Alexander Bokovoy via FreeIPA-devel wrote:
Hi,
I'm planning to cut FreeIPA 4.8.4 release tomorrow (around noon East coast
timezone). Please look into outstanding PRs and review/push them before
that.
The release diff is rather small. I'm showing the log diff against 4.8.2
because 4.8.3 was a security only release and ipa-4-8 branch includes
the fixes from that release already.
Release notes LGTM.
rob
$ git log --oneline release-4-8-2..ipa-4-8
9462e4c4b (origin/ipa-4-8, ipa-4-8) Fix
get_trusted_domain_object_from_sid()
b39ee3e17 Fix service ldap_disable()
6a953733f Require idstart to be larger than UID_MAX
2fc5990a7 Check valid before/after of external certs
999ebc176 Add config that maintains existing content to
ipa-client-install manpage
9f726a20d Fix lite-server to work with GSS_NAME
fa952666d ipatests : Login via ssh using private-key for ipa-user should
work.
bb8da7d38 ipatests: fix TestMigrateDNSSECMaster teardown
5d847cfb1 Fix logic of check_client_configuration
0785a032d Optimize user-add by caching ldap2.has_upg()
b21128c2d trust upgrade: ensure that host is member of adtrust agents
6486b1aa4 travis: Remove CI integration
b65558622 Don't hard-code client's TLS versions and ciphers
ae9e41bad Update Apache HTTPd for RHBZ#1775146
f7de64c38 Enable TLS 1.3 support on the server
82a4faefd Skip paramiko tests in FIPS mode
9091290a3 FIPS: server key has different name in FIPS mode
6ce6b53de Remove FIPS noise from SSHd
dd06dfc97 ipatests: fix test_crlgen_manage
ab67e0ed3 ipatests: fix teardown
c77b06265 ipatests: generic uninstall should call ipa server-del
eebabb5c5 covscan: free ucs2-encoded password copy when generating NTLM
hash
84592e32c covscan: free encryption types in case there is an error
dfa356e3d Add test case for OTP login
90f286616 Fix otptoken_sync plugin
11be13906 Become FreeIPA 4.8.3
7db2000e1 CVE-2019-10195: Don't log passwords embedded in commands in
calls using batch
d2e0d9452 Make sure to have storage space for tag
8cbf47ae6 ipatests: add check that ipa-adtrust-install generates sane
smb.conf
d5be38a5b DSU: add Design for Disable Stale Users
04cfaa186 Nightly definition: use right template for krbtpolicy
1ca93942b Debian: Fix font-awesome path.
bc007eca9 Add integration test for Kerberos ticket policy
14ff82f3b Add Authentication Indicator Kerberos ticket policy options
4dbd689e3 Allow presence of LDAP attribute options
d26429ea2 WebUI: Fix notification area layout
185403862 Do not run trust upgrade code if master lacks Samba bindings
e011906af Update selinux-policy minimal requirement
2c98d7604 Show group-add/remove-member-manager failures
444df81a3 WebUI: Fix adding member manager for groups and host groups
0cd2f4ee3 Test installation with (fake) userspace FIPS
2422970c3 Use default ssh host key algorithms
_______________________________________________
FreeIPA-devel mailing list -- freeipa-devel@lists.fedorahosted.org
To unsubscribe send an email to freeipa-devel-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-devel@lists.fedorahosted.org
_______________________________________________
FreeIPA-devel mailing list -- freeipa-devel@lists.fedorahosted.org
To unsubscribe send an email to freeipa-devel-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-devel@lists.fedorahosted.org
