sssd-2.9.5-4.el9_5.4> M Mv ĉJ4!!%joLne)Ip-Bm5 ']gbPureleng@rockylinux.org p-Bm5 ']fx_ǎjew}o͗0~ O:T*&oEE%5:to3g/My[5OHȝϹ9-7 XSЮCv .k7D4'CoSC-+MnEC'/NPS}f?E7;<8LV2d},5A2슄Ju[#æp> %ֵ~=z/UUjЕ6.U6 ^߻ߍA"]~PVu}ƍ_K^٘ekj\K @6IE} R x# *0TGE SWg{ ٸsk,5z-q&>Y6 3- Тݹ3`cY|Z%K*=(?(d   7 0U\     * ,4>Hhp  M (89D: \G%H%I%X%Y%\&]& ^&b&Hd'e'f'l't'u'v''(('(H(T(Z((Csssd2.9.54.el9_5.4System Security Services DaemonProvides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects like FreeIPA. The sssd subpackage is a meta-package that contains the daemon as well as all the existing back ends.gbN2pb-61878a97-eab1-473e-9de8-a3a8e0a1065f-b-s390xKRocky Linux 9.5Rocky Enterprise Software FoundationGPLv3+Rocky Linux Build System (Peridot) Unspecifiedhttps://github.com/SSSD/sssd/linuxs390xKA큤gbOQfE8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903rootrootrootrootsssd-2.9.5-4.el9_5.4.src.rpmsssdsssd(s390-64)    rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsZstd)sssd-adsssd-commonsssd-ipasssd-krb5sssd-ldapsssd-proxy3.0.4-14.6.0-14.0-15.4.18-12.9.5-4.el9_5.42.9.5-4.el9_5.42.9.5-4.el9_5.42.9.5-4.el9_5.42.9.5-4.el9_5.42.9.5-4.el9_5.44.16.1.3g@r@g;,@g-@ffffy_fE@f/f! @fg@e!@e@e@e)eReRe@d dd@ddu@doMdbc<@c]Alexey Tikhonov - 2.9.5-4.4Alexey Tikhonov - 2.9.5-4.3Alexey Tikhonov - 2.9.5-4.2Alexey Tikhonov - 2.9.5-4.1Alexey Tikhonov - 2.9.5-4Alexey Tikhonov - 2.9.5-3Alexey Tikhonov - 2.9.5-2Alexey Tikhonov - 2.9.5-1Alexey Tikhonov - 2.9.4-7Alexey Tikhonov - 2.9.4-6Alexey Tikhonov - 2.9.4-5Alexey Tikhonov - 2.9.4-4Alexey Tikhonov - 2.9.4-3Alexey Tikhonov - 2.9.4-2Alexey Tikhonov - 2.9.4-1Alexey Tikhonov - 2.9.3-2Alexey Tikhonov - 2.9.3-1Alexey Tikhonov - 2.9.2-2Alexey Tikhonov - 2.9.2-1Alexey Tikhonov - 2.9.1-2Alexey Tikhonov - 2.9.1-1Alexey Tikhonov - 2.9.0-5Alexey Tikhonov - 2.9.0-4Alexey Tikhonov - 2.9.0-3Alexey Tikhonov - 2.9.0-1Alexey Tikhonov - 2.8.2-2Alexey Tikhonov - 2.8.2-1- Resolves: RHEL-68508 - sssd backend process segfaults when krb5.conf is invalid [rhel-9.5.z]- Resolves: RHEL-67673 - Label DP_OPT_DYNDNS_REFRESH_OFFSET has no corresponding option [rhel-9.5.z]- Resolves: RHEL-66268 - SSSD needs an option to indicate if the LDAP server can run the exop with an anonymous bind or not [rhel-9.5.z]- Resolves: RHEL-59876 - EL9/CentOS Stream 9 lost offline smart card authentication - Resolves: RHEL-50912 - possible regression of rhbz#2196521- Resolves: RHEL-49711 - SYSDB: remove index on dataExpireTimestamp - Resolves: RHEL-49811 - 2FA is being enforced after upgrading 2.9.1->2.9.4- Resolves: RHEL-40742 - passkey_child with wrong owner- Resolves: RHEL-40742 - passkey_child with wrong owner - Resolves: RHEL-41047 - sssd is skipping GPO evaluation with auto_private_groups - Resolves: RHEL-40570 - GPO access the wrong memory location- Resolves: RHEL-36586 - Rebase SSSD for RHEL 9.5 - Resolves: RHEL-27716 - SSSD fails to process AD groups with 'Global Scope' correctly causing incomplete group-membership on RHEL if cache is empty - Resolves: RHEL-17659 - [RfE] SSSD Failover Enhancements - Resolves: RHEL-35781 - Passkey errors when handling multiple altSecurityIdentities values - Resolves: RHEL-30142 - sssd_pac is crashing - Resolves: RHEL-22206 - Errors in krb5_child.log every time a user authenticates - Pre-authentication failed: No pkinit_anchors supplied - Resolves: RHEL-32595 - Excessive "Domain not found' messages logged to sssd_nss & sssd_be in multidomain AD forest - Resolves: RHEL-28666 - sssctl config-check is reporting false positive error msg - Resolves: RHEL-29454 - NULL dereference in inotify handling - Resolves: RHEL-1654 - Improve documentation for allowing e-mail address as username- Relates: RHEL-33645 - Rebase Samba to the latest 4.20.x release- Resolves: RHEL-27209 - Race condition during authorization leads to GPO policies functioning inconsistently [rhel-9.4.0]- Resolves: RHEL-28161 - Passkey cannot fall back to password- Resolves: RHEL-28161 - Passkey cannot fall back to password- Resolves: RHEL-22340 - socket leak - Resolves: RHEL-28161 - Passkey cannot fall back to password- Resolves: RHEL-12503 - AD users are unable to log in due to case sensitivity of user because the domain is found as an alias to the email address. - Resolves: RHEL-22288 - ssh pubkey stored in ldap/AD no longer works to authenticate via sssd - Resolves: RHEL-22194 - gdm smartcard login fails with sssd-2.9.3 in case of multiple identities- Resolves: RHEL-2632 - Rebase SSSD for RHEL 9.4 - Resolves: RHEL-18395 - latest sssd breaks logging in via XDMCP for LDAP/Kerberos users - Resolves: RHEL-17498 - New sssd.conf seems not to be backwards compatible (wrt SmartCard auth of local users using 'files provider') [rhel-9] - Resolves: RHEL-21079 - SSSD GPO lacks group resolution on hosts [rhel-9] - Resolves: RHEL-19211 - Excessive logging to sssd_nss and sssd_be in multi-domain AD forest [rhel-9]- Resolves: RHEL-2632 - Rebase SSSD for RHEL 9.4- Resolves: RHEL-2632 - Rebase SSSD for RHEL 9.4 - Resolves: RHEL-14427 - Expected cn in RDN, got uid - Resolves: RHEL-12229 - HANA validation on RHEL 9.2 issue possibly related to libc/nss_sss behaviour - Resolves: RHEL-3925 - SSSD goes offline