[Pkg-freeipa-devel] [Git][freeipa-team/389-ds-base][master] 60 commits: Issue 50746 - Add option to healthcheck to list all the lint reports
Timo Aaltonen
gitlab at salsa.debian.org
Tue Sep 22 07:24:39 BST 2020
Timo Aaltonen pushed to branch master at FreeIPA packaging / 389-ds-base
Commits:
4a55322c by Matus Honek at 2020-06-02T16:16:09+02:00
Issue 50746 - Add option to healthcheck to list all the lint reports
Bug Description:
Healthcheck lacks a way to find out what checks are available.
Fix Description:
Add dsctl healthcheck options to list available checks, known error
codes, and ability to run cehcks selectively. The checks are rather
hierarchically structured and in some cases matchable by patterns (by
use of asterisk).
Fixes https://pagure.io/389-ds-base/issue/50746
Author: Matus Honek <mhonek at redhat.com>
Review by: Mark, William, Simon (thanks for the patience!)
- - - - -
a0113b19 by Mark Reynolds at 2020-06-02T10:28:24-04:00
Issue 51118 - UI - improve modal validation when creating an instance
Description: Do not enable the "create" button until all the fields are
valid (DN's, port numbers, passwords, etc).
Improve layout and handling of optional database settings.
Add a json argument to dscreate so the UI can report any
failure text. Also improve error reporting in dscreate.
relates: https://pagure.io/389-ds-base/issue/51118
Reviewed by: firstyear & spichugi(Thanks!!)
Improve validation error messages
Fix allowed characters
- - - - -
1d995575 by William Brown at 2020-06-03T09:10:34+10:00
Ticket 51115 - enable samba3.ldif by default
Bug Description: Samba has an ldapsam module that allows
samba to authenticate via LDAP for ad-domain-less systems.
By enabling it by default this opens some easier out-of-the-box
integrations.
Fix Description: Enable it by default, and fix a type in 60samba.ldif
Already tested with replication and 60samba.ldif to ensure no conflict.
https://pagure.io/389-ds-base/issue/51115
Author: William Brown <william at blackhats.net.au>
Review by: mreynolds (Thanks!)
- - - - -
9a069355 by William Brown at 2020-06-03T09:15:05+10:00
Ticket 51072 - improve autotune defaults
Bug Description: we have learnt that the CPU autotuning is too aggresive, potentially
decreasing throughput due to overhead in context switching and lock contention, and
that our memory tuning is not aggressive enough, at only 10% of the system memory.
Additionally, in containers, we are able to have access to different memory limits
and reservations, so we can choose to be even more forward in our selection.
Fix Description: Change thread tuning to match the number of threads available on
the system. Change memory tuning to 25% of system memory by default. Finally add
an environment variable to containers allowing more aggressive tuning to be
set DS_MEMORY_PERCENTAGE. Later this could be set to a higher default value.
https://pagure.io/389-ds-base/issue/51072
Author: William Brown <william at blackhats.net.au>
Review by: mreynolds, vashirov, tbordaz (Thanks!)
- - - - -
b405a909 by William Brown at 2020-06-03T12:23:58+10:00
Ticket 137 - Implement EntryUUID plugin
Bug Description: This implements EntryUUID - A plugin that generates
uuid's on attributes, which can be used by external applications to
associate an entry uniquely.
Fix Description: This change is quite large as it contains multiple parts:
* Schema for entryuuid.
ldap/schema/02common.ldif
ldap/schema/03entryuuid.ldif
* Documentation of the plugin design
src/README.md
* A rust plugin api.
