[Pkg-sssd-devel] [Git][sssd-team/sssd][master] 59 commits: FILE WATCH: Callback not executed on link or relative path

[Timo Aaltonen (@tjaalton)]

Timo Aaltonen pushed to branch master at Debian SSSD packaging / sssd


Commits:
eb43c240 by Alejandro López at 2023-05-15T11:21:58+02:00
FILE WATCH: Callback not executed on link or relative path

When the watched file was a symbolic link or was a relative path,
the calback was not executed because the filename comparison
was wrongly considering the files to be different.

The solution is to normalize the filenames before comparing them.
This cannot be easily done at setup because the file could not
exist at that moment.

The test was adapted to check this situation.

Resolves: https://github.com/SSSD/sssd/issues/6718

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Pavel Březina <pbrezina at redhat.com>
(cherry picked from commit b2a4ff2aa67707c226c5835c1fcac042fce1cae3)

- - - - -
0c6f4926 by Alejandro López at 2023-05-15T11:21:58+02:00
TESTS: Fix doble slash comments

Use /* */ instead of //.

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Pavel Březina <pbrezina at redhat.com>
(cherry picked from commit 90c5490723e82bdf633900f67a424b53cd50112f)

- - - - -
d104c01f by Sumit Bose at 2023-05-15T11:22:50+02:00
sysdb: fix string comparison when checking for overrides

When checking if the input group-name is the original name from AD or an
overwritten one the comparison is currently done case sensitive. Since
AD handles names case-insensitive and hence SSSD should do this as well
this comparison might cause issues.

The patch replace the case sensitive comparison with a comparison with
respects the case_sensitive of the domain the object is coming from.

Resolves: https://github.com/SSSD/sssd/issues/6720

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
(cherry picked from commit 01d02794e02f051ea9a78cd63b30384de3e7c9b0)

- - - - -
425d88fa by Iker Pedrosa at 2023-05-15T11:25:39+02:00
passkey: write mapping data to file

Signed-off-by: Iker Pedrosa <ipedrosa at redhat.com>

Reviewed-by: Andre Boscatto <aboscatt at redhat.com>
Reviewed-by: Justin Stephenson <jstephen at redhat.com>
Reviewed-by: Pavel Březina <pbrezina at redhat.com>
(cherry picked from commit 906a677c959f4a28dd95775b0d9399dd9e48f1e0)

- - - - -
15dd3545 by Alexey Tikhonov at 2023-05-19T13:22:53+02:00
MAN: fix issue with multithread build

When 'make' runs using multiple threads it can build several man pages
in parallel, executing the same '.5.xml.5:' rule. This can result in
a race condition where multiple threads access the same 'sssd_user_name.include'
file.
To avoid this make 'sssd_user_name.include' file a rule dependency.
But "Suffix rules cannot have any prerequisites of their own", and suffix
rules are obsolete anyway, so change it to pattern rules.

Reviewed-by: Alejandro López <allopez at redhat.com>
Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Justin Stephenson <jstephen at redhat.com>
(cherry picked from commit df8472ccb20e0b77573b5c3e8cc25803bc7b0022)

- - - - -
6d060818 by Madhuri Upadhye at 2023-05-19T16:16:09+02:00
Tests: Gating fixes for RHEL8.9 and RHEL9.3

Following three minor changes are:

for test_config_validation.py,
1. 'sssctl config-check' returning retuncode as a 1 when
   we dont have sssd.conf file.
2. Change the 'sssctl' command which only check the
   non-default snippet directory with option -s.

for test_offline.py,
3. Add extra restart of sssd to get offline log message
   using journalctl command.

for test_ssh_
4. Replace pexpect_ssh to auth_from_client method to login
the user.

