sssd-2.9.5-4.el9_5.4> M Mv ĉJ4!!%joLne)Ip-Bm5 ']gbPzreleng@rockylinux.org p-Bm5 ']XyKd?̌UF{_NP$}+]I2-J,F>t;hk9rR͹ד xE sxjKYғw/ӣ|0P3p׎t[crb2$kn{}=K)7D\'lX#;DEi+?"NR|x7dg8w?t]8D! R7YVUA -  m/4^a7bzAGBNP l҇Y0)v2|dOfrl'P/>i^˱qjvp,=XpjրxP 92yOy8LyLIr HrNi*iRsߔyuܖ w5SI[I2^tmԼdP5}/ibd )ЍLiNF|{ rfF86j{NXm98fed31ada199ec26fb9609a3ac01556836f0908dd76505c0117c142a3d4a600e4fcd102186156bb399f000734b18ceee1392219ZP䱃NA]|>=) ?(d   7 $4Y`     . 08BLlt  Q (89H: `G%H%I%X%Y%\&]&^&b&Ld'e'f'l't'u'v((((C(d(p(v((Csssd2.9.54.el9_5.4System Security Services DaemonProvides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects like FreeIPA. The sssd subpackage is a meta-package that contains the daemon as well as all the existing back ends.gbMpb-473be7fb-fe4a-4e11-82d6-82d32a6fabc0-b-x86-64KRocky Linux 9.5Rocky Enterprise Software FoundationGPLv3+Rocky Linux Build System (Peridot) Unspecifiedhttps://github.com/SSSD/sssd/linuxx86_64KA큤gbNfE8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903rootrootrootrootsssd-2.9.5-4.el9_5.4.src.rpmsssdsssd(x86-64)    rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsZstd)sssd-adsssd-commonsssd-ipasssd-krb5sssd-ldapsssd-proxy3.0.4-14.6.0-14.0-15.4.18-12.9.5-4.el9_5.42.9.5-4.el9_5.42.9.5-4.el9_5.42.9.5-4.el9_5.42.9.5-4.el9_5.42.9.5-4.el9_5.44.16.1.3g@r@g;,@g-@ffffy_fE@f/f! @fg@e!@e@e@e)eReRe@d dd@ddu@doMdbc<@c]Alexey Tikhonov - 2.9.5-4.4Alexey Tikhonov - 2.9.5-4.3Alexey Tikhonov - 2.9.5-4.2Alexey Tikhonov - 2.9.5-4.1Alexey Tikhonov - 2.9.5-4Alexey Tikhonov - 2.9.5-3Alexey Tikhonov - 2.9.5-2Alexey Tikhonov - 2.9.5-1Alexey Tikhonov - 2.9.4-7Alexey Tikhonov - 2.9.4-6Alexey Tikhonov - 2.9.4-5Alexey Tikhonov - 2.9.4-4Alexey Tikhonov - 2.9.4-3Alexey Tikhonov - 2.9.4-2Alexey Tikhonov - 2.9.4-1Alexey Tikhonov - 2.9.3-2Alexey Tikhonov - 2.9.3-1Alexey Tikhonov - 2.9.2-2Alexey Tikhonov - 2.9.2-1Alexey Tikhonov - 2.9.1-2Alexey Tikhonov - 2.9.1-1Alexey Tikhonov - 2.9.0-5Alexey Tikhonov - 2.9.0-4Alexey Tikhonov - 2.9.0-3Alexey Tikhonov - 2.9.0-1Alexey Tikhonov - 2.8.2-2Alexey Tikhonov - 2.8.2-1- Resolves: RHEL-68508 - sssd backend process segfaults when krb5.conf is invalid [rhel-9.5.z]- Resolves: RHEL-67673 - Label DP_OPT_DYNDNS_REFRESH_OFFSET has no corresponding option [rhel-9.5.z]- Resolves: RHEL-66268 - SSSD needs an option to indicate if the LDAP server can run the exop with an anonymous bind or not [rhel-9.5.z]- Resolves: RHEL-59876 - EL9/CentOS Stream 9 lost offline smart card authentication - Resolves: RHEL-50912 - possible regression of rhbz#2196521- Resolves: RHEL-49711 - SYSDB: remove index on dataExpireTimestamp - Resolves: RHEL-49811 - 2FA is being enforced after upgrading 2.9.1->2.9.4- Resolves: RHEL-40742 - passkey_child with wrong owner- Resolves: RHEL-40742 - passkey_child with wrong owner - Resolves: RHEL-41047 - sssd is skipping GPO evaluation with auto_private_groups - Resolves: RHEL-40570 - GPO access the wrong memory location- Resolves: RHEL-36586 - Rebase SSSD for RHEL 9.5 - Resolves: RHEL-27716 - SSSD fails to process AD groups with 'Global Scope' correctly causing incomplete group-membership on RHEL if cache is empty - Resolves: RHEL-17659 - [RfE] SSSD Failover Enhancements - Resolves: RHEL-35781 - Passkey errors when handling multiple altSecurityIdentities values - Resolves: RHEL-30142 - sssd_pac is crashing - Resolves: RHEL-22206 - Errors in krb5_child.log every time a user authenticates - Pre-authentication failed: No pkinit_anchors supplied - Resolves: RHEL-32595 - Excessive "Domain not found' messages logged to sssd_nss & sssd_be in multidomain AD forest - Resolves: RHEL-28666 - sssctl config-check is reporting false positive error msg - Resolves: RHEL-29454 - NULL dereference in inotify handling - Resolves: RHEL-1654 - Improve documentation for allowing e-mail address as username- Relates: RHEL-33645 - Rebase Samba to the latest 4.20.x release- Resolves: RHEL-27209 - Race condition during authorization leads to GPO policies functioning inconsistently [rhel-9.4.0]- Resolves: RHEL-28161 - Passkey cannot fall back to password- Resolves: RHEL-28161 - Passkey cannot fall back to password- Resolves: RHEL-22340 - socket leak - Resolves: RHEL-28161 - Passkey cannot fall back to password- Resolves: RHEL-12503 - AD users are unable to log in due to case sensitivity of user because the domain is found as an alias to the email address. - Resolves: RHEL-22288 - ssh pubkey stored in ldap/AD no longer works to authenticate via sssd - Resolves: RHEL-22194 - gdm smartcard login fails with sssd-2.9.3 in case of multiple identities- Resolves: RHEL-2632 - Rebase SSSD for RHEL 9.4 - Resolves: RHEL-18395 - latest sssd breaks logging in via XDMCP for LDAP/Kerberos users - Resolves: RHEL-17498 - New sssd.conf seems not to be backwards compatible (wrt SmartCard auth of local users using 'files provider') [rhel-9] - Resolves: RHEL-21079 - SSSD GPO lacks group resolution on hosts [rhel-9] - Resolves: RHEL-19211 - Excessive logging to sssd_nss and sssd_be in multi-domain AD forest [rhel-9]- Resolves: RHEL-2632 - Rebase SSSD for RHEL 9.4- Resolves: RHEL-2632 - Rebase SSSD for RHEL 9.4 - Resolves: RHEL-14427 - Expected cn in RDN, got uid - Resolves: RHEL-12229 - HANA validation on RHEL 9.2 issue possibly related to libc/nss_sss behaviour - Resolves: RHEL-3925 - SSSD goes offline when, while reading a single user, misses a required attribute (i.e. SID) - Resolves: RHEL-2319 - Passkey authentication for centrally managed users - Resolves: RHEL-4146 - Incorrect handling of reverse IPv6 update results in update failure - Resolves: RHEL-4971 - sssd-kcm does not appear to expire Kerberos tickets (RFE: sssd_kcm should have the option to automatically delete the expired tickets)- Resolves: RHEL-2319 - Passkey authentication for centrally managed users- Resolves: RHEL-2632 - Rebase SSSD for RHEL 9.4 - Resolves: RHEL-2319 - Passkey authentication for centrally managed users - Resolves: rhbz#2234829 - SSSD runs multiples lookup search for each NFS request (SBUS req chaining stopped working) - Resolves: rhbz#2236119 - dbus and crond getting terminated with SIGBUS in sss_client code- Resolves: rhbz#2218858 - [sssd] SSSD enters failed state after heavy load in the system- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3 - Resolves: rhbz#2196816 - [RHEL9] [sssd] User lookup on IPA client fails with 's2n get_fqlist request failed' - Resolves: rhbz#2162552 - sssd client caches old data after removing netgroup member on IDM - Resolves: rhbz#2189542 - [sssd] RHEL 9.3 Tier 0 Localization - Resolves: rhbz#2133854 - [RHEL9] In some cases when `sdap_add_incomplete_groups()` is called with `ignore_group_members = true`, groups should be treated as complete - Resolves: rhbz#1765354 - [RFE] - Show password expiration warning when IdM users login with SSH keys- Related: rhbz#2190415 - Rebase Samba to the latest 4.18.x release Rebuild against rebased Samba libs.- Related: rhbz#2190415 - Rebase Samba to the latest 4.18.x release Rebuild against rebased Samba libs.- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3- Resolves: rhbz#2167837 - Rebase SSSD for RHEL 9.3 - Resolves: rhbz#1765354 - [RFE] - Show password expiration warning when IdM users login with SSH keys - Resolves: rhbz#1913839 - filter_groups doesn't filter GID from 'id' output: AD + 'ldap_id_mapping = True' corner case - Resolves: rhbz#2100789 - [Improvement] sssctl config-check command does not show an error when we don't have id_provider in the domain section - Resolves: rhbz#2152177 - [RFE] Add support for ldapi:// URLs - Resolves: rhbz#2164852 - man page entry should make clear that a nested group needs a name - Resolves: rhbz#2166627 - Improvement: sss_client: add 'getsidbyusername()' and 'getsidbygroupname()' and corresponding python bindings - Resolves: rhbz#2166943 - kinit switches KCM away from the newly issued ticket - Resolves: rhbz#2167728 - [sssd] Auth fails if client cannot speak to forest root domain (ldap_sasl_interactive_bind_s failed)- Resolves: rhbz#2160001 - Reference to 'sssd-ldap-attributes' man page is missing in 'sssd-ldap', etc man pages - Resolves: rhbz#2143159 - automount killed by SIGSEGV- Resolves: rhbz#2127510 - Rebase SSSD for RHEL 9.2 - Resolves: rhbz#1608496 - sssd failing to register dynamic DNS addresses against an AD server due to unnecessary DNS search - Resolves: rhbz#2110091 - SSSD doesn't handle changes in 'resolv.conf' properly (when started right before network service) - Resolves: rhbz#2136791 - Lower the severity of the log message for SSSD so that it is not shown at the default debug level. - Resolves: rhbz#2139684 - [sssd] RHEL 9.2 Tier 0 Localization - Resolves: rhbz#2139837 - Analyzer: Optimize and remove duplicate messages in verbose list - Resolves: rhbz#2142794 - SSSD: `sssctl analyze` command shouldn't require 'root' privileged - Resolves: rhbz#2144893 - changing password with ldap_password_policy = shadow does not take effect immediately - Resolves: rhbz#2148737 - UPN check cannot be disabled explicitly but requires krb5_validate = false' as a work-around2.9.5-4.el9_5.42.9.5-4.el9_5.4sssdCOPYING/usr/share/licenses//usr/share/licenses/sssd/-O2 -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpiozstd19x86_64-redhat-linux-gnudirectoryASCII textlogrotatepython3-sssdconfigsssd-dbus2.9.5-4.el9_5.42.9.5-4.el9_5.4utf-89287683909137ebd70121416a433afc1c2eae5c88777e2eb37f69928602de267dc34fa7b41b7498e9f18a682d8058ba679fbdf041d7ccf31594b2358ce45d8ff?0(/hʘ-H hᷟ#bIY'?uQzSAe yw2v쎟qz(@ciu^Y͑OC)yͲ @5޶ OBw| DZ3 ( 5u@n$_{*/<~.Ay{nǝqs f,!͸4cݝF6}3O%\6V,3nϴ2ZUZBU+\.n_IߋCBkᵲ[X. t4{Ӓ;NOCl{$9)NԻ;ygB(DDF=#3|p4htT. `X\PB`0,`*R1|`ʸ,sE9JN:T}7gNj5~cc8izZ5% Te3lN8+YI2k36T,;5ݖ&l(ecga(+F*N4 u] ^F1YLwq+ID!SXlz~AeĴ&}r2$P/\9,h`x ;o>}1];.!YR>nPG1zd:cF[s&5F3V)i.Q.*@_ZA.eLb =|TclIQ\tg>SE&!* K?Q;3v-$dq1&V,iT+NĘE5㈢$Q$i٧p eXxqoH ,|& >ç:d:&"y^]!xzNrmh8]c1L9ĊXysA/nCM(]3};\3ӥLqPjDnGAq9F"X05/ת{}~Uml8hޯQk@x5KFBLwg%nEN=Z`RY`^\z49@Pgm \CLHK1+#J (ա1{_R[az`vyA XTYMz>'L-̤4N* a LJXf{ g_Ωn1I7 c'ɾ.g$Q<ń^NiPWJrhf_E!%o\EE(E 4M۞o2Q/PNS~rQr#3kNMʰ` >1&˸D%YZݒUdu24|C1PJ#G:'Q:I!,Ey dE/ 6'hXk6vI~IDe0@ k@1LЉPdW mP|7,.8.