From fc937b3b5ecc2743546cd2e0fa0193c390113579 Mon Sep 17 00:00:00 2001
From: Fraser Tweedale <ftweedal@redhat.com>
Date: Wed, 25 Sep 2019 16:43:25 +1000
Subject: [PATCH] Bump krb5 min version

krb5-1.15.1-36 introduced a ccache behavioural change that broke
lightweight CA key replication.  The preceding commits (backported
from the ipa-4-7 branch) fix this issue but this commit ensure that
the correct version of krb5 is used with the updated FreeIPA code.

Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1755223
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
---
 freeipa.spec.in | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/freeipa.spec.in b/freeipa.spec.in
index 4cca8b5159e8e38f79bad8df8af76ac7b8ed5387..0f96778f758cb21c01e31ff35e70c79f020aa2d3 100644
--- a/freeipa.spec.in
+++ b/freeipa.spec.in
@@ -49,8 +49,8 @@
 
 %global alt_name ipa
 %if 0%{?rhel}
-# 1.15.1-7: certauth (http://krbdev.mit.edu/rt/Ticket/Display.html?id=8561)
-%global krb5_version 1.15.1-4
+# 1.15.1-36: https://bugzilla.redhat.com/show_bug.cgi?id=1755223
+%global krb5_version 1.15.1-36
 # 0.7.16: https://github.com/drkjam/netaddr/issues/71
 %global python_netaddr_version 0.7.5-8
 # Require 4.7.0 which brings Python 3 bindings
-- 
2.20.1