Signed-off-by: Madhuri Upadhye <mupadhye at redhat.com>

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
Reviewed-by: Shridhar Gadekar <sgadekar at redhat.com>
(cherry picked from commit 2965db1cce2d9c79e58626834f96f0283d26cfff)

- - - - -
60806f59 by Shridhar Gadekar at 2023-05-22T09:23:25+02:00
Tests: move unstable default_debug to tier2

moved default debug level tests to tier2

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
(cherry picked from commit 535a8c6a749a96e23510a26eceb5953b99f41cde)

- - - - -
de75ff3c by aborah at 2023-05-22T09:23:51+02:00
Tests: Fix gating tests for 9.3

It fixes test from tire1_2 that is failling in gating

1. src/tests/multihost/alltests/test_automount.py   there is issue with autofs email thead: [CRASH] prep Package: autofs-1:5.1.7-36.el9
2. src/tests/multihost/alltests/test_automount_from_bash.py test did not rised error as last cd - command was successful, so i have remove cd - part(/folder1/folder2/projects does not exists)
3. src/tests/multihost/alltests/test_ldap_password_policy.py  password provied was wrong.
4. src/tests/multihost/alltests/test_backtrace.py ---  need to modify this test as per current log format

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
Reviewed-by: Shridhar Gadekar <sgadekar at redhat.com>
(cherry picked from commit 2096f45527d4513ae52547fafd383bd2542d7f79)

- - - - -
33f10c4a by Dan Lavu at 2023-05-23T12:54:32+02:00
Updating ad_multihost test

* fixing raiseonerr=False to disjoin function
* cleaned up code since the line limit has increased
* added AD from forest1 to resolv.conf and /etc/hosts
* updating test case documentation to clarify the test

Signed-off-by: Dan Lavu <dlavu at redhat.com>

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
Reviewed-by: Madhuri Upadhye <mupadhye at redhat.com>
Reviewed-by: Scott Poore <spoore at redhat.com>
(cherry picked from commit 69f93bf817706acb7830428fd81d78dc207468c0)

- - - - -
270f0ba0 by Justin Stephenson at 2023-05-25T10:20:24+02:00
Passkey: Adjust IPA passkey config error log level

IPA passkey configuration may not be retrieved if IPA
does not contain passkey support. Lower the error level of log
messages associated with this failure.

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
(cherry picked from commit fe751c316c631240311fba62409f2b6a38be0d50)

- - - - -
16275d9b by Justin Stephenson at 2023-05-25T10:20:24+02:00
IPA: Log missing IPA config data on default level

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
(cherry picked from commit fa326be9cb29d97d6000e783b02656f60f7f8fb2)

- - - - -
e5dfa2a8 by Sumit Bose at 2023-05-25T10:21:11+02:00
AD: add missing AD_AT_DOMAIN_NAME for sub-domain search

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Justin Stephenson <jstephen at redhat.com>
(cherry picked from commit 39b6337f32b76842be65802b0b0aa86050c8aa95)

- - - - -
2466310e by Jakub Vavra at 2023-05-25T16:12:26+02:00
Tests: Modify expiring/expired password test for RHEL 8.

Reviewed-by: Anuj Borah <aborah at redhat.com>

- - - - -
4d2cf0b6 by Sumit Bose at 2023-05-26T12:53:52+02:00
krb5: make sure sockets are closed on timeouts

If krb5_child runs into a timeout the backend currently does not close
the I/O sockets because handle_child_done() is not called when the
timeout handlers are acting. To make sure the signal handler can close
the sockets the 'in_use' member of struct child_io_fds is set to
'false'.

Resolves: https://github.com/SSSD/sssd/issues/6744

Reviewed-by: Alejandro López <allopez at redhat.com>
Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
(cherry picked from commit 455611952f90ed0cefaff1e840623ea14ac06be1)

- - - - -
a74d42df by Shridhar Gadekar at 2023-05-26T12:55:14+02:00
Tests: fix default debug level for typo

modified docstrings

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
Reviewed-by: Madhuri Upadhye <mupadhye at redhat.com>
(cherry picked from commit 11eef225c452982877ff26b7984d0351de41da87)

- - - - -
58855b71 by Alejandro López at 2023-05-26T12:58:28+02:00
SYSDB: Make enum sysdb_obj_type public

Make enum sysdb_obj_type usable outside of sysdb_ops.c.

