163
SOURCES/0157-Do-not-configure-PKI-ajp-redirection-to-use-1.patch
file removed
-65
SOURCES/0157-ipa-ca-install-append-CA-cert-chain-into-etc-ipa-ca..patch
file added
+41
SOURCES/0158-added-ssl-verification-using-IPA-trust-anchor.patch
file removed
-27
SOURCES/0158-ca-cert-show-check-certificate_out-in-options.patch
file added
+73
SOURCES/0159-Fix-rare-race-condition-with-missing-ccache-file.patch
file added
+47
SOURCES/0159-ca-correctly-authorise-ca-del-ca-enable-and-ca-disab.patch
file removed
-46
SOURCES/0160-Remove-pkinit-anonymous-command.patchSOURCES/1002-Remove-pkinit-plugin.patch
file renamed
+59 -40
SOURCES/0160-compat-fix-Any-params-in-batch-and-dnsrecord.patch
file removed
-129
SOURCES/0161-krb5-make-sure-KDC-certificate-is-readable.patch
file added
+108
SOURCES/0162-Change-python-cryptography-to-python2-cryptography.patch
file added
+41
SOURCES/0163-Allow-for-multivalued-server-attributes.patch
file added
+270
SOURCES/0164-Refactor-the-role-attribute-member-reporting-code.patch
file added
+179
SOURCES/0165-Add-an-attribute-reporting-client-PKINIT-capable-ser.patch
file added
+275
SOURCES/0166-Add-the-list-of-PKINIT-servers-as-a-virtual-attribut.patch
file added
+34
SOURCES/0167-Add-pkinit-status-command.patch
file added
+201
SOURCES/0168-test_serverroles-Get-rid-of-MockLDAP-and-use-ldap2-i.patch
file added
+238
SOURCES/0169-only-stop-disable-simple-service-if-it-is-installed.patch
file added
+54
SOURCES/0170-Fix-index-definition-for-ipaAnchorUUID.patch
file added
+33
SOURCES/0171-httpinstance-wait-until-the-service-entry-is-replica.patch
file added
+126
SOURCES/0172-kdc.key-should-not-be-visible-to-all.patch
file added
+34
SOURCES/0173-ipa-kdb-reload-certificate-mapping-rules-periodicall.patch
file added
+221
SOURCES/0174-Avoid-possible-endless-recursion-in-RPC-call.patch
file added
+127
SOURCES/0175-rpc-preparations-for-recursion-fix.patch
file added
+103
SOURCES/0176-rpc-avoid-possible-recursion-in-create_connection.patch
file added
+175
SOURCES/0177-Changing-cert-find-to-do-not-use-only-primary-key-to.patch
file added
+102
SOURCES/0178-ipa-kdb-add-pkinit-authentication-indicator-in-case-.patch
file added
+101
SOURCES/0179-fix-incorrect-suffix-handling-in-topology-checks.patch
file added
+49
SOURCES/0180-server-certinstall-update-KDC-master-entry.patch
file added
+45
SOURCES/0181-pkinit-manage-introduce-ipa-pkinit-manage.patch
file added
+259
SOURCES/0182-server-upgrade-do-not-enable-PKINIT-by-default.patch
file added
+42
SOURCES/0183-Turn-off-OCSP-check.patch
file added
+196
SOURCES/0184-Only-warn-when-specified-server-IP-addresses-don-t-m.patch
file added
+244
SOURCES/0185-ipa-kdb-use-canonical-principal-in-certauth-plugin.patch
file added
+33
SOURCES/0186-Bump-version-of-python-gssapi.patch
file added
+66
SOURCES/0187-Add-code-to-be-able-to-set-default-kinit-lifetime.patch
file added
+84
SOURCES/0188-Revert-setting-sessionMaxAge-for-old-clients.patch
file added
+44
SOURCES/0189-Extend-the-advice-printing-code-by-some-useful-abstr.patch
file added
+93
SOURCES/0190-Prepare-advise-plugin-for-smart-card-auth-configurat.patch
file added
+293
SOURCES/0191-trust-mod-allow-modifying-list-of-UPNs-of-a-trusted-.patch
file added
+93
SOURCES/0192-WebUI-add-support-for-changing-trust-UPN-suffixes.patch
file added
+32
SOURCES/0193-kra-promote-Get-ticket-before-calling-custodia.patch
file added
+59
SOURCES/0194-Fix-local-IP-address-validation.patch
file added
+45
SOURCES/0195-ipa-dns-install-remove-check-for-local-ip-address.patch
file added
+32
SOURCES/0196-refactor-CheckedIPAddress-class.patch
file added
+88
SOURCES/0197-CheckedIPAddress-remove-match_local-param.patch
file added
+141
SOURCES/0198-Remove-ip_netmask-from-option-parser.patch
file added
+44
SOURCES/0199-replica-install-add-missing-check-for-non-local-IP-a.patch
file added
+29
SOURCES/0200-Remove-network-and-broadcast-address-warnings.patch
