October 2017 - 389-devel - Fedora Mailing-Lists

by Carsten Grzemba

Currently the code src/libsds/external/csiphash/csiphash.c do not work on Sparc. The casting void* or char* to unit64_t* throws Bus-Error. The solution would be to copy the content of the void and char pointer so that the variabeles are suitably aligned. To prevent have to use malloc: do we know the max of src_sz? Thanks <signaturebeforequotedtext></signaturebeforequotedtext><signatureafterquotedtext></signatureafterquotedtext>

6 years, 1 month

3
8
0 / 0

bug in 389-ds-base-1.2.11.15-91.el6_9.x86_64 with large paged searches

by Jeffrey Eaton

I recently updated to 389-ds-base-1.2.11.15-91.el6_9.x86_64 (from 389-ds-base-1.2.11.15-50.el6_6.x86_64) and have uncovered a bug with large paged searches blocking all other searches on the server. I tried to access https://pagure.io/389-ds-base/new_issue to open a bug there, but its giving a 500 error. The case I've discovered is as follows: I have a search which returns about 28,000 entries. The system which generates this search does a paged search with 1000 results per page. I can replicate the behavior with a command line ldap search like the following # ldapsearch -H ldaps://servername:636 -D 'uid=binddn,ou=specials,dc=cmu,dc=edu' -x -W -E pr=1000/noprompt "(&(isMemberOf=cn=GroupName,ou=groups,dc=cmu,dc=edu)(guid=*)(objectClass=inetorgperson))", As soon as the first 1000 entries are returned, and the search requests the second page, all other searches being done to the same server block. Specifically, I run a loop doing a trivial search: # while true; do time ldapsearch -h servername -x uid=jeaton; sleep 1 ; done This search will return in a fraction of a second: real 0m0.031s user 0m0.009s sys 0m0.006s until the server starts working on the second (and any subsequent pages). When that happens, the trivial search blocks for the entire time that it takes to generate the 1000 entries for the page: real 0m45.907s user 0m0.009s sys 0m0.008s everything looks good in the access log at first: [26/Oct/2017:10:10:02 -0400] conn=202655 fd=85 slot=85 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:10:02 -0400] conn=202655 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:10:02 -0400] conn=202655 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:10:02 -0400] conn=202655 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:10:02 -0400] conn=202655 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:10:02 -0400] conn=202655 op=2 UNBIND [26/Oct/2017:10:10:02 -0400] conn=202655 op=2 fd=85 closed - U1 [26/Oct/2017:10:10:03 -0400] conn=202656 fd=85 slot=85 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:10:04 -0400] conn=202656 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:10:04 -0400] conn=202656 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:10:04 -0400] conn=202656 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:10:04 -0400] conn=202656 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:10:04 -0400] conn=202656 op=2 UNBIND [26/Oct/2017:10:10:04 -0400] conn=202656 op=2 fd=85 closed - U1 [26/Oct/2017:10:10:04 -0400] conn=202657 fd=85 slot=85 SSL connection from 10.0.0.2 to 10.1.1.1 [26/Oct/2017:10:10:04 -0400] conn=202657 TLS1.0 256-bit AES [26/Oct/2017:10:10:04 -0400] conn=202657 op=0 BIND dn="uid=binddn,ou=specials,dc=cmu,dc=edu" method=128 version=3 [26/Oct/2017:10:10:04 -0400] conn=202657 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="uid=binddn,ou=specials,dc=cmu,dc=edu" [26/Oct/2017:10:10:04 -0400] conn=202657 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(&(isMemberOf=cn=GroupName,ou=groups,dc=cmu,dc=edu)(guid=*)(objectClass=inetorgperson))" attrs=ALL [26/Oct/2017:10:10:05 -0400] conn=202658 fd=86 slot=86 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:10:05 -0400] conn=202658 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:10:05 -0400] conn=202658 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:10:05 -0400] conn=202658 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:10:05 -0400] conn=202658 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:10:05 -0400] conn=202658 op=2 UNBIND [26/Oct/2017:10:10:05 -0400] conn=202658 op=2 fd=86 closed - U1 [26/Oct/2017:10:10:06 -0400] conn=202659 fd=86 slot=86 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:10:06 -0400] conn=202659 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:10:06 -0400] conn=202659 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:10:06 -0400] conn=202659 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:10:06 -0400] conn=202659 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:10:06 -0400] conn=202659 op=2 UNBIND [26/Oct/2017:10:10:06 -0400] conn=202659 op=2 fd=86 closed - U1 until we get to the point where the first page is returned and the client requests the second page of results: [26/Oct/2017:10:10:46 -0400] conn=202697 fd=86 slot=86 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:10:46 -0400] conn=202697 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:10:46 -0400] conn=202697 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:10:46 -0400] conn=202697 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:10:46 -0400] conn=202697 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:10:46 -0400] conn=202697 op=2 UNBIND [26/Oct/2017:10:10:46 -0400] conn=202697 op=2 fd=86 closed - U1 [26/Oct/2017:10:10:47 -0400] conn=202698 fd=86 slot=86 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:10:47 -0400] conn=202698 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:10:47 -0400] conn=202698 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:10:47 -0400] conn=202698 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:10:47 -0400] conn=202698 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:10:47 -0400] conn=202698 op=2 UNBIND [26/Oct/2017:10:10:47 -0400] conn=202698 op=2 fd=86 closed - U1 [26/Oct/2017:10:10:48 -0400] conn=202657 op=1 RESULT err=0 tag=101 nentries=1000 etime=44 notes=P pr_idx=0 [26/Oct/2017:10:10:48 -0400] conn=202657 op=2 SRCH base="dc=cmu,dc=edu" scope=2 filter="(&(isMemberOf=cn=GroupName,ou=groups,dc=cmu,dc=edu)(guid=*)(objectClass=inetorgperson))" attrs=ALL [26/Oct/2017:10:10:48 -0400] conn=202699 fd=86 slot=86 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:11:33 -0400] conn=202657 op=2 RESULT err=0 tag=101 nentries=1000 etime=45 notes=P pr_idx=0 [26/Oct/2017:10:11:33 -0400] conn=202699 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:11:33 -0400] conn=202699 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:11:33 -0400] conn=202699 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:11:33 -0400] conn=202699 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:11:33 -0400] conn=202657 op=3 SRCH base="dc=cmu,dc=edu" scope=2 filter="(&(isMemberOf=cn=GroupName,ou=groups,dc=cmu,dc=edu)(guid=*)(objectClass=inetorgperson))" attrs=ALL [26/Oct/2017:10:11:33 -0400] conn=202699 op=2 UNBIND [26/Oct/2017:10:11:33 -0400] conn=202699 op=2 fd=86 closed - U1 [26/Oct/2017:10:12:14 -0400] conn=202657 op=3 RESULT err=0 tag=101 nentries=1000 etime=41 notes=P pr_idx=0 [26/Oct/2017:10:12:14 -0400] conn=202700 fd=86 slot=86 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:12:14 -0400] conn=202700 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:12:14 -0400] conn=202657 op=4 SRCH base="dc=cmu,dc=edu" scope=2 filter="(&(isMemberOf=cn=GroupName,ou=groups,dc=cmu,dc=edu)(guid=*)(objectClass=inetorgperson))" attrs=ALL [26/Oct/2017:10:12:14 -0400] conn=202700 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:12:14 -0400] conn=202700 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:12:14 -0400] conn=202700 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:12:14 -0400] conn=202700 op=2 UNBIND [26/Oct/2017:10:12:14 -0400] conn=202700 op=2 fd=86 closed - U1 [26/Oct/2017:10:12:58 -0400] conn=202657 op=4 RESULT err=0 tag=101 nentries=1000 etime=44 notes=P pr_idx=0 Note the large gap in time between 10:10:48 and 10:11:33. You can see my client