Reviewed-by: Sumit Bose <sbose at redhat.com>
Reviewed-by: Tomáš Halman <thalman at redhat.com>
(cherry picked from commit 1d69fdb73e5cbaf9789fbb153fa2bc55644e5ec1)

- - - - -
3eb4c4a7 by Alejandro López at 2023-05-26T12:58:28+02:00
IPA: Use a more specific filter when searching for BE_REQ_USER_AND_GROUP

The previous filter for overrides would sometimes find more than one entry
because it was looking for a uidNumber or gidNumber:
(&(objectClass=ipaOverrideAnchor)(|(uidNumber=XXXX)(gidNumber=XXXX)))

The new filter looks for a specific user override or a specific group
override:
(|(&(objectClass=ipaUserOverride)(uidNumber=XXXX))
  (&(objectClass=ipaGroupOverride)(gidNumber=XXXX)))

This filter could return two override entries (one for a group and one
for a user). That case must be taken into consideration and discard the
user override in favor of the group override.

Reviewed-by: Sumit Bose <sbose at redhat.com>
Reviewed-by: Tomáš Halman <thalman at redhat.com>
(cherry picked from commit 99d0ab82e98a8f1e3cab23d871f36b9d890e034c)

- - - - -
0192c1c8 by Jakub Vavra at 2023-05-29T06:54:01+02:00
Tests: Add conditional skip for simple ifp test.

Reviewed-by: Madhuri Upadhye <mupadhye at redhat.com>
(cherry picked from commit 469905bfabdda66555bd179eb7b6ac7b3cd875d1)

- - - - -
6239f50f by Alejandro López at 2023-06-05T11:27:57+02:00
PAM: Fix a possible segmentation fault

Calls to add_expired_warning(struct pam_data *pd, long exp_time) must
provide a non-NULL pd. In one of the cases this function is called
without checking that pd is not NULL. We here fix that.

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit 7f28816479c694ff95939e3becfbcd43423a5744)

- - - - -
f63a54c3 by Sumit Bose at 2023-06-05T11:28:59+02:00
fail_over: protect against a segmentation fault

A missing server name in struct fo_server will cause a segmentation
fault. Currently it is unclear why the server name is missing at this
point. To avoid the segmentation fault it is checked before if the
server name is missing. Additionally the state of some internal
structures is added to the debug logs to help debugging why the server
name is missing.

Resolves: https://github.com/SSSD/sssd/issues/6659

Reviewed-by: Alejandro López <allopez at redhat.com>
Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
(cherry picked from commit 8a8869994745429b3f5535a5d0b91f1d0b2fa723)

- - - - -
b9a0b424 by aborah at 2023-06-08T07:56:29+02:00
Tests: Netgroups do not honor entry cache nowait percentage

https://gitlab.cee.redhat.com/sssd/sssd-qe/-/blob/RHEL8.8/client/ldap_provider/ldap_id_ldap_auth/bugzilla-automation.sh#L280

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
Reviewed-by: Shridhar Gadekar <sgadekar at redhat.com>
(cherry picked from commit 75ae9e87a264b17dac45f798fb7b4ba7057fc494)

- - - - -
74c6fefe by Shridhar Gadekar at 2023-06-08T07:58:25+02:00
Tests: move test_access_control.py to tier2

Tests moved to tier2, tests are failing to parse
the logs. gating is blocked. same testsuite is available
in bash

Reviewed-by: Dan Lavu <dlavu at redhat.com>
(cherry picked from commit 587cd8dc2004adfd6c6aab4ef928ef2d89ae3f94)

- - - - -
6125efe1 by Shridhar Gadekar at 2023-06-12T09:34:04+02:00
Tests: Adding c-ares markers for related tests

removing flaky ones

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
(cherry picked from commit 27dd3f508b23ae61c757cce6c5b9ca303d7aaf09)