when, while reading a single user, misses a required attribute (i.e. SID) - Resolves: RHEL-2319 - Passkey authentication for centrally managed users - Resolves: RHEL-4146 - Incorrect handling of reverse IPv6 update results in update failure - Resolves: RHEL-4971 - sssd-kcm does not appear to expire Kerberos tickets (RFE: sssd_kcm should have the option to automatically delete the expired tickets)- Resolves: RHEL-2319 - Passkey authentication for centrally managed users- Resolves: RHEL-2632 - Rebase SSSD for RHEL 9.4 - Resolves: RHEL-2319 - Passkey authentication for centrally managed users - Resolves: rhbz#2234829 - SSSD runs multiples lookup search for each NFS request (SBUS req chaining stopped working) - Resolves: rhbz#2236119 - dbus and crond getting terminated with SIGBUS in sss_client code- Resolves: rhbz#2218858 - [sssd] SSSD enters failed state after heavy load in the system- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3 - Resolves: rhbz#2196816 - [RHEL9] [sssd] User lookup on IPA client fails with 's2n get_fqlist request failed' - Resolves: rhbz#2162552 - sssd client caches old data after removing netgroup member on IDM - Resolves: rhbz#2189542 - [sssd] RHEL 9.3 Tier 0 Localization - Resolves: rhbz#2133854 - [RHEL9] In some cases when `sdap_add_incomplete_groups()` is called with `ignore_group_members = true`, groups should be treated as complete - Resolves: rhbz#1765354 - [RFE] - Show password expiration warning when IdM users login with SSH keys- Related: rhbz#2190415 - Rebase Samba to the latest 4.18.x release Rebuild against rebased Samba libs.- Related: rhbz#2190415 - Rebase Samba to the latest 4.18.x release Rebuild against rebased Samba libs.- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3 - Resolves: rhbz#1765354 - [RFE] - Show password expiration warning when IdM users login with SSH keys - Resolves: rhbz#1913839 - filter_groups doesn't filter GID from 'id' output: AD + 'ldap_id_mapping = True' corner case - Resolves: rhbz#2100789 - [Improvement] sssctl config-check command does not show an error when we don't have id_provider in the domain section - Resolves: rhbz#2152177 - [RFE] Add support for ldapi:// URLs - Resolves: rhbz#2164852 - man page entry should make clear that a nested group needs a name - Resolves: rhbz#2166627 - Improvement: sss_client: add 'getsidbyusername()' and 'getsidbygroupname()' and corresponding python bindings - Resolves: rhbz#2166943 - kinit switches KCM away from the newly issued ticket - Resolves: rhbz#2167728 - [sssd] Auth fails if client cannot speak to forest