src/slapi_r_plugin/Cargo.toml
src/slapi_r_plugin/README.md
src/slapi_r_plugin/build.rs
src/slapi_r_plugin/src/backend.rs
src/slapi_r_plugin/src/ber.rs
src/slapi_r_plugin/src/constants.rs
src/slapi_r_plugin/src/dn.rs
src/slapi_r_plugin/src/entry.rs
src/slapi_r_plugin/src/error.rs
src/slapi_r_plugin/src/init.c
src/slapi_r_plugin/src/lib.rs
src/slapi_r_plugin/src/log.rs
src/slapi_r_plugin/src/macros.rs
src/slapi_r_plugin/src/pblock.rs
src/slapi_r_plugin/src/plugin.rs
src/slapi_r_plugin/src/search.rs
src/slapi_r_plugin/src/syntax_plugin.rs
src/slapi_r_plugin/src/task.rs
src/slapi_r_plugin/src/value.rs
* An entry uuid syntax plugin, that has functional indexing
src/plugins/entryuuid_syntax/Cargo.toml
src/plugins/entryuuid_syntax/src/lib.rs
* A entry uuid plugin that generates entryuuid's and has a fixup task..
src/plugins/entryuuid/Cargo.toml
src/plugins/entryuuid/src/lib.rs
* Supporting changes in the server core to enable and provide apis for the plugins.
ldap/servers/slapd/config.c
ldap/servers/slapd/entry.c
ldap/servers/slapd/fedse.c
* A test suite for for the entryuuid plugin
dirsrvtests/tests/data/entryuuid/localhost-userRoot-2020_03_30_13_14_47.ldif
dirsrvtests/tests/suites/entryuuid/basic_test.py
* Supporting changes in lib389
src/lib389/lib389/_constants.py
src/lib389/lib389/backend.py
src/lib389/lib389/instance/setup.py
src/lib389/lib389/plugins.py
src/lib389/lib389/tasks.py
* Changes to support building the plugins
Makefile.am
configure.ac
* Execution of cargo fmt on the tree, causing some clean up of files.
src/Cargo.lock
src/Cargo.toml
src/librnsslapd/build.rs
src/librnsslapd/src/lib.rs
src/librslapd/Cargo.toml
src/librslapd/build.rs
src/librslapd/src/lib.rs
src/libsds/sds/lib.rs
src/libsds/sds/tqueue.rs
src/slapd/src/error.rs
src/slapd/src/fernet.rs
src/slapd/src/lib.rs
https://pagure.io/389-ds-base/issue/137
Author: William Brown <william at blackhats.net.au>
Review by: mreynolds, lkrispenz (Thanks)
- - - - -
31e132a5 by Barbora Smejkalova at 2020-06-03T08:22:43+02:00
Issue 50889 - Extract pem files into a private namespace
Description:
Created test for checking if certs and private key in pem format are stored
in private namespace and not under 'nsslapd-certdir' directory.
Relates: https://pagure.io/389-ds-base/issue/50889
Reviewed by: firstyear, tbordaz, vashirov (Thanks!)
- - - - -
e8f510e9 by Barbora Smejkalova at 2020-06-03T06:49:32+00:00
Issue 50545 - Port remaining legacy tools to new python CLI
Description:
Created test that checks output syntax for dbmon to make sure
it did not fail with error.
Relates: https://pagure.io/389-ds-base/issue/50545
Reviewed by: firstyear, mreynolds (Thanks!)
- - - - -
4f2f3c37 by William Brown at 2020-06-04T00:12:49+00:00
Ticket 51034 - labeledURIObject
Bug Description: We are missing part of rfc2079, the labeledURIObject
Fix Description: At the schema as defined in the RFC
https://pagure.io/389-ds-base/issue/51034
Author: William Brown <william at blackhats.net.au>
Review by: ???
- - - - -
75c8de1e by Mark Reynolds at 2020-06-04T10:25:10-04:00
Issue 51132 - Winsync setting winSyncWindowsFilter not working as expected
Bug Description: When processing updates from AD we search AD using a filter,
and this filter can be customized via the attribute setting:
winSyncWindowsFilter. However, after setting a custom filter
replication appears to stop working as expected. New entries
that match the filter are replicated to DS, but not updates
to these entries. The problem is that when dirsync sends
updates, it is just a partial entry - only containing the
attributes that changed. Then the server checks the filter
again on the returned entry, but if it's just a mod update then
the entry is missing most of its attributes, and the filter
check fails and the entry is not updated on DS.