- - - - -
d9749ba1 by Alexey Tikhonov at 2023-06-12T11:17:37+02:00
RESPONDER: avoid log backtrace in case access denined

Resolves: https://github.com/SSSD/sssd/issues/6442

Reviewed-by: Sumit Bose <sbose at redhat.com>
Reviewed-by: Tomáš Halman <thalman at redhat.com>
(cherry picked from commit 076a1136ab8650d962c5a462cbed82bd96ba176a)

- - - - -
640f4158 by Pavel Březina at 2023-06-12T11:49:29+02:00
ipa: correctly remove missing attributes on netgroup update

When a netgroup is updated, previously it did not remove the missing
attributes. This caused an issue especially when a member was removed.

Resolves: https://github.com/SSSD/sssd/issues/6652

Reviewed-by: Alejandro López <allopez at redhat.com>
Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
(cherry picked from commit b033b0dda972e885f63234aa81dca317c8234c2c)

- - - - -
4b0683bd by Alejandro López at 2023-06-12T20:43:25+02:00
AD: The shortcut must be used equally on _send() and _done()

The conditions to use the shortcut in sdap_ad_tokengroups_initgroups_send()
were modified without also changing sdap_ad_tokengroups_initgroups_done().

To avoid future problems like this, and because the condition is becoming
more complex to evaluate, we evaluate the condition in the _send() function
and keep the result in the state, for the _done() function to use it.

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit dc9466e7371b98bc972ae2b3521f163f31a59a84)

- - - - -
e4e8e344 by Madhuri Upadhye at 2023-06-13T12:13:58+02:00
Tests: Add package for tc command

Adding package iproute-tc to get tc command.

Signed-off-by: Madhuri Upadhye <mupadhye at redhat.com>

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
Reviewed-by: Shridhar Gadekar <sgadekar at redhat.com>
(cherry picked from commit 9c50b8ec14f0e167c937446a64213ef59eaa96ef)

- - - - -
02b158ff by Shridhar Gadekar at 2023-06-13T12:18:44+02:00
Test: dropping unstable dyndns tests

Dropping unstable dyndns tests from c-ares gating

(cherry picked from commit 6efb2779b79b86121f50852416e3ae63feac31a0)

- - - - -
bb64f2cd by aborah at 2023-06-15T10:25:11+02:00
Tests: Skip test_0001_bz2021196

The test is unstable on other architectures so it is skipped for now.

Reviewed-by: Madhuri Upadhye <mupadhye at redhat.com>
(cherry picked from commit d14be798bdebcc3587769c2406ee025340cf5162)

- - - - -
58a007de by Jakub Vavra at 2023-06-15T10:26:56+02:00
Tests: Skip test_0016_ad_parameters_ad_hostname_valid on other architectures.

The test is unstable on other architectures so it is skipped for now.
Reordered the asserts so we can seed if the connection to AD works
as looking for log message has a lower priority.

Reviewed-by: Madhuri Upadhye <mupadhye at redhat.com>
(cherry picked from commit 3e3d098646f7cae90857f9a92348aff14fd65429)

- - - - -
19fecbf1 by Jakub Vavra at 2023-06-16T13:22:09+02:00
Tests: Improve stability of test_0004_bz2110091

Reviewed-by: Shridhar Gadekar <sgadekar at redhat.com>
(cherry picked from commit 54903c0e38f534bd48f890658b55c626431dd6d5)

- - - - -
05bc18ce by aborah at 2023-06-19T06:03:54+00:00
Tests: Add ssh module that is fast, reliable, accurate

Sssd tests seems to be failing with current ssh module without any reason.

Reviewed-by: Jakub Vávra <jvavra at redhat.com>
Reviewed-by: Scott Poore <spoore at redhat.com>
(cherry picked from commit 34dba5a3836a121a6485ec71ffc7234cd5ec24c0)

- - - - -
895d194f by Sumit Bose at 2023-06-19T20:41:10+02:00
ldap: return failure if there are no grace logins left

If a user's password is expired while changing the LDAP password SSSD
tries to change the password even if the initial bind of the user failed
due to exhausted grace logins.