doing the trivial search connect at 10:10:48 with conn=202699. At that point the client just hangs, waiting on the server's response. Only after the server responds with the second page of results at 10:11:33, is my client able to send the bind request and search. This same pattern happens with every further page of searches, eg, 10:11:33 - 10:12:14. Then when we get to the final page, as soon as that completes, the trivial searches once again complete at one per second: [26/Oct/2017:10:25:30 -0400] conn=202657 op=28 SRCH base="dc=cmu,dc=edu" scope=2 filter="(&(isMemberOf=cn=GroupName,ou=groups,dc=cmu,dc=edu)(guid=*)(objectClass=inetorgperson))" attrs=ALL [26/Oct/2017:10:25:30 -0400] conn=202737 op=0 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:25:30 -0400] conn=202738 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:25:30 -0400] conn=202738 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:25:30 -0400] conn=202738 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:25:58 -0400] conn=202738 op=2 UNBIND [26/Oct/2017:10:25:58 -0400] conn=202740 fd=89 slot=89 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:25:58 -0400] conn=202657 op=28 RESULT err=0 tag=101 nentries=1000 etime=28 notes=P pr_idx=0 [26/Oct/2017:10:25:58 -0400] conn=202737 op=1 UNBIND [26/Oct/2017:10:25:58 -0400] conn=202737 op=1 fd=87 closed - U1 [26/Oct/2017:10:25:58 -0400] conn=202738 op=2 fd=88 closed - U1 [26/Oct/2017:10:25:58 -0400] conn=202740 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:25:58 -0400] conn=202657 op=29 SRCH base="dc=cmu,dc=edu" scope=2 filter="(&(isMemberOf=cn=GroupName,ou=groups,dc=cmu,dc=edu)(guid=*)(objectClass=inetorgperson))" attrs=ALL [26/Oct/2017:10:25:58 -0400] conn=202740 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:25:58 -0400] conn=202740 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:25:58 -0400] conn=202740 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:26:08 -0400] conn=202741 fd=87 slot=87 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:26:08 -0400] conn=202740 op=2 UNBIND [26/Oct/2017:10:26:08 -0400] conn=202741 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:26:08 -0400] conn=202741 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:26:08 -0400] conn=202740 op=2 fd=89 closed - U1 [26/Oct/2017:10:26:08 -0400] conn=202741 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:26:08 -0400] conn=202657 op=29 RESULT err=0 tag=101 nentries=455 etime=10 notes=P pr_idx=0 [26/Oct/2017:10:26:08 -0400] conn=202741 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:26:08 -0400] conn=202657 op=30 UNBIND [26/Oct/2017:10:26:08 -0400] conn=202741 op=2 UNBIND [26/Oct/2017:10:26:08 -0400] conn=202657 op=30 fd=85 closed - U1 [26/Oct/2017:10:26:08 -0400] conn=202741 op=2 fd=87 closed - U1 [26/Oct/2017:10:26:09 -0400] conn=202742 fd=85 slot=85 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:26:09 -0400] conn=202742 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:26:09 -0400] conn=202742 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:26:09 -0400] conn=202742 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:26:09 -0400] conn=202742 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:26:09 -0400] conn=202742 op=2 UNBIND [26/Oct/2017:10:26:09 -0400] conn=202742 op=2 fd=85 closed - U1 [26/Oct/2017:10:26:10 -0400] conn=202743 fd=85 slot=85 connection from 10.0.0.1 to 10.1.1.1 [26/Oct/2017:10:26:10 -0400] conn=202743 op=0 BIND dn="" method=128 version=3 [26/Oct/2017:10:26:10 -0400] conn=202743 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="" [26/Oct/2017:10:26:10 -0400] conn=202743 op=1 SRCH base="dc=cmu,dc=edu" scope=2 filter="(uid=jeaton)" attrs=ALL [26/Oct/2017:10:26:10 -0400] conn=202743 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [26/Oct/2017:10:26:10 -0400] conn=202743 op=2 UNBIND I did some testing and think that the bug was introduced around 389-ds-base-1.2.11.15-72.el6_7. I can probably upgrade one by one and find it specifically if desired.

6 years, 1 month

2
3
0 / 0

Please review 49312: SIGSEV when setting invalid changelog config value

by thierry bordaz

https://pagure.io/389-ds-base/issue/49412 https://pagure.io/389-ds-base/issue/raw/files/3f00b1682d2a5815b4437ec3c7e...

6 years, 1 month

1
0
0 / 0

LDAPCon 2017 trip

by William Brown

Hi all, Ludwig and I have just returned from our trip to LDAPCon 2017. It was a great experience where we were finally able to meet Ilias (The 2017 GSoC student). This conference was a great experience, and Ludwig and I both really enjoyed presenting our ideas and subjects to the conference. Both talks were really well received, and our material can be found: https://ldapcon.org/2017/managing-replication-conflicts/ https://ldapcon.org/2017/speed-parallelism-safety-choose-all-three-high -performance-data-structures-for-multithread-applications/ Another really important outcome was our meeting of the openldap team. Conferences really help to improve relations, and meeting these people I think has given us some friendly competition. We are all made stronger for communities like this that bring our diverse range of talents and experiences together. LDAPCon 2019 will be an event to look forward too, and I hope to see you all there, -- Sincerely, William Brown Software Engineer Red Hat, Australia/Brisbane

6 years, 1 month

1
0
0 / 0

Please review: lib389 17 ds remove

by William Brown

https://pagure.io/lib389/issue/17 https://pagure.io/lib389/issue/raw/files/30e70a79a5917ed85ed03fec518275 9138245f3a0be53f7e1767c9d2262dcde3-0001-Ticket-17-lib389-dsremove- support.patch -- Sincerely, William Brown Software Engineer Red Hat, Australia/Brisbane

6 years, 1 month

1
0
0 / 0

LDAP Ext mailing list

by William Brown

Hi all, During LDAPCon an attempt is being made to revive the LDAP standards working group, I would encourage all interested technical members of the community to join: https://www1.ietf.org/mailman/listinfo/ldapext As we attempt to rebuild this community, Thanks! -- Sincerely, William Brown Software Engineer Red Hat, Australia/Brisbane

6 years, 1 month

1
0
0 / 0

Build failed in Jenkins: NIGHTLY #105

by mareynol＠redhat.com

See <http://vm-166.abc.idm.lab.eng.brq.redhat.com:8080/job/NIGHTLY/105/display...> ------------------------------------------ [...truncated 5161 lines...] e.message['\''desc'\'']) > assert False E assert False <http://vm-166.abc.idm.lab.eng.brq.redhat.com:8080/job/NIGHTLY/ws/source/3...>:313: AssertionError ----------------------------- Captured stderr call ----------------------------- INFO:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:Running test_rootdn_access_denied_ip... CRITICAL:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:test_rootdn_access_denied_ip: Root DN bind failed unexpectedly failed: error Server is unwilling to perform ________________________ test_rootdn_access_denied_host ________________________ topology_st = <lib389.topologies.TopologyMain object at 0x7f6245c8eed0> def test_rootdn_access_denied_host(topology_st): '\'''\'''\'' Test denied Host feature - we can just test denying localhost '\'''\'''\'' log.info('\''Running test_rootdn_access_denied_host...'\'') hostname = socket.gethostname() localhost = DirSrvTools.getLocalhost() try: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_ADD, '\''rootdn-deny-host'\'', hostname)]) if localhost != hostname: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_ADD, '\''rootdn-deny-host'\'', localhost)]) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_denied_host: Failed to set deny host: error '\'' + e.message['\''desc'\'']) assert False # # Bind as Root DN - should fail # try: topology_st.standalone.simple_bind_s(DN_DM, PASSWORD) succeeded = True except ldap.LDAPError as e: succeeded = False if succeeded: log.fatal('\''test_rootdn_access_denied_host: Root DN was incorrectly able to bind'\'') assert False # # Change the denied host so root DN succeeds # try: topology_st.standalone.simple_bind_s(USER1_DN, PASSWORD) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_denied_host: : failed to bind as user1'\'') assert False try: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_REPLACE, '\''rootdn-deny-host'\'', '\''i.dont.exist.com'\'')]) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_denied_host: Failed to set rootDN plugin config: error '\'' + e.message['\''desc'\'']) assert False try: topology_st.standalone.simple_bind_s(DN_DM, PASSWORD) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_denied_host: Root DN bind failed unexpectedly failed: error '\'' + e.message['\''desc'\'']) > assert False E assert False <http://vm-166.abc.idm.lab.eng.brq.redhat.com:8080/job/NIGHTLY/ws/source/3...>:390: AssertionError ----------------------------- Captured stderr call ----------------------------- INFO:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:Running test_rootdn_access_denied_host... CRITICAL:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:test_rootdn_access_denied_host: Root DN bind failed unexpectedly failed: error Server is unwilling to perform ________________________ test_rootdn_access_allowed_ip _________________________ topology_st = <lib389.topologies.TopologyMain object at 0x7f6245c8eed0> def test_rootdn_access_allowed_ip(topology_st): '\'''\'''\'' Test allowed ip feature '\'''\'''\'' log.info('\''Running test_rootdn_access_allowed_ip...'\'') # # Set allowed host to an unknown host - blocks the Root DN # try: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_REPLACE, '\''rootdn-allow-ip'\'', '\''255.255.255.255'\'')]) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_allowed_ip: Failed to set allowed host: error '\'' + e.message['\''desc'\'']) assert False # # Bind as Root DN - should fail # try: topology_st.standalone.simple_bind_s(DN_DM, PASSWORD) succeeded = True except ldap.LDAPError as e: succeeded = False if succeeded: log.fatal('\''test_rootdn_access_allowed_ip: Root DN was incorrectly able to bind'\'') assert False # # Allow localhost # try: topology_st.standalone.simple_bind_s(USER1_DN, PASSWORD) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_allowed_ip: : failed to bind as user1'\'') assert False try: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_REPLACE, '\''rootdn-allow-ip'\'', '\''127.0.0.1'\''), (ldap.MOD_ADD, '\''rootdn-allow-ip'\'', '\''::1'\'')]) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_allowed_ip: Failed to set allowed host: error '\'' + e.message['\''desc'\'']) assert False try: topology_st.standalone.simple_bind_s(DN_DM, PASSWORD) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_allowed_ip: Root DN bind failed unexpectedly failed: error '\'' + e.message['\''desc'\'']) > assert False E assert False <http://vm-166.abc.idm.lab.eng.brq.redhat.com:8080/job/NIGHTLY/ws/source/3...>:464: AssertionError ----------------------------- Captured stderr call ----------------------------- INFO:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:Running test_rootdn_access_allowed_ip... CRITICAL:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:test_rootdn_access_allowed_ip: Root DN bind failed unexpectedly failed: error Server is unwilling to perform _______________________ test_rootdn_access_allowed_host ________________________ topology_st = <lib389.topologies.TopologyMain object at 0x7f6245c8eed0> def test_rootdn_access_allowed_host(topology_st): '\'''\'''\'' Test allowed ip feature '\'''\'''\'' log.info('\''Running test_rootdn_access_allowed_host...'\'') # # Set allowed host to an unknown host - blocks the Root DN # try: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_REPLACE, '\''rootdn-allow-host'\'', '\''i.dont.exist.com'\'')]) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_allowed_host: Failed to set allowed host: error '\'' + e.message['\''desc'\'']) assert False # # Bind as Root DN - should fail # try: topology_st.standalone.simple_bind_s(DN_DM, PASSWORD) succeeded = True except ldap.LDAPError as e: succeeded = False if succeeded: log.fatal('\''test_rootdn_access_allowed_host: Root DN was incorrectly able to bind'\'') assert False # # Allow localhost # try: topology_st.standalone.simple_bind_s(USER1_DN, PASSWORD) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_allowed_host: : failed to bind as user1'\'') assert False hostname = socket.gethostname() localhost = DirSrvTools.getLocalhost() try: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_DELETE, '\''rootdn-allow-host'\'', None)]) topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_ADD, '\''rootdn-allow-host'\'', localhost)]) if hostname != localhost: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_ADD, '\''rootdn-allow-host'\'', hostname)]) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_allowed_host: Failed to set allowed host: error '\'' + e.message['\''desc'\'']) assert False try: topology_st.standalone.simple_bind_s(DN_DM, PASSWORD) except ldap.LDAPError as e: log.fatal('\''test_rootdn_access_allowed_host: Root DN bind failed unexpectedly failed: error '\'' + e.message['\''desc'\'']) > assert False E assert False <http://vm-166.abc.idm.lab.eng.brq.redhat.com:8080/job/NIGHTLY/ws/source/3...>:548: AssertionError ----------------------------- Captured stderr call ----------------------------- INFO:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:Running test_rootdn_access_allowed_host... CRITICAL:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:test_rootdn_access_allowed_host: Root DN bind failed unexpectedly failed: error Server is unwilling to perform _________________________ test_rootdn_config_validate __________________________ topology_st = <lib389.topologies.TopologyMain object at 0x7f6245c8eed0> def test_rootdn_config_validate(topology_st): '\'''\'''\'' Test configuration validation test single valued attributes: rootdn-open-time, rootdn-close-time, rootdn-days-allowed '\'''\'''\'' log.info('\''Running test_rootdn_config_validate...'\'') # # Test rootdn-open-time # try: topology_st.standalone.modify_s(PLUGIN_DN, [(ldap.MOD_REPLACE, '\''rootdn-open-time'\'', '\''0000'\'')]) log.fatal('\''test_rootdn_config_validate: Incorrectly allowed to just add "rootdn-open-time" '\'') > assert False E assert False <http://vm-166.abc.idm.lab.eng.brq.redhat.com:8080/job/NIGHTLY/ws/source/3...>:588: AssertionError ----------------------------- Captured stderr call ----------------------------- INFO:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:Running test_rootdn_config_validate... CRITICAL:dirsrvtests.tests.suites.plugins.rootdn_plugin_test:test_rootdn_config_validate: Incorrectly allowed to just add "rootdn-open-time" ========= 8 failed, 614 passed, 1 skipped, 1 error in 9266.61 seconds ==========' + '[' 1 -ne 0 ']' + echo CI Tests 'FAILED!' CI Tests FAILED! + MSG=FAILED + RC=1 + sudo /usr/sbin/sendmail mreynolds(a)redhat.com firstyear(a)redhat.com + sudo rm -rf /var/tmp/slapd.vg.30965 /var/tmp/slapd.vg.31070 /var/tmp/slapd.vg.4138 /var/tmp/slapd.vg.48069 + exit 1 Build step 'Execute shell' marked build as failure

6 years, 1 month

1
11
0 / 0

Please review: Issue 49409 - Update lib389 requirements

by Viktor Ashirov

https://pagure.io/389-ds-base/issue/49409 https://pagure.io/389-ds-base/issue/raw/files/b3f493ed9a37d69e5010330d038...

6 years, 1 month

1
0
0 / 0

please review: Ticket 49408 - possible to change Replica ID to a invalid value

by Mark Reynolds

https://pagure.io/389-ds-base/issue/49408 https://pagure.io/389-ds-base/issue/raw/files/19e8a656064e14c0eeff89c3adc...

6 years, 1 month

1
0
0 / 0

please review: Ticket 49407 - show the full/uneclipsed lines in status-dirsrv

by Mark Reynolds

https://pagure.io/389-ds-base/issue/49407 https://pagure.io/389-ds-base/issue/raw/files/17a8490dbdde4e87d170dc233e2...

6 years, 1 month

1
0
0 / 0

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

389-devel October 2017