Fix Description: Do not check the filter on the returned entries when processing
incremental updates as the fitler test was already done when
gathering the candidates.
relates: https://pagure.io/389-ds-base/issue/51132
Reviewed by: tbordaz & firstyear (Thanks!)
- - - - -
ac54e069 by Viktor Ashirov at 2020-06-05T01:58:49+02:00
Issue 50781 - Make building cockpit plugin optional
Bug Description:
Currently building 389-ds involves building cockpit-389-ds too,
which is not always desired.
Fix Description:
Introduce a new configure parameter --enable-cockpit, which is on by default.
Fixes: https://pagure.io/389-ds-base/issue/50781
Doc impact: no
Reviewed by: ???
- - - - -
05e3407e by William Brown at 2020-06-05T11:58:20+10:00
Ticket 137 - fix compiler warning
Bug Description: Fix a compiler warning
Fix Description: -
https://pagure.io/389-ds-base/issue/137
https://pagure.io/389-ds-base/pull-request/50970#comment-122059
Author: William Brown <william at blackhats.net.au>
Review by: ???
- - - - -
af870480 by Mark Reynolds at 2020-06-08T11:13:14-04:00
Issue 51136 - dsctl and dsidm do not errors correctly when using JSON
Description: dsctl and dsidm were not returning errors in a JSON object
when the JSON CLI option is requested. This breaks the UI
when errors occur.
fixes: https://pagure.io/389-ds-base/issue/51136
Reviewed by: firstyear & spichugi(Thanks!)
- - - - -
ac58ddf3 by Simon Pichugin at 2020-06-09T18:36:25+02:00
Issue 51100 - Correct numSubordinates value for cn=monitor
Bug Description: numSubordinates for cn=monitor shows 4
while there are 3 child entries are present.
Fix Description: Ignore easter egg entry while increasing
numSubordinates count.
https://pagure.io/389-ds-base/issue/51100
Reviewed by: mreynolds (Thanks!)
- - - - -
e9626cc7 by Viktor Ashirov at 2020-06-10T13:26:58+02:00
Issue 50781 - Make building cockpit plugin optional
Bug description:
Cockpit plugin should be optional, but not disabled by default.
Fix description:
Change the default to COCKPIT_ON = 1
Relates: https://pagure.io/389-ds-base/issue/50781
Reviewed by: mreynolds (Thanks!)
- - - - -
3ddcc620 by Mark Reynolds at 2020-06-11T15:47:43-04:00
Issue 50912 - pwdReset can be modified by a user
Description: The attribute "pwdReset" should only be allowed to be set by the
server. Update schema definition to include NO-USER-MODIFICATION
relates: https://pagure.io/389-ds-base/issue/50912
Reviewed by: mreynolds(one line commit rule)
- - - - -
4cfa3745 by William Brown at 2020-06-11T23:45:20+00:00
Ticket 51140 - missing ifdef
Bug Description: entryuuid syntax was added when rust is
not enabled.
Fix Description: Add the missing ifdef
https://pagure.io/389-ds-base/issue/51140
Author: William Brown <william at blackhats.net.au>
Review by: ???
- - - - -
dc7bf4a7 by Mark Reynolds at 2020-06-15T11:01:02-04:00
Issue 51072 - Set the default minimum worker threads
Description: Testing has shown that using current number of CPU cores
to set the thread number gives the best performance, but
when there are expensive operations total throughput drops.
We still need a minimum number of workers threads to handle
a wide range of operations. We decided for now that the
minimum should be 16 workers.
relates: https://pagure.io/389-ds-base/issue/51072
Reviewed by: tbordaz & firstyear (Thanks!!)