With this patch the change password request will be aborted if the bind
fails indicating that there are no grace logins left.

Resolves: https://github.com/SSSD/sssd/issues/6768

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Pavel Březina <pbrezina at redhat.com>
(cherry picked from commit d99aa97dae7236fd056e21ea3d48997edf1b9823)

- - - - -
5008f0f9 by Sumit Bose at 2023-06-19T20:45:47+02:00
ad: use sAMAccountName to lookup hosts

To determine which GPOs apply to the host running SSSD the full DN of
the host object in AD is needed. To fine this object we use the NetBIOS
name of the host which is stored in AD in the sAMAccountName attribute.
Using other attributes, e.g. if ldap_user_name is set to a different
attribute, will most probably cause a failure since those attributes are
not managed as expected for host object. As a result sAMAccountName
should be hardcoded here to avoid issues.

Resolves: https://github.com/SSSD/sssd/issues/6766

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Justin Stephenson <jstephen at redhat.com>
(cherry picked from commit 67c11c2ebae843f7ddd6b857efa2e1f6449986f3)

- - - - -
5711bb25 by Pavel Březina at 2023-06-19T20:48:03+02:00
cache_req: remove unused field cache_behavior from state

This field is not used anywhere. Instead, we use value from struct
cache_req.

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Tomáš Halman <thalman at redhat.com>
(cherry picked from commit 8b014bf1592454520ef6d113be9a5f1fd02e1285)

- - - - -
bc5fe9eb by Pavel Březina at 2023-06-19T20:48:03+02:00
cache_req: fix propagation of offline status with cache_first = true

During the first iteration where the provider was not yet contacted,
we set state->dp_success to false and if the record was not found we
returned ERR_OFFLINE instead of ENOENT which causes the cache_req to
continue and search the provider.

Resolves: https://github.com/SSSD/sssd/issues/6739

Reviewed-by: Alexey Tikhonov <atikhono at redhat.com>
Reviewed-by: Tomáš Halman <thalman at redhat.com>
(cherry picked from commit 32f578229d38766b208f33130e28317ca69001d2)

- - - - -
d3c3408e by Alexey Tikhonov at 2023-06-21T15:24:04+02:00
SYSDB: in case (ignore_group_members == true) group is actually complete

Example workflow:
 - SSSD client is enrolled into AD domain (Token-Groups are enabled)
 - `id $user` is executed
 - initgroups() is called for this user
 - during processing of initgroups() sssd_be obtains a list of group SIDs
   user is a member of, and then partially resolves those groups and adds
   it to the local cache as "incomplete" (i.e. 'expired')
 - as a next step `id` calls getgrnam() for every group in initgroups() list
 - since groups are saved into the cache as "incomplete" (technically - "expired")
   this again results in LDAP search of this group.
   But if `ignore_group_members = true` this search doesn't provide
   new information. "Incomplete" groups could be used instead.

Reviewed-by: Pavel Březina <pbrezina at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit 2fd5374fdf78bc7330bd9e6f3b86bec86bdf592b)

- - - - -
50922242 by Alejandro López at 2023-06-23T14:47:38+02:00
TEST: Fix pam-srv-tests to correctly treat the test name

Test suite pam-srv-tests accepts a test name as the last argument to
just run that test. However, this was failing because a pointer to the
name is retrieved but the poptContext is freed immediately after, making
pointer invalid.

The poptContext is now released after using the pointer.

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit ca7c9f6066d150c1a88bda6bda2843f244e5289d)

- - - - -
228183bf by Alejandro López at 2023-06-23T14:47:38+02:00
IPA: Do not try to add duplicate values to the LDAP attributes

When using extra attributes, an attribute could be listed twice and
SSSD will try to add it twice to the cache. To handle this situation,
each instance will be added to a single attribute with multiple values,
but duplicated values will be dropped. This is done by calling
`sysdb_attrs_add_val_safe()` instead of `sysdb_attrs_add_val()`.

