URL: https://github.com/freeipa/freeipa/pull/5993
Author: tiran
Title: #5993: Avoid double encryption of LDAP connections
Action: opened
PR body:
"""
The default settings of FreeIPA and OpenLDAP's libldap result in double
encryption of LDAPS and StartTLS connections. The outer layer is TLS
URL: https://github.com/freeipa/freeipa/pull/5990
Author: tiran
Title: #5990: Temp commit
Action: opened
PR body:
"""
None
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5990/head:pr5990
git checkout pr5990
From
URL: https://github.com/freeipa/freeipa/pull/5937
Author: tiran
Title: #5937: Fix ldapupdate.get_sub_dict() for missing named user
Action: opened
PR body:
"""
Manual backport of PR #5927
The named user may not be present when ipa-server-dns and bind are not
installed. NAMED_UID and NAMED_GID
URL: https://github.com/freeipa/freeipa/pull/5927
Author: tiran
Title: #5927: Fix ldapupdate.get_sub_dict() for missing named user
Action: opened
PR body:
"""
The named user may not be present when ipa-server-dns and bind are not
installed. NAMED_UID and NAMED_GID constants are only used with
URL: https://github.com/freeipa/freeipa/pull/5504
Author: tiran
Title: #5504: Test on Fedora 33
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5504/head:pr5504
git checkout pr5504
URL: https://github.com/freeipa/freeipa/pull/5752
Author: tiran
Title: #5752: Fix update_dna_shared_config to wait for both entries
Action: opened
PR body:
"""
update_dna_shared_config plugin now waits for presence of both
``dnaHostname=fqdn+dnaPortNum=0`` and
URL: https://github.com/freeipa/freeipa/pull/5740
Author: tiran
Title: #5740: Constrain pylint to supported versions
Action: opened
PR body:
"""
Two, three times a year PR-CI starts failing because tox tests pull in a
newer version of pylint with new warnings. To reduce breakage this
change
URL: https://github.com/freeipa/freeipa/pull/5726
Author: tiran
Title: #5726: Try KRA wot PyCA crypto provider
Action: opened
PR body:
"""
I don't understand why the provider is even asking for a certificate. It's not
used except in `get_cert()`` call.
Signed-off-by: Christian Heimes
"""
URL: https://github.com/freeipa/freeipa/pull/5652
Author: tiran
Title: #5652: Add basic support for subordinate user/group ids
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5652/head:pr5652
git checkout pr5652
URL: https://github.com/freeipa/freeipa/pull/5709
Author: tiran
Title: #5709: Add max/min safe integer
Action: opened
PR body:
"""
JSON cannot safely handle integers outside range ``-(2**53) - 1`` to
``(2**53) - 1``. Add constants for safe integers and limit the Int
parameter to safe JSON
URL: https://github.com/freeipa/freeipa/pull/5438
Author: tiran
Title: #5438: [PoC] Add support for subuid and subgid
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5438/head:pr5438
git checkout pr5438
URL: https://github.com/freeipa/freeipa/pull/5652
Author: tiran
Title: #5652: Add basic support for subordinate user/group ids
Action: opened
PR body:
"""
New LDAP object class "ipaUserSubordinate" with four new fields:
- ipasubuidnumber / ipasubuidcount
- ipasubgidnumber / ipasgbuidcount
URL: https://github.com/freeipa/freeipa/pull/5520
Author: tiran
Title: #5520: Fix pylint issues with pexpect wrapper
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5520/head:pr5520
git checkout pr5520
URL: https://github.com/freeipa/freeipa/pull/5520
Author: tiran
Title: #5520: Fix pylint issues with pexpect wrapper
Action: opened
PR body:
"""
Also move dependencies to extras_require.
See: https://pagure.io/freeipa/issue/8690
See: https://github.com/freeipa/freeipa/pull/5460
URL: https://github.com/freeipa/freeipa/pull/5460
Author: wladich
Title: #5460: ipatests: use pexpect for controlling interactive command line
utilities
Action: reopened
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5516
Author: tiran
Title: #5516: configure: ipaplatform falls back to ID_LIKE
Action: opened
PR body:
"""
The auto-detection code for IPAPLATFORM now falls back to ID_LIKE.
CentOS platform will now be treated as rhel-like, Ubuntu platforms as
URL: https://github.com/freeipa/freeipa/pull/5504
Author: tiran
Title: #5504: Test on Fedora 33
Action: opened
PR body:
"""
389-DS on Fedora 32 does not have new DS feature.
Update to temmplate 0.0.5 with updated DS.