root domain (ldap_sasl_interactive_bind_s failed)- Resolves: rhbz#2160001 - Reference to 'sssd-ldap-attributes' man page is missing in 'sssd-ldap', etc man pages - Resolves: rhbz#2143159 - automount killed by SIGSEGV- Resolves: rhbz#2127510 - Rebase SSSD for RHEL 9.2 - Resolves: rhbz#1608496 - sssd failing to register dynamic DNS addresses against an AD server due to unnecessary DNS search - Resolves: rhbz#2110091 - SSSD doesn't handle changes in 'resolv.conf' properly (when started right before network service) - Resolves: rhbz#2136791 - Lower the severity of the log message for SSSD so that it is not shown at the default debug level. - Resolves: rhbz#2139684 - [sssd] RHEL 9.2 Tier 0 Localization - Resolves: rhbz#2139837 - Analyzer: Optimize and remove duplicate messages in verbose list - Resolves: rhbz#2142794 - SSSD: `sssctl analyze` command shouldn't require 'root' privileged - Resolves: rhbz#2144893 - changing password with ldap_password_policy = shadow does not take effect immediately - Resolves: rhbz#2148737 - UPN check cannot be disabled explicitly but requires krb5_validate = false' as a work-around2.9.5-4.el9_5.42.9.5-4.el9_5.4sssdCOPYING/usr/share/licenses//usr/share/licenses/sssd/-O2 -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -march=z14 -mtune=z15 -fasynchronous-unwind-tables -fstack-clash-protectioncpiozstd19s390x-redhat-linux-gnudirectoryASCII textlogrotatepython3-sssdconfigsssd-dbus2.9.5-4.el9_5.42.9.5-4.el9_5.4utf-8e34a19bad72d29d5c8fd1206410c43011a46703e7db227eaee2a958423cd57f186596b5391572d2e54f5d87f8e283ec07825fb7737562abdaf2b1d05b1901dea?0(/hZ,JHD6M13ٕli-ФSibz x3abc~z [㳩~)YEx3P$65/F}2͗*uhKk=4AA"\ L/#,/k7QT:ʾg}yr|\"nΎa3(6Q.gsF2eS¤{gvhZ͸QK$ [ع\ C2k=1bd-sm>Lh:xO忲N\/N!⋃i).YG%\6F~al `oaC6%ܲz&0*&NbB \&*& * 8 `BBh0XRAĂ|t9dc  <|H A Ai4+j} vq}sj>S^^Q[0+wŵs k|g[$I ROM1fwK|,R̥8Bv.m5L[xI*Ez-|ϔ2P~oyq-KD!S.́lGͳx.-B޳s%TC \eP9 };9p'ߏ#ONWB2nb?gB@ɣ%CՔν7l<0,Z4ץٷ4~\1AA!H=Mp~qZjM6*CɲIeZb0\(]#X%BH"JFJ%(h9X+ӵ5'Cϐ|ŬԱ{@0t޾Oeن飠DeBI֩T}rVY9LHFh'~JZ%>Υ2 X>] (ĵ@׼N?%`FZȚW\8"mlYf-Y\ WK)y+ JHOـbLe!qe|X%m!tػGU*eX+c.t5+&8.'.۹b"N h3!ke=7"53 OE>Bз˪.mLo|dѶ °yEߐJ ymZ9"TRd~6G(>qT3 mM!הq b $W[^iPAQ,ew>bQfRqmoL[sS/;M`X@qel$\َ7fc6j{T^POXa)TݐLA9:ְ\#f0@`{tR5 qdžnQ]U>K52IP%H%tcptR)(fixAtPAPB'3=hf-˚"G #Sɦ2ŕkjWt*ƥL-h:)#;bYKՖdۤE,¨iT2E3$IS0 .6Q)ÀS{d:y0bDFDDF JR),sєJۓRB=rP$Z0/ 1(-(3/ϭvn/tYLtS?I!F5JȌBsAAyX'CjYƪ/? Y$#+"?tk )@.qC,u`A+K&E ʊbR~k:CIyXmY2 9xZZV1>HH{yTsq渚n 6LS<8U\HNΎ 80($K8M:TH@'BNSԿxECݛZy)`K{D >;(8: B@p`zSEHhxGlMjf~&[K ҌQ^wC6; xttGc!HEB ʫrf F5>0ó>)xf_NPAx;uLTN '-~cq}>>cT! K÷/{XX+{2rHsq u]u\bmf)Q' Fآ (S'ejvP>y6(28]ř˃ #@@L9FǤG4COQR<+ ENo[ꕗ*z $@8V@lb?