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit dc508f032904f008714418509a13f79a17660659)

- - - - -
42cf3c41 by Alejandro López at 2023-06-23T14:47:38+02:00
UTIL: New function string_in_list_size()

Similar to string_in_list() but instead of taking a NULL-terminated list
it take a list and its size.

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit 1b45f29f459f13173af99e75b4bb43ed945680aa)

- - - - -
010e61ff by Alejandro López at 2023-06-23T14:47:38+02:00
UTIL: add_strings_lists() becomes add_strings_lists_ex()

Old function add_strings_lists() copies any duplicate value.
New function add_strings_lists_ex() take an argument to decide
whether to discard duplicate values.

add_strings_lists() is now a wrapper on add_strings_lists_ex().

Both function now take a const char *** instead of char ** as
output parameter.

An existing test was adapted and an new one added.

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit 2b8fed59140e32f7a8fa9bafe9e84b8db96d1ae5)

- - - - -
bfc88dc3 by Alejandro López at 2023-06-23T14:47:38+02:00
RESPONDER: attr_in_list() is replaced by string_in_list_size()

Both functions do the same thing, so it is useless to have them both.
attr_in_list() has, however, a more descriptive name for its use in
this module, so we'll keep it as an inlined wrapper.

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit de258f011b9c6fc97e9157435cd2845be1c5d0e0)

- - - - -
355b0c2e by Alejandro López at 2023-06-23T14:47:38+02:00
IPA: Do not duplicate the entry attributes.

The extra attributes are concatenated to other required attributes for
some operations. In some cases the attribute list ends up having duplicate
attributes, either because accidentally the user added it twice to the
ldap_user_extra_attrs list, or one or more of those attributes are also
in the required list.

Removing the duplicates each time the lists are concatenated increases
the concatenation time. And this is done every time. So we try to
concatenate the attribute lists at start up, filtering duplicates, and
use that list.

To do that, we consider the two cases where the list concatenation is
done. In one of the cases, the added attributes are a subset of the other
list. So we factorized this list to add the common attributes to the list
at start up. Only the non-common attributes are added while serving a
request. The complete list is now stored in the `full_attribute_list`
field.

An existing test suite was adapted to this new situation as it now needs
to initialize the new field.

Reviewed-by: Iker Pedrosa <ipedrosa at redhat.com>
Reviewed-by: Sumit Bose <sbose at redhat.com>
(cherry picked from commit b50415978d2f0fad3291d86e0a5340be7ab90528)

- - - - -
aa061594 by 김인수 at 2023-06-23T14:51:04+02:00
po: update translations

(Korean) currently translated at 100.0% (714 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/ko/

- - - - -
abce376c by Yuri Chornoivan at 2023-06-23T14:51:04+02:00
po: update translations

(Ukrainian) currently translated at 100.0% (714 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/uk/

- - - - -
a94f39f0 by Temuri Doghonadze at 2023-06-23T14:51:04+02:00
po: update translations

(Georgian) currently translated at 8.1% (58 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/ka/

- - - - -
8e80798d by 김인수 at 2023-06-23T14:51:04+02:00
po: update translations

(Korean) currently translated at 100.0% (714 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/ko/

- - - - -
d37d72f0 by Kemal Oktay Aktoğan at 2023-06-23T14:51:04+02:00
po: update translations

(Turkish) currently translated at 98.7% (705 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/tr/

- - - - -
f0d8f936 by Piotr Drąg at 2023-06-23T14:51:04+02:00
po: update translations

(Polish) currently translated at 100.0% (714 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/pl/

- - - - -
8d3acd3b by Elena Mishina at 2023-06-23T14:51:04+02:00
po: update translations

(Russian) currently translated at 100.0% (714 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/ru/

- - - - -
d95212b2 by Ludek Janda at 2023-06-23T14:51:04+02:00
po: update translations

(French) currently translated at 100.0% (714 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/fr/

