Hello community, here is the log from the commit of package sssd for openSUSE:Factory checked in at 2020-01-18 12:16:53 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/sssd (Old) and /work/SRC/openSUSE:Factory/.sssd.new.26092 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "sssd" Sat Jan 18 12:16:53 2020 rev:99 rq:764135 version:2.2.2 Changes: -------- --- /work/SRC/openSUSE:Factory/sssd/sssd.changes 2020-01-06 16:02:03.717721870 +0100 +++ /work/SRC/openSUSE:Factory/.sssd.new.26092/sssd.changes 2020-01-18 12:17:56.035132563 +0100 @@ -1,0 +2,8 @@ +Mon Jan 13 14:40:11 UTC 2020 - David Mulder <dmul...@suse.com> + +- SSSD GPO host entries are ignored if computer cn does not + match its samaccountname, add + 0001-Resolve-computer-lookup-failure-when-sam-cn.patch; + (jsc#SLE-9298); (bsc#1160688) + +------------------------------------------------------------------- New: ---- 0001-Resolve-computer-lookup-failure-when-sam-cn.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ sssd.spec ++++++ --- /var/tmp/diff_new_pack.G50CQg/_old 2020-01-18 12:17:57.571133387 +0100 +++ /var/tmp/diff_new_pack.G50CQg/_new 2020-01-18 12:17:57.575133389 +0100 @@ -31,6 +31,7 @@ Source5: %name.keyring Patch1: krb-noversion.diff Patch2: sssd-gpo_host_security_filter-2.2.2.patch +Patch3: 0001-Resolve-computer-lookup-failure-when-sam-cn.patch BuildRoot: %_tmppath/%name-%version-build %define servicename sssd ++++++ 0001-Resolve-computer-lookup-failure-when-sam-cn.patch ++++++ >From 0ea7661eeb7783c45d7f0ec9d19d99ce9fe407cf Mon Sep 17 00:00:00 2001 From: David Mulder <dmul...@suse.com> Date: Fri, 10 Jan 2020 18:21:05 +0000 Subject: [PATCH] Resolve computer lookup failure when sam!=cn References: jsc#SLE-9298 Upstream: submitted --- src/providers/ad/ad_gpo.c | 11 ++--------- 1 file changed, 2 insertions(+), 9 deletions(-) diff --git a/src/providers/ad/ad_gpo.c b/src/providers/ad/ad_gpo.c index 90e1909f8..6dd850cc9 100644 --- a/src/providers/ad/ad_gpo.c +++ b/src/providers/ad/ad_gpo.c @@ -1947,7 +1947,6 @@ ad_gpo_target_dn_retrieval_done(struct tevent_req *subreq) struct sysdb_attrs **reply; const char *target_dn = NULL; uint32_t uac; - char *filter = NULL; char *domain_dn; const char *attrs[] = {AD_AT_SID, NULL}; struct ldb_message *msg; @@ -2050,16 +2049,10 @@ ad_gpo_target_dn_retrieval_done(struct tevent_req *subreq) goto done; } - filter = talloc_asprintf(subreq, SYSDB_COMP_FILTER, state->ad_hostname); - if (!filter) { - ret = ENOMEM; - goto done; - } - subreq = sdap_get_generic_send(state, state->ev, state->opts, sdap_id_op_handle(state->sdap_op), - domain_dn, LDAP_SCOPE_SUBTREE, - filter, attrs, NULL, 0, + state->target_dn, LDAP_SCOPE_BASE, + "(&)", attrs, NULL, 0, state->timeout, false); -- 2.24.0