Define MAX and MIN threads, and improve logging
- - - - -
f75fd1aa by Mark Reynolds at 2020-06-15T11:37:39-04:00
Issue 50791 - Healthcheck should look for notes=A/F in access log
Description: Add checks for notes=A (fully unindexed search) and
notes=F (Unknown attribute in search filter) in the
current access log.
relates: https://pagure.io/389-ds-base/issue/50791
Reviewed by: firstyear(Thanks!)
- - - - -
2ccd0bed by Thierry Bordaz at 2020-06-15T18:00:07+02:00
Ticket 49859 - A distinguished value can be missing in an entry
Bug description:
According to RFC 4511 (see ticket), the values of the RDN attributes
should be present in an entry.
With a set of replicated operations, it is possible that those values
would be missing
Fix description:
MOD and MODRDN update checks that the RDN values are presents.
If they are missing they are added to the resulting entry. In addition
the set of modifications to add those values are also indexed.
The specific case of single-valued attributes, where the final and unique value
can not be the RDN value, the attribute nsds5ReplConflict is added.
https://pagure.io/389-ds-base/issue/49859
Reviewed by: Mark Reynolds, William Brown
Platforms tested: F31
- - - - -
a1c8e126 by Viktor Ashirov at 2020-06-16T20:47:17+02:00
Issue 49761 - Fix CI tests
Fix Description:
* Remove checks for some of the expected logs that are no longer present after
https://pagure.io/389-ds-base/issue/51076
* Use a fixture for disabling/enabling access log buffering
Relates: https://pagure.io/389-ds-base/issue/49761
Reviewed by: spichugi (Thanks!)
- - - - -
7e1d80f6 by William Brown at 2020-06-17T01:39:05+00:00
Ticket 51131 - improve mutex alloc in conntable
Bug Description: We previously did delayed allocation
of mutexs, which @tbordaz noted can lead to high usage
of the pthread mutex init routines. This was done under
the conntable lock, as well as cleaning the connection
Fix Description: rather than delayed allocation, we
initialise everything at start up instead, which means
that while startup may have a delay, at run time we have
a smaller and lighter connection allocation routine,
that is able to release the CT lock sooner.
https://pagure.io/389-ds-base/issue/51131
Author: William Brown <william at blackhats.net.au>
Review by: ???
- - - - -
327147cf by Simon Pichugin at 2020-06-17T13:35:31+02:00
Issue 50984 - Memory leaks in disk monitoring
Description: Fix the rest of the leaks in disk monitoring
which are present when we shutdown while being below half
of the threshold (at the start-up in main.c).
Free directories, sockets and ports before going to cleanup.
https://pagure.io/389-ds-base/issue/50984
Reviewed by: mhonek, tbordaz (Thanks!)
- - - - -
f97a86af by William Brown at 2020-06-18T00:16:42+00:00
Ticket 51159 - dsidm ou delete fails
Bug Description: delete ou would fail with a stack
trace due to incorrect variable args
Fix Description: use args.dn
https://pagure.io/389-ds-base/issue/51159
Author: William Brown <william at blackhats.net.au>
Review by: ???
- - - - -
c6405714 by Mark Reynolds at 2020-06-18T10:23:20-04:00
Issue 51155 - Fix OID for sambaConfig objectclass
Description: The wrong OID was set for sambaConfig objectclass
relates: https://pagure.io/389-ds-base/issue/51155
Reviewed by: mreynolds & tbordaz
- - - - -
3a964c2d by Mark Reynolds at 2020-06-18T17:03:09-04:00
Issue 51144 - dsctl fails with instance names that contain slapd-
Bug Description: If an instance name contains 'slapd-' the CLI breaks:
slapd-test-slapd
Fix Description: Only strip off "slapd-" from the front of the instance
name.
relates: https://pagure.io/389-ds-base/issue/51144
Reviewed by: firstyear(Thanks!)
