Hello community,
here is the log from the commit of package sssd for openSUSE:Leap:15.2 checked
in at 2020-01-19 15:47:09
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Leap:15.2/sssd (Old)
and /work/SRC/openSUSE:Leap:15.2/.sssd.new.26092 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "sssd"
Sun Jan 19 15:47:09 2020 rev:45 rq:764302 version:1.16.1
Changes:
--------
--- /work/SRC/openSUSE:Leap:15.2/sssd/sssd.changes 2020-01-15
16:03:57.247942433 +0100
+++ /work/SRC/openSUSE:Leap:15.2/.sssd.new.26092/sssd.changes 2020-01-19
15:47:44.349711619 +0100
@@ -1,0 +2,8 @@
+Mon Jan 13 14:40:11 UTC 2020 - David Mulder <dmul...@suse.com>
+
+- SSSD GPO host entries are ignored if computer cn does not
+ match it's samaccountname, add
+ 0001-Resolve-computer-lookup-failure-when-sam-cn.patch;
+ (jsc#SLE-9298); (bsc#1160688)
+
+-------------------------------------------------------------------
New:
----
0001-Resolve-computer-lookup-failure-when-sam-cn.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ sssd.spec ++++++
--- /var/tmp/diff_new_pack.O5nfH7/_old 2020-01-19 15:47:44.933711965 +0100
+++ /var/tmp/diff_new_pack.O5nfH7/_new 2020-01-19 15:47:44.933711965 +0100
@@ -60,6 +60,7 @@
Patch27: 0027-utils-make-N_ELEMENTS-public.patch
Patch28: 0028-ad-replace-ARRAY_SIZE-with-N_ELEMENTS.patch
Patch29: sssd-gpo_host_security_filter-1.16.1.patch
+Patch30: 0001-Resolve-computer-lookup-failure-when-sam-cn.patch
%define servicename sssd
%define sssdstatedir %_localstatedir/lib/sss
@@ -423,6 +424,7 @@
%patch27 -p1
%patch28 -p1
%patch29 -p1
+%patch30 -p1
%build
%if 0%{?suse_version} < 1210
++++++ 0001-Resolve-computer-lookup-failure-when-sam-cn.patch ++++++
>From 0ea7661eeb7783c45d7f0ec9d19d99ce9fe407cf Mon Sep 17 00:00:00 2001
From: David Mulder <dmul...@suse.com>
Date: Fri, 10 Jan 2020 18:21:05 +0000
Subject: [PATCH] Resolve computer lookup failure when sam!=cn
References: jsc#SLE-9298
Upstream: submitted
---
src/providers/ad/ad_gpo.c | 11 ++---------
1 file changed, 2 insertions(+), 9 deletions(-)
diff --git a/src/providers/ad/ad_gpo.c b/src/providers/ad/ad_gpo.c
index 90e1909f8..6dd850cc9 100644
--- a/src/providers/ad/ad_gpo.c
+++ b/src/providers/ad/ad_gpo.c
@@ -1947,7 +1947,6 @@ ad_gpo_target_dn_retrieval_done(struct tevent_req *subreq)
struct sysdb_attrs **reply;
const char *target_dn = NULL;
uint32_t uac;
- char *filter = NULL;
char *domain_dn;
const char *attrs[] = {AD_AT_SID, NULL};
struct ldb_message *msg;
@@ -2050,16 +2049,10 @@ ad_gpo_target_dn_retrieval_done(struct tevent_req
*subreq)
goto done;
}
- filter = talloc_asprintf(subreq, SYSDB_COMP_FILTER,
state->ad_hostname);
- if (!filter) {
- ret = ENOMEM;
- goto done;
- }
-
subreq = sdap_get_generic_send(state, state->ev, state->opts,
sdap_id_op_handle(state->sdap_op),
- domain_dn, LDAP_SCOPE_SUBTREE,
- filter, attrs, NULL, 0,
+ state->target_dn, LDAP_SCOPE_BASE,
+ "(&)", attrs, NULL, 0,
state->timeout,
false);
--
2.24.0