ۮcYRTx A,lOt&da3 ҳM|# b?Fz"6 #餸+ TT j^{zfK*~;f̄\mӅP p>FbCڏZyYѵc4}GdpB\߀gXQp,gLb޴P:,#Z M1cj6zy6V\#A_l1D7|iӢ[m *"l7@V-,#!yT˄| V)SV2ܸϑh{pt:35j% ņU> Lsi+Br|X;S˲QcVҊ}nNrvxjy "XFGUc, 77jc-0ࡿ̠4g=pBD0K9n\OC Dg8gzd9 D̔RFS$YneQ+C1KbwQJOA/j0O SF҉H_>.Pk<ݑ_}wAJ<%NjşP;G(lSצ6N߰>\?$.ޢ/ Xiwb!JHTw\<.ѬRsQpOI܉:kǜh.J{-F(3Sm`6qN{oz~IѴYę&fMG=߁Ԑ;\xbee5Dmغ]788|ګ E۲5~}W@M9=lXL)3 N*gC}ZИj#/!MaK9yᒾCxDh^"`2DI^4se=ncqǂEn#k@mJI &޹؍eTe 1*0iePZ2ھ`ۀN4RuGa`xhxxTv)~Rɑ'O@0M%WnLh]~ m`eN P6blEPYh!-$g Wp*&/ށH.gWSt>SN3a4Ù!傞'De,/i8ƏR ͆荭Oi) `I6):dAS8O5(EN$ l{_=3r -~âۯR֙ {}2'ɐ{ 1&[vH'9JvK;X_h?bzHO6VarC'ZnF(W @D&(+%0+${%!SW1gzP c$D`7 &,s<&v "3n/R߼Umi;i񁃢nh/F ZSaJwe,Jp7RC ~d_ZwQS~B""89A0áx0!$Fe`JGxw oJ;.8&rnNrDu98ӿqI`^VU!.g0 $wDb/Z/?Fx@ s"ƻU储Ϳ*si!*vx&]}-LژQSC<H]F1+[w>QZ[iXs%#e=:Us ѧ0xc %hYiGQC*,&جVj ;*5&OE&2I\/w]L]9FE.p7Ws5;)EI$ABޏt[[&[yVϏ?9KO" őR䔅ҁ!3N5[툢aUT/$Ǫq=}@.(CӜurzms;cs_ͤ( `Iؕg݄]5A 8I?ˋ%^ 15BIZI2I1b|9 U*nL ^)jHjnVe5θZi@_;`L08iZ-[Ku_ROd91ۚڊ^gr8(VG01 ݪPpK޾%JȌR2V)/U4;\~cr6-3U1[%RghQ*֩VΌM>S E}V43س92r\Jܕ77kRΧn/1^US8JnqT<&^eB13FĬSՕURy,Y%ƣnnkPkq㝘%LVv+ IDKb^@˪hY,YJYY%JZ5o҈WAVNq _+NH4 :29 Jf٢eߘs_Vh9̳],!8 WΘ Rv"ucAcE<؀ Ф@ ;x(x(h#'$r8HEiяDIKq ~ 'A(9{&=A|@'yƈ8x(I/׍=i@ w ],Mᅴu*-rSix84y $ qkF͞a;.:EPBZj ۏW0lNЬyE<"]@aúOxSۯ`͓g kM;/|fQ&O#goB j ģ3鲬try\ly♵(EC;#x ȏg8^$p+N4p3\Er[w0Rׇ]K7ބ#4J tU?XTQIԢqr1jm/BU5yzfMMdV$lPd.D_jjn*\Ns-z|eJɕ312kVC.M5$NX A$ P%{,E TMyX~l*tص4yZP0#жi`bl(M)W̛+I@H;h>H)T)˰ZĬin8RIzϝc85č+pvdtK`gz R;] ܺ}Z+XİW3K@wR㶅pTvy!.(""#%{(ޭw[83L@7`7|2?D{[5>Fmx s6Gp;RC@u>Hr =LSM µз8sV9V TI0Xj:ӻ>zܙqn#FM?j5G_ 2㵀_ƔBZ Cw71.r“S%}ZqIָ?%vllSg < a**cRT2vjS$0Rݜ<7<Є!TRWbuAc~hAT,Wj{rʵ3^a6 u"nbҪ~VpLA pv.Hq犉2:=75l #o},SNVʄ[8D.054i1p`:w8qLzJݹHBNx"= ,2';yPaP$u .񢜱Nܴ5ͻ]&c;fU_N`HڝHW ~H|-vsPqLj3+z5!:$)Ḟ> !#j\|2<'4!+{ڟӧz(QbĽB #1# HT$>frM@H$qgJ^S.BK3CR F5Qb zZqY}p BXT][tG֎]TpUqGc[}.Sp !pG[K]Ҥϟ2HɈLk<p"H^y1Vo1eo,{0ET?Y VYѬlbA`4tė|(ƩgW^4/>%&oˀp 2FЃ)θ tEVI6ӑ "nM-Jbx;ЭɦNI 吏mȐĚYd͠ < |PG: m%E>m/]5JLARZ^pPF {U,"p+c< xաJѓL$?8p؃SX atßz麀6E0:91£uS9& 1epvĚbwD D". $N1f'!~ `%,aP d~C}]ԣ`xá[ȌcҙG:6QMankz~Ÿlv:8j{+$Qdփ.j*jZ=8;eKDnN}FSƦf=`maӍy+6IQ ҁLN%t+ɣ1ne8iUTaTvl sMc&oZrT|a&9W jmO"RG܍4QzoNș&_%FB{%J1[<"X°䬩Yo`鱮ͮ-_? tpXLkayv }]Lg"ng&pb/d.8OmOB#օ4b6Nέge9bO!ߖNgjM`]jf; B CbWґ` vZe#eo9m̑<ԔF8&g-Gܿ-2ۙHe=Pl'aaCZ\&Coe2ɯi}$)*79tF9GR6\1:#HKTQ锸z ?骆*b%o!iY&vRai7h8fOI'Dj+6ҕȣqt&VmlZ.`wJVK~KOԈ3o Fb A,"\ [X`Y7 Ǹ\\tTÎ{PkxEeZQ5Ro;pukH2vaNrOmm|WbHR/72MF`6^ #h▽J]Z-[@|6i Z˺8{FZ&D@>&_j+Df<|>N#@:h[@\K#8Ҟ_袩~e@FYߐȡ ʕ y!#&(BJ W6 2| UBrAFB7dsAPB4ơPpK?#1,sjze̫Iam /YNWW1ۮ*ȉ"}_sko|;k VS9w<ijm^6[=$c\8o%AFhHM㩛v]i@DdO8C0OH\F4.$(9+s%Z&$RDu/M,?ޘ (|"ȳOQߏ2 ɮh戽ur|҈X;Ca#R3k&D,V$9H`k-3v=gځh M$tt|2-QEc`e QGv " @h%H{ 3N8hڅKcMmT77x=B~v#Y:&Hx nDZF*$_lMC^կ'>׬*b'}˷]Ys)!a8DYCfwO}f)\D[=/8-pa3&$Nt@@0Y:J>Eh|(g7ees=X%_'ߛV7!ē)d.xnyb,vƱ;' -/u g낪SRiYAtGtqIiڸ`]0)f*~O