- - - - -
c20cb673 by Simon Pichugin at 2020-06-18T23:51:53+02:00
Issue 49999 - rpm.mk build-cockpit should clean cockpit_dist first
Description: make -f rpm.mk rpms should always generate this directory
from scratch: src/cockpit/389-console/cockpit_dist
https://pagure.io/389-ds-base/issue/49999
Reviewed by: spichugi (one-line rule)
- - - - -
b59faa43 by William Brown at 2020-06-19T11:24:10+10:00
Ticket 51161 - fix SLE15.2 install issps
Bug Description: On SLE15.2 the hostname is almost always set
incorrectly which can break the install. Newer versions of
systemd encode utf8 in their command output that trips up
the log subsystem.
Fix Description:
We have to set SER_HOST rather than using the default which is
socket.gethostname() from init.py.
Discard the special utf8 encodings in the log output for systemd
https://pagure.io/389-ds-base/issue/51161
Author: William Brown <william at blackhats.net.au>
Review by: mreynolds (Thanks!)
- - - - -
8f3887e0 by William Brown at 2020-06-22T14:16:31+10:00
Ticket 50544 - OpenLDAP syncrepl compatability
Bug Description: Some customers have asked for the ability to sync
openldap fro 389-ds in a read only mode. OpenLDAP's syncrepl
functionality is slightly different to what our module expected,
requiring changes to be made.
Fix Description: This fixes a number of syncrepl issues within
our plugin, works around a number of deviations from OpenLDAP's
syncrepl client, adds tests, and the needed schema to allow
OpenLDAP to sync from 389-ds.
Outstanding issue is that when the EntryUUID plugin is enabled, it
can confuse OpenLDAP, so a subsequent PR will address that issue.
Note, the provided tests require a fix to python-ldap, so you may
not be able to run these tests yet. See:
https://github.com/python-ldap/python-ldap/pull/351
https://pagure.io/389-ds-base/issue/50544
Author: William Brown <william at blackhats.net.au>
Review by: mreynolds (Thanks!)
- - - - -
16e47bff by Mark Reynolds at 2020-06-22T09:02:00-04:00
Issue 51166 - Log an error when a search is fully unindexed
Bug Description: Some plugins can trigger very expensive internal searches
that can exhaust the bdb db_locks. It is very difficult
to track these down.
Fix description: Log a message to the errors log when any search (internal or not)
is fully unindexed and provide the search details. This will
allow an admin to identify and fix indexing issues.
relates: https://pagure.io/389-ds-base/issue/51166
Reviewed by: firstyear & tbordaz(Thanks!!)
- - - - -
2813d3d0 by Anuj Borah at 2020-06-22T19:25:09+05:30
Issue:50860 - Port Password Policy test cases from TET to python3 part2
Bug Description: CI test - Port Password Policy test cases from TET to python3 part2
Relates: https://pagure.io/389-ds-base/issue/50860
Author: aborah
Reviewed by: Viktor Ashirov
- - - - -
fe48b604 by Barbora Smejkalova at 2020-06-22T16:15:24+02:00
Issue 50873 - Fix issues with healthcheck tool
Description:
I finished remaining tests for healthcheck tool.
I moved some of the tests to separate files because one large file was becoming messy.
Also the test in health_sync_test.py is separate because it is time sensitive to reproduce.
Running it with other tests in one file can cause delay and not catching the error code.
Created requirements.txt to install libfaketime.
Updated topologies.py for LogCapture.
Relates: https://pagure.io/389-ds-base/issue/50873
Reviewed by: vashirov (Thanks!)
- - - - -
526b542b by Simon Pichugin at 2020-06-23T01:36:35+02:00
Issue 51157 - Reindex task may create abandoned index file
Bug Description: Recreating an index for the same attribute but changing
the case of for example 1 letter, results in abandoned indexfile.
Fix Decsription: Add a test case to a newly created 'indexes' test suite.
When we remove the index config from the backend, - remove the attribute
info from LDBM instance attributes.
https://pagure.io/389-ds-base/issue/51157
Reviewed by: firstyear, mreynolds (Thanks!)
