0001-MAN-Mention-sssd-secrets-in-SEE-ALSO-section.patch
0002-split_on_separator-move-to-a-separate-file.patch
0003-util-move-string_in_list-to-util_ext.patch
0004-certmap-add-new-library-libsss_certmap.patch
0005-certmap-add-placeholder-for-OpenSSL-implementation.patch
0006-sysdb-add-sysdb_attrs_copy.patch
0007-sdap_get_users_send-new-argument-mapped_attrs.patch
0008-LDAP-always-store-the-certificate-from-the-request.patch
0009-sss_cert_derb64_to_ldap_filter-add-sss_certmap-suppo.patch
0010-sysdb-add-certmap-related-calls.patch
0011-IPA-add-certmap-support.patch
0012-nss-idmap-add-sss_nss_getlistbycert.patch
0013-nss-allow-larger-buffer-for-certificate-based-reques.patch
0014-IPA-Add-s2n-request-to-string-function.patch
0015-IPA-Enhance-debug-logging-for-ipa-s2n-operations.patch
0016-UTIL-iobuf-Make-input-parameter-for-the-readonly-ope.patch
0017-UTIL-Fix-a-typo-in-the-tcurl-test-tool.patch
0018-UTIL-Add-SAFEALIGN_COPY_UINT8_CHECK.patch
0019-UTIL-Add-utility-macro-cli_creds_get_gid.patch
0020-UTIL-Add-type-specific-getsetters-to-sss_iobuf.patch
0021-UTIL-krb5-principal-un-marshalling.patch
0022-KCM-Initial-responder-build-and-packaging.patch
0023-KCM-request-parsing-and-sending-a-reply.patch
0024-KCM-Implement-an-internal-ccache-storage-and-retriev.patch
0025-KCM-Add-a-in-memory-credential-storage.patch
0026-KCM-Implement-KCM-server-operations.patch
0027-MAN-Add-a-manual-page-for-sssd-kcm.patch
0028-TESTS-Add-integration-tests-for-the-KCM-responder.patch
0029-SECRETS-Create-DB-path-before-the-operation-itself.patch
0030-SECRETS-Return-a-nicer-error-message-on-request-with.patch
0031-SECRETS-Store-ccaches-in-secrets-for-the-KCM-respond.patch
0032-TCURL-Support-HTTP-POST-for-creating-containers.patch
0033-KCM-Store-ccaches-in-secrets.patch
0034-KCM-Make-the-secrets-ccache-back-end-configurable-ma.patch
0035-KCM-Queue-requests-by-the-same-UID.patch
0036-KCM-Idle-terminate-the-responder-if-the-secrets-back.patch
0037-CONFIGURE-Fix-fallback-if-pkg-config-for-uuid-is-mis.patch
0038-intg-fix-configure-failure-with-strict-cflags.patch
0039-intg-Remove-bashism-from-intgcheck-prepare.patch
0040-UTIL-Introduce-subdomain_create_conf_path.patch
0041-SUBDOMAINS-Allow-use_fully_qualified_names-for-subdo.patch
0042-CACHE_REQ-Descend-into-subdomains-on-lookups.patch
0043-NSS-TESTS-Fix-subdomains-attribution.patch
0044-NSS-TESTS-Improve-setup-teardown-for-subdomains-test.patch
0045-NSS-TESTS-Include-searches-for-non-fqnames-members-o.patch
0046-SYSDB-Add-methods-to-deal-with-the-domain-s-resoluti.patch
0047-SYSDB-TESTS-Add-tests-for-the-domain-s-resolution-or.patch
0048-IPA-Get-ipaDomainsResolutionOrder-from-ipaConfig.patch
0049-IPA_SUBDOMAINS-Rename-_refresh_view-to-_refresh_view.patch
0050-IPA-Get-ipaDomainsResolutionOrder-from-IPA-ID-View.patch
0051-DLINKLIST-Add-DLIST_FOR_EACH_SAFE-macro.patch
0052-CACHE_REQ-Make-use-of-domainResolutionOrder.patch
0053-UTIL-Expose-replace_char-as-sss_replace_char.patch
0054-Add-domain_resolution_order-config-option.patch
0055-ssh-handle-binary-keys-correctly.patch
0056-ssh-add-support-for-certificates-from-non-default-vi.patch
0057-krb5-return-to-responder-that-pkinit-is-not-availabl.patch
0058-IPA-add-mapped-attributes-to-user-from-trusted-domai.patch
0059-IPA-lookup-AD-users-by-certificates-on-IPA-clients.patch
0060-IPA-enable-AD-user-lookup-by-certificate.patch
0061-CONFDB-Introduce-SSSD-domain-type-to-distinguish-POS.patch
0062-CONFDB-Allow-configuring-application-sections-as-non.patch
0063-CACHE_REQ-Domain-type-selection-in-cache_req.patch
0064-IFP-Search-both-POSIX-and-non-POSIX-domains.patch
0065-IFP-ListByName-Don-t-crash-when-no-results-are-found.patch
0066-PAM-Remove-unneeded-memory-context.patch
0067-PAM-Add-application-services.patch
0068-SYSDB-Allow-storing-non-POSIX-users.patch
0069-SYSDB-Only-generate-new-UID-in-local-domain.patch
0070-LDAP-save-non-POSIX-users-in-application-domains.patch
0071-LDAP-Relax-search-filters-in-application-domains.patch
0072-KRB5-Authenticate-users-in-a-non-POSIX-domain-using-.patch
0073-KCM-Fix-off-by-one-error-in-secrets-key-parsing.patch
0074-tcurl-add-support-for-ssl-and-raw-output.patch
0075-tcurl-test-refactor-so-new-options-can-be-added-more.patch
0076-tcurl-test-add-support-for-raw-output.patch
0077-tcurl-test-add-support-for-tls-settings.patch
0078-tcurl-add-support-for-http-basic-auth.patch
0079-tcurl-test-allow-to-set-custom-headers.patch
0080-tcurl-test-add-support-for-client-certificate.patch
0081-ci-do-not-build-secrets-on-rhel6.patch
0082-build-make-curl-required-by-secrets.patch
0083-secrets-use-tcurl-in-proxy-provider.patch
0084-secrets-remove-http-parser-code-in-proxy-provider.patch
0085-secrets-allow-to-configure-certificate-check.patch
0086-secrets-support-HTTP-basic-authentication-with-proxy.patch
0087-secrets-fix-debug-message.patch
0088-secrets-always-add-Content-Length-header.patch
0089-sss_iobuf-fix-read-shadows-a-global-declaration.patch
0090-configure-fix-typo.patch
0091-pam_test_client-add-service-and-environment-to-PAM-t.patch
0092-pam_test_client-add-SSSD-getpwnam-lookup.patch
0093-sss_sifp-update-method-names.patch
0094-pam_test_client-add-InfoPipe-user-lookup.patch
0095-sssctl-integrate-pam_test_client-into-sssctl.patch
0096-i18n-adding-sssctl-files.patch
0097-responders-do-not-leak-selinux-context-on-clients-de.patch
0098-ipa_s2n_get_acct_info_send-provide-correct-req_input.patch
0099-config-check-Message-when-sssd.conf-is-missing.patch
0100-sbus-check-connection-for-NULL-before-unregister-it.patch
0101-selinux-Do-not-fail-if-SELinux-is-not-managed.patch
0102-UTIL-Use-max-15-characters-for-AD-host-UPN.patch
0103-Move-sized_output_name-and-sized_domain_name-into-re.patch
0104-IFP-Use-sized_domain_name-to-format-the-groups-the-u.patch
0105-RESPONDER-Fallback-to-global-domain-resolution-order.patch
0106-NSS-TESTS-Improve-non-fqnames-tests.patch
0107-CACHE_REQ-Allow-configurationless-shortname-lookups.patch
0108-CACHE_REQ_DOMAIN-Add-some-comments-to-cache_req_doma.patch
0109-RESPONDER_COMMON-Improve-domaiN_resolution_order-deb.patch
0110-CACHE_REQ_DOMAIN-debug-the-set-domain-resolution-ord.patch
0111-SECRETS-remove-unused-variable.patch
0112-IPA-Improve-DEBUG-message-if-a-group-has-no-ipaNTSec.patch
0113-IPA-Improve-s2n-debug-message-for-missing-ipaNTSecur.patch
0114-CONFDB-Fix-standalone-application-domains.patch
0115-utils-add-sss_domain_is_forest_root.patch
0116-ad-handle-forest-root-not-listed-in-ad_enabled_domai.patch
0117-SDAP-Fix-handling-of-search-bases.patch
0118-overrides-add-certificates-to-mapped-attribute.patch
0119-AD-Make-ad_account_can_shortcut-reusable-by-SSSD-on-.patch
0120-LDAP-AD-Do-not-fail-in-case-rfc2307bis_nested_groups.patch
0121-PAM-check-matching-certificates-from-all-domains.patch
0122-DP-Reduce-Data-Provider-log-level-noise.patch
0123-NSS-Move-output-name-formatting-to-utils.patch
0124-CACHE_REQ-Add-a-new-cache_req_ncache_filter_fn-plugi.patch
0125-CACHE_REQ_RESULT-Introduce-cache_req_create_ldb_resu.patch
0126-CACHE_REQ-Make-use-of-cache_req_ncache_filter_fn.patch
0127-SERVER_MODE-Update-sdap-lists-for-each-ad_ctx.patch
0128-sss_nss_getlistbycert-return-results-from-multiple-d.patch
0129-CACHE_REQ-Avoid-using-of-uninitialized-value.patch
0130-CACHE_REQ-Ensure-the-domains-are-updated-for-filter-.patch
0131-AD-SUBDOMAINS-Fix-search-bases-for-child-domains.patch
0132-KRB5-Advise-the-user-to-inspect-the-krb5_child.log-i.patch
0133-cache_req-use-the-right-negative-cache-for-initgroup.patch
0134-test-make-sure-p11_child-is-build-for-pam-srv-tests.patch
0135-pam-properly-support-UPN-logon-names.patch
0136-KCM-Fix-the-per-client-serialization-queue.patch
0137-TESTS-Add-a-test-for-parallel-execution-of-klist.patch
0138-ipa-filter-IPA-users-from-extdom-lookups-by-certific.patch
0139-krb5-accept-changed-principal-if-krb5_canonicalize-T.patch
0140-IPA-Avoid-using-uninitialized-ret-value-when-skippin.patch
0141-IPA-Return-from-function-after-marking-a-request-as-.patch
0142-HBAC-Do-not-rely-on-originalMemberOf-use-the-sysdb-m.patch
0143-VALIDATORS-Add-subdomain-section.patch
0144-VALIDATORS-Remove-application-section-domain.patch
0145-VALIDATORS-Escape-special-regex-chars.patch
0146-TESTS-Add-unit-tests-for-cfg-validation.patch
0147-MAN-Fix-typo-in-trusted-domain-section.patch
0148-VALIDATORS-Change-regex-for-app-domains.patch
0149-VALIDATORS-Detect-inherit_from-in-normal-domain.patch
0150-VALIDATOR-prevent-duplicite-report-from-subdomain-se.patch
0151-test_config_check-Fix-few-issues.patch
0152-KRB5-Fix-access_provider-krb5.patch
0153-BUILD-Improve-error-messages-for-optional-dependenci.patch
0154-RESPONDER_COMMON-update-certmaps-in-responders.patch
0155-tests-fix-test_pam_preauth_cert_no_logon_name.patch
0156-pam_sss-add-support-for-SSS_PAM_CERT_INFO_WITH_HINT.patch
0157-add_pam_cert_response-add-support-for-SSS_PAM_CERT_I.patch
0158-PAM-send-user-name-hint-response-when-needed.patch
0159-sysdb-sysdb_get_certmap-allow-empty-certmap.patch
0160-sssctl-show-user-name-used-for-authentication-in-use.patch
0161-RESP-Provide-a-reusable-request-to-fully-resolve-inc.patch
0162-IFP-Only-format-the-output-name-to-the-short-version.patch
0163-IFP-Resolve-group-names-from-GIDs-if-required.patch
0164-ldap-handle-certmap-errors-gracefully.patch
0165-SECRETS-Fix-warning-Wpointer-bool-conversion.patch
0166-IPA-Fix-the-PAM-error-code-that-auth-code-expects-to.patch
0167-pam_sss-Fix-checking-of-empty-string-cert_user.patch
0168-CACHE_REQ-Simplify-_search_ncache_filter.patch
0169-CACHE_REQ_SEARCH-Check-for-filtered-users-groups-als.patch
0170-cache_req-Do-not-use-default_domain_suffix-with-netg.patch
0171-krb5-disable-enterprise-principals-during-password-c.patch
0172-pam_sss-Fix-leaking-of-memory-in-case-of-failures.patch
0173-IFP-Add-domain-and-domainname-attributes-to-the-user.patch
0174-IFP-Fix-error-handling-in-ifp_user_get_attr_handle_r.patch
0175-SYSDB-Return-ERR_NO_TS-when-there-s-no-timestamp-cac.patch
0176-SYSDB-Internally-expose-sysdb_search_ts_matches.patch
0177-SYSDB-Make-the-usage-of-the-filter-more-generic-for-.patch
0178-SYSDB_OPS-Mark-an-entry-as-expired-also-in-the-times.patch
0179-SYSDB_OPS-Invalidate-a-cache-entry-also-in-the-ts_ca.patch
0180-SYSDB-Introduce-_search_-users-groups-_by_timestamp.patch
0181-LDAP_ID_CLEANUP-Use-sysdb_search_-_by_timestamp.patch
0182-krb5-use-plain-principal-if-password-is-expired.patch
0183-RESPONDER-Use-fqnames-as-output-when-needed.patch
0184-DOMAIN-Add-sss_domain_info_-get-set-_output_fqnames.patch
0185-GPO-Fix-typo-in-DEBUG-message.patch
0186-SDAP-Update-parent-sdap_list.patch
0187-RESPONDERS-Fix-terminating-idle-connections.patch
0188-TESTS-Integration-test-for-idle-timeout.patch
0189-MAN-Document-that-client_idle_timeout-can-t-be-short.patch
0190-ad_account_can_shortcut-shortcut-if-ID-is-unknown.patch
0191-sudo-add-a-threshold-option-to-reduce-size-of-rules-.patch
0192-libwbclient-Change-return-code-for-wbcAuthenticateUs.patch
0193-IPA-fix-handling-of-certmap_ctx.patch
0194-certmap-make-sure-eku_oid_list-is-always-allocated.patch
0195-cache_req-Look-for-name-attribute-also-in-nss_cmd_ge.patch
0196-sssd_client-add-mutex-protected-call-to-the-PAC-resp.patch
0197-sysdb-sanitize-search-filter-input.patch
0198-ipa-make-sure-view-name-is-initialized-at-startup.patch
0199-CACHE_REQ-Copy-the-cr_domain-list-for-each-request.patch
0200-cache_req-Correction-of-cache_req-debug-string-ID-fo.patch
0201-cache-Check-for-max_id-min_id-in-cache_req.patch
0202-sudo-always-use-srv_opts-from-id-context.patch
0203-SELINUX-Use-getseuserbyname-to-get-IPA-seuser.patch
0204-SELINUX-Check-if-SELinux-is-managed-in-selinux_child.patch
0205-util-Add-sss_-prefix-to-some-functions.patch
0999-NOUPSTREAM-Default-to-root-if-sssd-user-is-not-spec