Summary: Directory Server hangs when running VLV search and update operations simultaneously.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=183222
There are at least two hang-up problems in the concurrent vlv search
and delete. Please take a look at the attachment (id=142507)
--> (https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=142507&action=view)
for details.
And the following attachment is the proposed fix based upon the analysis.
------- Additional Comments From nhosoi(a)redhat.com 2006-11-30 14:23 EST -------
Created an attachment (id=142508)
--> (https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=142508&action=view)
cvs diffs
Files:
proto-back-ldbm.h
idl.c
sort.c
vlv.c
Changes:
1. promoted idl_delete to global to make it available in
vlv_trim_candidates_byvalue. In vlv_trim_candidate_byvalue, if any id's in the
idlist is found not having the corresponding entry, delete the id from the
idlist and retry the binary search.
2. demoted too noisy error message:
[...] - compare_entries db err -30990
[...] - compare_entries db err -30990
[...]
3. eliminated read-lock from vlv_find_index_by_filter to prevent the deadlock
with the delete operation.
Thank you,
--noriko
Summary: Make random password generation work with policies
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=216983
Description of problem:
passwd_modify_generate_passwd (passwd_extop.c) always generates 8-bytes random
characters made by PK11_GenerateRandom and ldif_base64_encode. It needs to
generate a password which follows the password policy if it's defined.
------- Additional Comments From nhosoi(a)redhat.com 2006-11-27 14:18 EST -------
Created an attachment (id=142208)
--> (https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=142208&action=view)
cvs diff (passwd_extop.c)
File:
ldap/servers/slapd/passwd_extop.c
Changes:
1. Renamed passwd_modify_generate_passwd to
passwd_modify_generate_basic_passwd, which algorithm is used when no specific
password rule or just the minimum length is given.
2. If some other rules are set, passwd_modify_generate_policy_passwd is called
and generates a password which fulfills the requirement.
Note: this password generator does not support passwordMin8Bit. If it
generates a password which includes 8-bit characters, most likely they won't be
able to be displayed or input from the users' keyboard. We should note it in the
doc...
------- Additional Comments From nhosoi(a)redhat.com 2006-11-27 14:21 EST -------
Created an attachment (id=142213)
--> (https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=142213&action=view)
generated password sample
Attached is the sample output from ldappasswd. Do you think this quality of
the randomness satisfies the requirement?
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=217403
Bug(s) fixed: 217403
Bug Description: Instance specific schema files should be owned by
server uid
Reviewed by: ???
Files: see diff
Branch: HEAD
Fix Description: Add a new function -
ds_copy_group_files_using_mode_owner() - that allows you to set the file
mode and owner when copying directories and files. Use that function
when copying the schema files to the new instance directory.
Platforms tested: RHEL4
Flag Day: no
Doc impact: no
https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=142214&action=diff
> Subject: [Fedora-directory-devel] Auto Enrollment Proxy source code
> Date: Mon, 27 Nov 2006 14:14:43 +0000
> From: Christian Brindley <christian.brindley(a)gmail.com>
> Reply-To: Fedora Directory server developer discussion.
> <fedora-directory-devel(a)redhat.com>
> To: fedora-directory-devel(a)redhat.com
>
> I have been looking at the Auto Enrollment Proxy (AEP) wiki pages.
> This is a very interesting area, and I was wondering if the windows
> source code is available.
>
> Thanks,
>
> Christian
Hi Christian,
The current source code is here:
http://cvs.fedora.redhat.com/lxr/dirsec/source/windowsautoenroll/
The DCOM interface implementation is in proxy.cpp.
The source code today will not be building for you. Soon I will publish:
- some crucial items that I wasn't able to ship (dcom proxy and stub code)
- additional functionality in my local tree that need to get merged,
- significant some cleanup
Steve
I have been looking at the Auto Enrollment Proxy (AEP) wiki pages. This is a
very interesting area, and I was wondering if the windows source code is
available.
Thanks,
Christian
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=214851
Bug(s) fixed: 214851
Bug Description: integrating db43 into ds70
Reviewed by: ???
Files: see diff
Branch: HEAD
Fix Description: I took the original diffs posted by Ulf and merged them
in with our code which has changed slightly since the diffs were
originally generated. I also put #if directives like the following:
#if 1000*DB_VERSION_MAJOR + 100*DB_VERSION_MINOR >= 4300
... db43 features ...
#else
... db42 features ...
#endif
so that we can use both db42 and db43.
Platforms tested: RHEL4/FC5
Flag Day: no
Doc impact: no
https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=141288&action=diff
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=215669
Bug(s) fixed: 215669
Bug Description: Define LIBDIR, BINDIR, etc. in Makefile
Reviewed by: ???
Files: see diff
Branch: HEAD
Fix Description: The paths LIBDIR, BINDIR, et. al. are #define'd in
create_instance.h to hard coded values. We should be able to set these
values in configure and override the built in values. We can't simply
set them via AC_DEFINE in configure.ac because we are using config.h and
this would render the definition like this:
#define BINDIR "${exec_prefix}/bin"
instead of
#define BINDIR "/usr/bin"
So we instead define them in Makefile.am and add their definitions to
AM_CPPFLAGS, and quote them properly to make sure the value includes the
quotation marks when expanded in the C code. I tested this with both an
rpmbuild and a regular developer type build.
Platforms tested: RHEL4/FC5
Flag Day: no
Doc impact: no
https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=141220&action=diff