- - - - -
a64d6be1 by Mark Reynolds at 2020-06-23T01:27:01+00:00
Issue 49256 - log warning when thread number is very different from autotuned value
Description: To help prevent customers from setting incorrect values for
the thread number it would be useful to warn them that the
configured value is either way too low or way too high.
relates: https://pagure.io/389-ds-base/issue/49256
Reviewed by: firstyear(Thanks!)
- - - - -
a99cd7c7 by Mark Reynolds at 2020-06-23T11:35:30-04:00
Issue 51169 - UI - attr uniqueness - selecting empty subtree crashes cockpit
Description: When processing the typeAheadChange we need to check for a empty
string before treating the array like a list of objects.
Also updated README with contribution instructions
relates: https://pagure.io/389-ds-base/issue/51169
Reviewed by: spichugi(Thanks!)
Improve handling of typeAhead values.
In some cases its an array of strings, and in some cases it's array of objects
- - - - -
0f8605a7 by Simon Pichugin at 2020-06-23T19:28:59+02:00
Issue 50696 - Fix Allowed and Denied Ciphers lists - WebUI
Description: When we add a cipher to an Allowed list we should
not be allowed to add the same cipher to a Denied list.
Also, show a warning when we do an action which requires a restart.
https://pagure.io/389-ds-base/issue/50696
Reviewed by: mreynolds (Thanks!)
- - - - -
d4f5dce7 by Anuj Borah at 2020-06-24T09:43:50+05:30
Issue: 50860 - Port Password Policy test cases from TET to python3 final
Bug Description: Port Password Policy test cases from TET to python3 final
Fixes: https://pagure.io/389-ds-base/issue/50860
Author: aborah
Reviewed by: Simon Pichugin
- - - - -
32593df1 by Anuj Borah at 2020-06-24T07:44:40+00:00
Issue:51142 - Port manage Entry TET suit to python 3 part 1
Bug Description: Port manage Entry TET suit to python 3 part 1
Relates: https://pagure.io/389-ds-base/issue/51142
Author: aborah
Reviewed by: Viktor Ashirov
- - - - -
0a71c3db by Anuj Borah at 2020-06-24T07:53:31+00:00
Issue: 51070 - Port Import TET module to python3 part2
Bug Description: Port Import TET module to python3 part2
Fixes: https://pagure.io/389-ds-base/issue/51070
Author: aborah
Reviewed by: Viktor Ashirov
- - - - -
6a2750c0 by Anuj Borah at 2020-06-24T07:58:28+00:00
Issue : 49761 - Fix CI test suite issues ( Port remaning acceptance test suit part 1)
Bug Description: Port remaning acceptance test suit part 1
Relates/Fixes: https://pagure.io/389-ds-base/issue/49761
Author: aborah
Reviewed by: Viktor Ashirov
- - - - -
3246fe79 by Mark Reynolds at 2020-06-24T16:55:59+00:00
Issue 51165 - add new access log keywords for wtime and optime
Description: In addition to the "etime" stat in the access we can also
add the time the operation spent in the work queue, and
how long the actual operation took. We now have "wtime"
and "optime" to track these stats in the access log.
Also updated logconf for notes=F (related to a different
ticket), and stats for wtime and optime.
relates: https://pagure.io/389-ds-base/issue/51165
Reviewed by: ?
- - - - -
98a8287e by Barbora Smejkalova at 2020-06-25T13:01:50+02:00
Issue 50545 - Port remaining legacy tools to new python CLI
Description:
Created sanity tests for repl-monitor, dbverify, ldifgen (dbgen) and fixup task
into separate files for each tool.
All tests check output syntax to make sure the tool did not fail with error.
Tests for dbgen create ldif files, that are imported to database and
then check if entries are imported correctly.
Relates: https://pagure.io/389-ds-base/issue/50545
Reviewed by: spichugi (Thanks!)