file added
+146
SOURCES/0201-ipa-sam-replace-encode_nt_key-with-E_md4hash.patch
file added
+80
SOURCES/0202-ipa_pwd_extop-do-not-generate-NT-hashes-in-FIPS-mode.patch
file added
+102
SOURCES/0203-Make-sure-we-check-ccaches-in-all-rpcserver-paths.patch
file added
+126
SOURCES/1001-Change-branding-to-IPA-and-Identity-Management.patch
file added
+999
SOURCES/1001-Hide-pkinit-functionality-from-production-version.patch
file removed
-190
SOURCES/1002-Package-copy-schema-to-ca.py.patch
file added
+44
SOURCES/1003-Remove-pkinit-references-from-tool-man-pages.patch
file removed
-138
SOURCES/1003-Revert-Increased-mod_wsgi-socket-timeout.patchSOURCES/1009-Revert-Increased-mod_wsgi-socket-timeout.patch
file renamed
+9 -10
SOURCES/1004-Change-branding-to-IPA-and-Identity-Management.patch
file removed
-753
SOURCES/1004-Remove-csrgen.patch
file added
+1666
SOURCES/1005-Remove-pylint-from-build-process.patch
file removed
-36
SOURCES/1006-Remove-i18test-from-build-process.patch
file removed
-26
SOURCES/1007-Do-not-build-tests.patch
file removed
-35
SOURCES/1008-RCUE.patch
file removed
-200
SOURCES/1010-WebUI-add-API-browser-is-tech-preview-warning.patch
file removed
-41
SOURCES/ipa-centos-branding.patch
file removed
-38
SPECS/ipa.spec
file modified
+1365 -572 
    import ipa-4.5.0-20.el7
file modified
+1 -1
file modified
+1 -1
file added
+39
file removed
-34
file added
+35
file removed
-31
file added
+68
file removed
-28
file added
+41
file removed
-28
file removed
-40
file added
+32
file removed
-89
file added
+49
file removed
-70
file added
+31
file added
+48
file removed
-38
file removed
-66
file added
+74
file added
+43
file removed
-30
file removed
-31
file added
+51
file removed
-92
file added
+43
file added
+47
file removed
-31
file added
+36
file removed
-29
file removed
-93
file added
+105
file removed
-41
file added
+341
file removed
-29
file added
+105
file removed
-39
file added
+132
file added
+609
file removed
-152
file removed
-157
file added
+55
file added
+85
file removed
-51
file added
+46
file removed
-32
file added
+37
file removed
-37
file added
+54
file removed
-89
file added
+35
file removed
-54
file removed
-95
file added
+69
file added
+40
file removed
-67
file removed
-35
file added
+296
file added
+103
file removed
-136
file added
+100
file removed
-38
file added
+36
file removed
-38
file removed
-54
file added
+38
file added
+195
file removed
-43
file removed
-65
file added
+33
file added
+27
file removed
-93
file removed
-51
file added
+54
file added
+236
file removed
-31
file removed
-71
file added
+40
file added
+34
file removed
-33
file added
+120
file removed
-86
file removed
-41
file added
+331
file removed
-37
file added
+71
file added
+68
file removed
-30
file removed
-138
file added
+47
file added
+49
file removed
-31
file removed
-46
file added
+243
file removed
-31
file added
+37
file removed
-52
file added
+32
file removed
-45
file added
+34
file added
+28
file removed
-29
file removed
-117
file added
+37
file added
+47
file removed
-35
file removed
-41
file added
+77
file added
+42
file removed
-52
file added
+70
file removed
-28
file added
+53
file removed
-89
file added
+47
file removed
-95
file added
+95
file removed
-52
file removed
-148
file added
+60
file added
+41
file removed
-415
file added
+34
file removed
-378
file added
+60
file removed
-48
file added
+49
file removed
-162
file removed
-77
file added
+39
file removed
-31
file added
+72
file added
+62
file removed
-42
file removed
-62
file added
+35
file removed
-32
file added
+145
file added
+104
file removed
-479
file removed
-81
file added
+53
file removed
-151
file added
+52
file removed
-32
file added
+289
file added
+135
file removed
-32
file added
+53
file removed
-86
file removed
-121
file added
+117
file removed
-34
file added
+93
file removed
-50
file added
+86
file added
+34
file removed