\v0WXhRmhsVO zδ ʧ W:Hn%UMr42v-+&dk1*VHT+bqP qW*Q$SVeZXӈ2d>N!,( 4O[},ScS]cv>;9$$Tx:1'@"D슨 x&#Fl7*-Y)D9a˛ョ׾A{fgtM&kTSMw{ESȆK mXg^5r#bRhX3/+IAʖb&#QjAHz`uE9P9h\JTLMũ0P̂Dc1[H\j] d.,Ō_3YEh[O4nZ\Ðq4<9fPgO{Z Npvg$[^Pz1ݮƒnɾS{D66w* ={d}!? Eϼ>OC(A]R*`>;sVcL%~ TE -b |1Y vbQubizv5"8FKOw[8J[ J |Yg׺ɢBp% ]ea,\92 ;EnL +UUJ.60ׄOe>NSfЉ[/_.ڵ;ޙxg<ה#PؔIoK( ~`rv1jP[_,.PFowL~ЗUϸ,5.f`p։Zx1lQvX3;ZOb ZtDDWl]֞De߄q4@b&-fSjn>!h̀_St%pYC!QKd4"%4Qڒ8L|a&w5>71n])3 Ć2/\ٙxb$]'F'FHF/09P.hz@0 )Ua#)h郅39|m[>0V kG²V15+. 5i<}nW"QQ11Dk&>s1 f| do?;eNOٍ_*$t:9]#.@X I>0TQP@IQ/Q+ȣ_mJtxi䓉ײ T'yF{}X ~t ycKyUcgHs%\ްa'LA_@n 6iRtWi!Q*)NiZoqxy.$e9*LkRSYC:!WAJ$ou3C!K|FT)8=6b]=i[nuܩ3BM߉".w:`I2I0Qᰘ,j~w4P]<6=cZF 'ʯcȮȒ~|r>:7-@L&cQu HF,fUz^efpoqʲSG|{աhԴ$M=qp @,gɂzoǸ}; GjAl_܇`[-^0;uSݴ!9 :t'5lC#R,/ x<+=,{h;J ̻ x%F88{=!j\V@|^V5TG'WXS54H`XB.>ےq94ݟ= q\ȠHmq0ĸ'tq)~dPQ`njK%#"Tb D)gQ\FGӁ]>=$Ӎc4dĈ{G{~%*Q}fL323iLŲq&ET6%#XI)k䮎pX!I1d&Ma`˩5sp}ԝ[0=yU-t4UG7Y2%noY!cDܙ}n`]~2x=&O߳?9iXt8FM, 3k׀AՈ_% okg-At]QO{~x"N@!GDyƸ̊D ]gs( CSgTn$[%bܵ޿Z^ t.ٷUFKMEh'HOؐW!uU~,SdJRj&WhΔb{ߟ-%0i$3 yn(\d{@?ԕ?]gm0ޠ)S: %Y m@i`#(ˆ PV1r}9m;$=1pΠy.A.F՛V#!͎]uXPPG^?W܍s;z+! YA{RXCc tkeFK?_) dFqE-/or&M7UgfJ w$"sK>Tvaan "Iw1c};.ź!E-.ΉρY_ZlxYq"AT)JaUj ȣ _R7DG"}(O6<ŘۡD9|:rl$* 54אVPaf՟` ב0acsԓl23+̡gr>Egǔ4lc0(Jah T$*}=ʈb9!}BdP) IR3ޫ*70ukb+r b/>A+ƩlE7S77ǒ?wƘ9.bj0 Mد+ڢPu4F AQQt!N+.Xӈ!/:I{=JUx*nL ^)jHjnV5M]<8;`L08l/cz`g[ӿ>㥞(rb5^K3p+#Ǭ9%EZ?:fψQV]lb[U6.V&@fʔ4NyiT4;7\.v19Ft̳홪ϘYn-NTҒne)3ͨUfyTx}+Rg&QvHЀA2/mYdf<?cur+ŞrWܬJE;zqxUN(U1sHi}.WYP3FĬSՕURy,Y%ƣnnk Pkq㝘%LVv+ Ih$V q[Bk嬾U9jX)mq9z%$k \Yqeɱb:D,_c(+3pd-Z>4ZNl4l*q}H7 Wt[aJOԎAn,=±4y6 z44i8P/rDi@tcDEcAx4 "cNH#Az@F$@7I$(yIOF~[@q|Hvyl /]͊@(i{6fskzv^Sf)"LĠ7S]7u~|T>0Y<*TLOZ˅]q[zA+rvʸ!]NBx5EcI MJBW\fJ|@v̆O]Sgq;AD9iW#f[ʨw}50Das O:.0Į6ӽZh;ktTg8.6XM4JqY[IFr- =n[R[❵[$Bt5ޢ*@*'=4$q{ Vr Q\~LW9.w𴇮 \~,#RK<b-`bՂIBE}Sc*hMUs{qbv RT:SbPRHH2BuA"+%8;XhB-ĒJUt/us^ԝ,^D y>vƐ꺘R#F!p )Q";*5V.-ˤɐF R 떋,m-eMȡP'k%!1dk#!cLG2ɴ)/y3°1 S5 @OOee]a^Trh.O0Jwpi^Tخ֨s^bdP)R^Tj |fS|,]b̧Da)yŪ2˺TycbkɈ^ .uj3)ŷՈ9vEe,ybB?[+Ey \׊9e;U2?w6fC7]& sNmQxDwapHgn&Ҏo@)uMe81qhYB5xO=CL+;NH!`'y:v^ ZWh(N7mX^#;U圀`rQxT3$j0 }&XsQR18+͎ &kv LqA&xonWKz;h}Pg٧ T+L%ý,) #i+(}")R.>~wB7?^HI*C2 p:p f3RZ sB "ذWO XIǬ70zCߝm=Qw6h.kR:ZZ$L>t|P%+m` V35R@hH(H ɽߔ\\cJVXgyLe 9A#.2=fYg_̓8`X|JD[7[6NPr36vF L1jldp:JURĘjܙYl'&x2|\D m{WpLU7QJ4:MIEK^淳 -)qeiH_:QX6`4h5':XBPY[%hW,}D2EB`w]F?^q7L̏adsTiϝD8Ƭ5 neAV(,HUn@|-pa WR_Cog/<.Z1ar m~SiűvV Xq7y]ШjKZD3YȲ~:cL4v##rDYiE vz@ϗ6QKM<N%'8dWғ1fM']Dj?6(Ep}%V"ixo4VV)t%}%r܏LDwՂC.lvyZhM&XwၻhԐ(8Ɔ\kHRRgbMϩjKϠHs7'`_i82Q{-_D#^ ",+x! >tf9tMi[tK݈mPEX7 ֯$JTEpro q42$DW1mnrJo&,XVn( yY=._aEaHp1S@%s}Ĵ]ept^m1}f%I܃9{ Ϝ<< c j ww ecݣx"Ndo Rsu:%oS1LTkmFJ)