- - - - -
20e24cc0 by Simon Pichugin at 2020-06-26T02:00:31+02:00
Issue 51188 - db2ldif crashes when LDIF file can't be accessed
Bug Description: db2ldif crashes when we set '-a LDIF_PATH' to a place that
can't be accessed by the user (dirsrv by default)
Fix Description: Don't attempt to close DB if we bail after a failed
attempt to open LDIF file.
https://pagure.io/389-ds-base/issue/51188
Reviewed by: mreynolds (Thanks!)
- - - - -
c48f4d98 by Akshay Adhikari at 2020-06-26T18:30:57+05:30
Issue 50928 - Unable to create a suffix with countryName either via dscreate or the admin console
Description: Added a test case to create a suffix with countryName and all other RDN attributes
via dscreate, also added a negative scenario.
Relates: https://pagure.io/389-ds-base/issue/50928
Reviewed by: vashirov, mreynolds (Thanks!)
- - - - -
f771ff7e by Mark Reynolds at 2020-06-28T22:05:23-04:00
Issue 51165 - add more logconv stats for the new access log keywords
Description: Add "average" stats for wtime, optime, and etime
relates: https://pagure.io/389-ds-base/issue/51165
Reviewed by: firstyear(Thanks!)
- - - - -
91c8ad41 by Thierry Bordaz at 2020-06-29T13:46:09+02:00
Ticket 50980 - fix foo_filter_rewrite
- - - - -
567e8312 by Viktor Ashirov at 2020-06-30T18:28:35+02:00
Issue 50840 - Fix test docstrings metadata
Bug Description:
Some tests have an incorrect metadata in the docstrings. This prevents
the import of the test cases in the test case management system.
Fix Description:
Update the metadata:
* Add missing test tier markers
* Fix missing newline between the short description and :id: token.
* Update test descriptions
* Fix aci tests so that the correct test case name is used in the
aci description
* Fix all warnings and errors reported by docutils parser
Fixes: https://pagure.io/389-ds-base/issue/50840
Reviewed by: mreynolds (Thanks!)
- - - - -
36d61e9a by Akshay Adhikari at 2020-07-01T15:24:14+05:30
Issue 50840 - Fix test docstrings metadata-1
Fix Description: Updated the metadata
Relates: https://pagure.io/389-ds-base/issue/50840
Reviewed by: vashirov
- - - - -
53f92181 by Mark Reynolds at 2020-07-01T09:07:37-04:00
Issue 51192 - Add option to reject internal unindexed searches
Bug Description: Some plugins can perform unindexed searches, and under the
right conditions this can cause problems like exhausting DB locks.
The setting "nsslapd-require-index" does not apply to internal
searches, so there is no way to prevent these searches from
occuring.
Fix Description: Add a new database setting "nsslapd-require-internalop-index"
that rejects an internal unindexed searches.
Also found during testing that when the RI plugin fails that
it does not set the proper result error code.
relates: https://pagure.io/389-ds-base/issue/51192
Reviewed by: firstyear, spichugi & tbordaz (Thanks!!!)
- - - - -
5cc73845 by Mark Reynolds at 2020-07-01T23:08:57-04:00
Issue 51187 - UI - stop importing Cockpit's PF css
Bug Description: Cockpit has deprecated its patternfly css, so plugins
need to provide their own.
Fix Description: Used the same process cockpit-podman used. Was able to
consolidate the our CSS files so we don't have to ship
ds.css and branding.css. This also allowed us to remove
all the ds.css imports for almost every jsx file.
Special thanks to Martin Pitt for helping with this patch!
relates: https://pagure.io/389-ds-base/issue/51187
Reviewed by: spichugi(Thanks!)
- - - - -
017fda07 by William Brown at 2020-07-03T09:24:44+10:00
Ticket 51175 - resolve plugin name leaking
Bug Description: Previously pblock.c assumed that all plugin
names were static c strings. Rust can't create static C
strings, so these were intentionally leaked.
Fix Description: Rather than leak these, we do a dup/free
through the slapiplugin struct instead, meaning we can use
ephemeral, and properly managed strings in rust. This does not
affect any other existing code which will still handle the
static strings correctly.
https://pagure.io/389-ds-base/issue/51175
Author: William Brown <william at blackhats.net.au>
Review by: mreynolds, tbordaz (Thanks!)
- - - - -
318a3ce0 by Mark Reynolds at 2020-07-08T17:01:34-04:00
Bump version to 1.4.4.4
- - - - -
26254f33 by Timo Aaltonen at 2020-09-14T13:58:31+03:00
watch: Update upstream git repo url.
- - - - -
d87aa88b by Timo Aaltonen at 2020-09-14T14:04:19+03:00
Merge branch 'upstream'
- - - - -
49d9c6c7 by Timo Aaltonen at 2020-09-14T14:10:24+03:00
bump the version
- - - - -
99853049 by Timo Aaltonen at 2020-09-22T09:00:12+03:00
control: Add python3-dateutil to build-depends.
- - - - -
59af6ae4 by Timo Aaltonen at 2020-09-22T09:05:44+03:00
copyright: Drop duplicate globbing patterns.
- - - - -
05ae503b by Timo Aaltonen at 2020-09-22T09:12:20+03:00
lintian: Drop obsolete overrides.
- - - - -
a382e5fd by Timo Aaltonen at 2020-09-22T09:19:12+03:00
postinst: Drop obsolete rule to upgrade the instances.
- - - - -
8d01d3a6 by Timo Aaltonen at 2020-09-22T09:23:15+03:00
prerm: Use dsctl instead of remove-ds.
- - - - -
583b0f85 by Timo Aaltonen at 2020-09-22T09:23:48+03:00
releasing package 389-ds-base version 1.4.4.4-1
- - - - -
30 changed files:
- + LICENSE.openldap
- Makefile.am
- VERSION.sh
- configure.ac
- − debian/389-ds-base-libs.lintian-overrides
- debian/389-ds-base.lintian-overrides
- debian/389-ds-base.postinst
- debian/389-ds-base.prerm
- debian/changelog
- debian/control
- debian/copyright
- debian/watch
- + dirsrvtests/requirements.txt
- + dirsrvtests/tests/data/entryuuid/localhost-userRoot-2020_03_30_13_14_47.ldif
- dirsrvtests/tests/suites/acl/acivattr_test.py
- dirsrvtests/tests/suites/acl/acl_test.py
- dirsrvtests/tests/suites/acl/deladd_test.py
- dirsrvtests/tests/suites/acl/enhanced_aci_modrnd_test.py
- dirsrvtests/tests/suites/acl/keywords_test.py
- dirsrvtests/tests/suites/acl/misc_test.py
- dirsrvtests/tests/suites/acl/modify_test.py
- dirsrvtests/tests/suites/acl/modrdn_test.py
- dirsrvtests/tests/suites/acl/search_real_part2_test.py
- dirsrvtests/tests/suites/acl/search_real_part3_test.py
- dirsrvtests/tests/suites/acl/search_real_test.py
- dirsrvtests/tests/suites/acl/selfdn_permissions_test.py
- dirsrvtests/tests/suites/acl/valueacl_part2_test.py
- dirsrvtests/tests/suites/acl/valueacl_test.py
- dirsrvtests/tests/suites/attr_encryption/attr_encryption_test.py
- dirsrvtests/tests/suites/automember_plugin/basic_test.py
The diff was not included because it is too large.
View it on GitLab: https://salsa.debian.org/freeipa-team/389-ds-base/-/compare/17586c424ab4eceefdca14cd61bb10510e8f0fe6...583b0f85c29bcd0d85f15ff7371c19480e28e31c
--
View it on GitLab: https://salsa.debian.org/freeipa-team/389-ds-base/-/compare/17586c424ab4eceefdca14cd61bb10510e8f0fe6...583b0f85c29bcd0d85f15ff7371c19480e28e31c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-freeipa-devel/attachments/20200922/f449bdc5/attachment-0001.html>
More information about the Pkg-freeipa-devel
mailing list