-125
file added
+414
file removed
-97
file added
+60
file removed
-104
file added
+31
file removed
-57
file removed
-51
file added
+36
file added
+55
file removed
-98
file added
+120
file removed
-122
file removed
-50
file added
+110
file removed
-79
file added
+221
file removed
-39
file added
+42
file removed
-132
file added
+35
file added
+122
file removed
-34
file added
+64
file removed
-1005
file added
+30
file removed
-382
file removed
-90
file added
+37
file added
+34
file removed
-71
file added
+317
file removed
-87
file removed
-78
file added
+62
file removed
-42
file added
+68
file added
+70
file removed
-69
file removed
-45
file added
+50
file removed
-34
file added
+244
file added
+205
file removed
-53
file added
+99
file removed
-43
file added
+79
file removed
-46
file removed
-61
file added
+110
file added
+31
file removed
-32
file added
+52
file removed
-130
file added
+62
file removed
-34
file removed
-59
file added
+104
file added
+83
file removed
-346
file added
+72
file removed
-30
file removed
-36
file added
+77
file removed
-112
file added
+39
file removed
-55
file added
+34
file added
+114
file removed
-37
file removed
-85
file added
+71
file removed
-132
file added
+62
file removed
-67
file added
+32
file added
+114
file removed
-31
file removed
-33
file added
+40
file removed
-44
file added
+47
file removed
-208
file added
+30
file removed
-36
file added
+31
file removed
-201
file added
+31
file added
+227
file removed
-106
file added
+31
file removed
-393
file added
+30
file removed
-38
file removed
-104
file added
+72
file removed
-57
file added
+54
file removed
-252
file added
+93
file added
+182
file removed
-46
file removed
-184
file added
+260
file removed
-33
file added
+51
file removed
-48
file added
+321
file removed
-54
file added
+97
file added
+70
file removed
-60
file added
+35
file removed
-52
file removed
-47
file added
+71
file removed
-81
file added
+36
file removed
-54
file added
+34
file removed
-34
file added
+85
file removed
-88
file added
+55
file removed
-152
file added
+73
file removed
-55
file added
+45
file added
+344
file removed
-46
file added
+181
file removed
-40
file added
+358
file removed
-37
file removed
-38
file added
+202
file added
+254
file removed
-93
file removed
-60
file added
+98
file removed
-64
file added
+292
file removed
-43
file added
+85
file added
+33
file removed
-192
file added
+33
file removed
-38
file removed
-29
file added
+203
file added
+56
file removed
-63
file removed
-45
file added
+74
file removed
-45
file added
+163
file removed
-65
file added
+41
file removed
-27
file added
+73
file added
+47
file removed
-46
SOURCES/0160-Remove-pkinit-anonymous-command.patch SOURCES/1002-Remove-pkinit-plugin.patch
file renamed
+59 -40
file removed
-129
file added
+108
file added
+41
file added
+270
file added
+179
file added
+275
file added
+34
file added
+201
file added
+238
file added
+54
file added
+33
file added
+126
file added
+34
file added
+221
file added
+127
file added
+103
file added
+175
file added
+102
file added
+101
file added
+49
file added
+45
file added
+259
file added
+42
file added
+196
file added
+244
file added
+33
file added
+66
file added
+84
file added
+44
file added
+93
file added
+293
file added
+93
file added
+32
file added
+59
file added
+45
file added
+32
file added
+88
file added
+141
file added
+44
file added
+29
file added
+146
file added
+80
file added
+102
file added
+126
file added
+999
file removed
-190
file added
+44
file removed
-138
SOURCES/1003-Revert-Increased-mod_wsgi-socket-timeout.patch SOURCES/1009-Revert-Increased-mod_wsgi-socket-timeout.patch
file renamed
+9 -10
file removed
-753
file added
+1666
file removed
-36
file removed
-26
file removed
-35
file removed
-200
file removed
-41
file removed
-38
file modified
+1365 -572

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation