May 2021 - FreeIPA-devel - Fedora Mailing-Lists

[freeipa PR#5761][opened] [master] ipatests: Bump PR-CI templates to Fedora 34

by netoarmando

URL: https://github.com/freeipa/freeipa/pull/5761 Author: netoarmando Title: #5761: [master] ipatests: Bump PR-CI templates to Fedora 34 Action: opened PR body: """ Move 'latest' to Fedora 34 and 'previous' Fedora 33 for nightly runs. Keep gating on Fedora 33 for now. --- Known issue blocking gating to move to F34: - `test_dnssec_TestInstallDNSSECFirst` is a known issue, [8793](https://pagure.io/freeipa/issue/8793) Gating run + some other jobs on Fedora 34: https://github.com/freeipa-pr-ci2/freeipa/pull/898 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5761/head:pr5761 git checkout pr5761

2 years, 4 months

1
1
0 / 0

[freeipa PR#5752][opened] Fix update_dna_shared_config to wait for both entries

by tiran

URL: https://github.com/freeipa/freeipa/pull/5752 Author: tiran Title: #5752: Fix update_dna_shared_config to wait for both entries Action: opened PR body: """ update_dna_shared_config plugin now waits for presence of both ``dnaHostname=fqdn+dnaPortNum=0`` and ``dnaHostname=fqdn+dnaPortNum=389`` entries before it updates the entries. The commit also refactors the code of update_dna_shared_config for subordinate id support. Fixes: https://pagure.io/freeipa/issue/8831 Signed-off-by: Christian Heimes <cheimes(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5752/head:pr5752 git checkout pr5752

2 years, 4 months

2
1
0 / 0

[freeipa PR#5647][opened] WIP: check on some performance changes

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5647 Author: rcritten Title: #5647: WIP: check on some performance changes Action: opened PR body: """ Exercise some changes that should reduce the number of queries performed for some operations, mostly host and user related. The execution time patches will be replaced by Antonio's patch at some point. Running in CI to see if anything is terribly broken. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5647/head:pr5647 git checkout pr5647

2 years, 4 months

1
1
0 / 0

[freeipa PR#5764][opened] [Backport][ipa-4-9] Implement simple LDAP cache layer

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5764 Author: rcritten Title: #5764: [Backport][ipa-4-9] Implement simple LDAP cache layer Action: opened PR body: """ This PR was opened automatically because PR #5681 was pushed to master and backport to ipa-4-9 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5764/head:pr5764 git checkout pr5764

2 years, 4 months

1
1
0 / 0

[freeipa PR#5763][opened] [Backport][ipa-4-9] Only attempt to upgrade ACME configuration files if deployed

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5763 Author: rcritten Title: #5763: [Backport][ipa-4-9] Only attempt to upgrade ACME configuration files if deployed Action: opened PR body: """ This PR was opened automatically because PR #5756 was pushed to master and backport to ipa-4-9 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5763/head:pr5763 git checkout pr5763

2 years, 4 months

1
1
0 / 0

[freeipa PR#5681][opened] Implement simple LDAP cache layer

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5681 Author: rcritten Title: #5681: Implement simple LDAP cache layer Action: opened PR body: """ Pretty straightforward caching except for the attribute handling. We probably won't want to cache the entire entry since that could be expensive (userCertificate, ssh keys, etc) but not storing it could lead to multiple requests for the same thing. Also, requesting * vs a set of attributes may not return all a plugin needs, as it will skip operational attributes. Still, this saves 20-50% of queries in my limited testing. Mar 29: initial implementation works about 80% of the time. I guarantee the xmlrpc tests will fail. We'll see about the integration tests. There are still corner cases to find and the member modlist stuff is a mess. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5681/head:pr5681 git checkout pr5681

2 years, 4 months

1
1
0 / 0

[freeipa PR#5756][opened] Only attempt to upgrade ACME configuration files if deployed

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5756 Author: rcritten Title: #5756: Only attempt to upgrade ACME configuration files if deployed Action: opened PR body: """ This can happen on upgrades from older deployments that lack an ACME installation and don't meet the minimum requirements to deploy one automatically. Also don't consider missing ACME schema a total failure, just log and skip it. https://pagure.io/freeipa/issue/8832 Signed-off-by: Rob Crittenden <rcritten(a)redhat.com> TESTING: Testing is difficult because on upgrade IPA will deploy ACME if it isn't already configured. One way to avoid this is to twiddle with /usr/share/pki/VERSION and set the value < 10.10.0. If ACME is already deployed you can remove it with: # pki-server acme-undeploy # rm -rf /etc/pki/pki-tomcat/acme """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5756/head:pr5756 git checkout pr5756

2 years, 4 months

1
1
0 / 0

LDAP caching patch

by Rob Crittenden

Just a heads-up, I'm going to merge the LDAP caching patch later today, PR https://github.com/freeipa/freeipa/pull/5681 Caching is enabled by default and some metrics will be visible in the Apache log when the server is in debug mode, like: ipa: DEBUG: FINAL: Hits 1 Misses 3 Size 2 There is a very simple log parser to determine cache usage in contrib/cachelog if you want to check on how much/if the layer helps. Let me know if you see anything really odd happen. To disable the cache add ldap_cache=False to /etc/ipa/server.conf and restart httpd. rob

2 years, 4 months

1
0
0 / 0

[freeipa PR#5760][opened] ipatests: Tests for RFE auto-private-groups cli option

by menonsudhir

URL: https://github.com/freeipa/freeipa/pull/5760 Author: menonsudhir Title: #5760: ipatests: Tests for RFE auto-private-groups cli option Action: opened PR body: """ This patch tests the various values available for the option auto-private-groups for the idrange-mod command and ensure that the CLI displays the correct result when the value is changed. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5760/head:pr5760 git checkout pr5760

2 years, 4 months

1
0
0 / 0

[freeipa PR#5758][opened] [Backport][ipa-4-9] Spec file: bump augeas-libs version

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5758 Author: rcritten Title: #5758: [Backport][ipa-4-9] Spec file: bump augeas-libs version Action: opened PR body: """ This PR was opened automatically because PR #5745 was pushed to master and backport to ipa-4-9 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5758/head:pr5758 git checkout pr5758

2 years, 4 months

2
1
0 / 0

2023

2022

2021

2020

2019

2018

2017

FreeIPA-devel May 2021