- - - - -
4f469c0b by Ludek Janda at 2023-06-23T14:51:04+02:00
po: update translations

(Japanese) currently translated at 100.0% (714 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/ja/

- - - - -
c40d183c by Ludek Janda at 2023-06-23T14:51:04+02:00
po: update translations

(Chinese (Simplified) (zh_CN)) currently translated at 100.0% (714 of 714 strings)
Translation: SSSD/SSSD-2-9
Translate-URL: https://translate.fedoraproject.org/projects/sssd/sssd-2-9/zh_CN/

- - - - -
7f6c10dc by Pavel Březina at 2023-06-23T14:54:07+02:00
pot: update pot files

- - - - -
256e013a by Madhuri Upadhye at 2023-06-23T15:02:55+02:00
Test: Test search filter specific user override or a specific group override

      Add automation of BZ2096183.

verifies:
  #6671

Signed-off-by: Madhuri Upadhye <mupadhye at redhat.com>

Reviewed-by: Alejandro López <allopez at redhat.com>
Reviewed-by: Jakub Vávra <jvavra at redhat.com>
(cherry picked from commit 377ec31a8cab5ecf33c216583e552ea5684157dc)

- - - - -
301e5b38 by Madhuri Upadhye at 2023-06-23T15:03:00+02:00
Tests: When adding attributes ldap_user_extra_attrs with mail value in sssd.conf the cross-forest query stop working

When adding attributes ldap_user_extra_attrs with mail value in sssd.conf the cross-forest query stop working

Automation of BZ2170720

Verifies:
  #6759

Signed-off-by: Madhuri Upadhye <mupadhye at redhat.com>

Reviewed-by: Alejandro López <allopez at redhat.com>
Reviewed-by: Jakub Vávra <jvavra at redhat.com>
(cherry picked from commit 57499ff6571a8ca3d8bf2b7d19ec6b14100504c0)

- - - - -
dc8d649b by Pavel Březina at 2023-06-23T15:26:13+02:00
Release sssd-2.9.1

- - - - -
47d04812 by Timo Aaltonen at 2023-06-26T23:37:54+03:00
Merge branch 'upstream'

- - - - -
dac9d5dc by Timo Aaltonen at 2023-06-26T23:38:16+03:00
version bump

- - - - -


30 changed files:

- debian/changelog
- po/fr.po
- po/ja.po
- po/ka.po
- po/ko.po
- po/pl.po
- po/ru.po
- po/tr.po
- po/uk.po
- po/zh_CN.po
- src/db/sysdb.c
- src/db/sysdb.h
- src/db/sysdb_ops.c
- src/db/sysdb_search.c
- src/man/Makefile.am
- src/man/po/sssd-docs.pot
- src/passkey_child/passkey_child.h
- src/passkey_child/passkey_child_common.c
- src/passkey_child/passkey_child_credentials.c
- src/providers/ad/ad_gpo.c
- src/providers/ad/ad_subdomains.c
- src/providers/data_provider_fo.c
- src/providers/fail_over.c
- src/providers/fail_over.h
- src/providers/ipa/ipa_auth.c
- src/providers/ipa/ipa_common.h
- src/providers/ipa/ipa_config.c
- src/providers/ipa/ipa_netgroups.c
- src/providers/ipa/ipa_opts.c
- src/providers/ipa/ipa_s2n_exop.c


The diff was not included because it is too large.


View it on GitLab: https://salsa.debian.org/sssd-team/sssd/-/compare/ff5ca0bb7153fc824e5ec649252137b1faa0a043...dac9d5dcbfa7a9cffe3e8c22854d358625a4b8eb

-- 
View it on GitLab: https://salsa.debian.org/sssd-team/sssd/-/compare/ff5ca0bb7153fc824e5ec649252137b1faa0a043...dac9d5dcbfa7a9cffe3e8c22854d358625a4b8eb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-sssd-devel/attachments/20230626/f8f68a35/attachment-0001.htm>