Signed-off-by: Christian Heimes
"""
To pull the PR as Git branch:
git
URL: https://github.com/freeipa/freeipa/pull/5496
Author: tiran
Title: #5496: Fix cert_request for KDC cert
Action: opened
PR body:
"""
ca_kdc_check() expects an API object, not an LDAP connection. Issue was
introduced in commit 8f4abf7bc1607fc44f528b8a443b69cb82269e69.
See:
URL: https://github.com/freeipa/freeipa/pull/5495
Author: tiran
Title: #5495: Ensure that KDC cert has SAN DNS entry
Action: opened
PR body:
"""
The dns parameter of request_and_wait_for_cert() must be a string of
hostnames.
* Enforce list/tuple type so that API misuse no longer passes
URL: https://github.com/freeipa/freeipa/pull/5459
Author: tiran
Title: #5459: Don't install csrgen extra dependencies
Action: opened
PR body:
"""
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5459/head:pr5459
git
URL: https://github.com/freeipa/freeipa/pull/5439
Author: tiran
Title: #5439: Add ccache sweeper files to gitignore
Action: opened
PR body:
"""
See: https://pagure.io/freeipa/issue/8589
Signed-off-by: Christian Heimes
"""
To pull the PR as Git branch:
git remote add ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5438
Author: tiran
Title: #5438: [PoC] Add support for subuid and subgid
Action: opened
PR body:
"""
See: https://pagure.io/freeipa/issue/8361
Signed-off-by: Christian Heimes
"""
To pull the PR as Git branch:
git remote add ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5388
Author: tiran
Title: #5388: Better mod_wsgi configuration
Action: opened
PR body:
"""
* Remove WSGIImportScript
* Configure process-group in WSGIScriptAlias
* Run WSGI app in main interpreter of daemon script
* move WSGI app code to main code
URL: https://github.com/freeipa/freeipa/pull/5340
Author: tiran
Title: #5340: Change mkdir logic in DNSSEC
Action: opened
PR body:
"""
- Create /var/named/dyndb-ldap/ipa/master/ early
- Assume that /var/named/dyndb-ldap/ipa/master/ exists in BINDMgr.sync()
Signed-off-by: Christian Heimes
URL: https://github.com/freeipa/freeipa/pull/5325
Author: tiran
Title: #5325: LDAP autobind authenticateAsDN for BIND named
Action: opened
PR body:
"""
Use new nsslapd-ldapiautoauthdnattr feature to switch BIND named from
GSSAPI bind to EXTERNAL LDAPI bind.
Requires 389-DS build
URL: https://github.com/freeipa/freeipa/pull/5204
Author: tiran
Title: #5204: Test with python-ldap 3.3.1
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5204/head:pr5204
git checkout pr5204
URL: https://github.com/freeipa/freeipa/pull/5262
Author: tiran
Title: #5262: Fix TLS/SSL related issues in EPN
Action: opened
PR body:
"""
Prevent downgrade attack when admin requests STARTTLS but server does
not return STARTTLS in EHLO message. The SMTP.starttls() methods checks
for
URL: https://github.com/freeipa/freeipa/pull/5204
Author: tiran
Title: #5204: Test with python-ldap 3.3.1
Action: opened
PR body:
"""
Signed-off-by: Christian Heimes
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5144
Author: tiran
Title: #5144: Reduce runtime of server installer by about 90 seconds or more
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5144/head:pr5144
git
URL: https://github.com/freeipa/freeipa/pull/5182
Author: tiran
Title: #5182: Speed up cainstance.migrate_profiles_to_ldap
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5182/head:pr5182
git checkout pr5182
URL: https://github.com/freeipa/freeipa/pull/5189
Author: tiran
Title: #5189: [Backport][ipa-4-8] Lookup ipa-ca record with NSS
Action: opened
PR body:
"""
Manual backport of PR #5174
DNS data management now uses NSS's getaddrinfo() instead of direct DNS
queries to resolve the ipa-ca
URL: https://github.com/freeipa/freeipa/pull/5174
Author: tiran
Title: #5174: Lookup ipa-ca record with NSS
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5174/head:pr5174
git checkout pr5174
URL: https://github.com/freeipa/freeipa/pull/5181
Author: tiran
Title: #5181: [Backport][ipa-4-8] Require(post) systemd with resolved enabled
on F33
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5182
Author: tiran
Title: #5182: Speed up cainstance.migrate_profiles_to_ldap
Action: opened
PR body:
"""
The ra_certprofile API is slow. It takes ~200ms to migrate and enable a
profile even when the profile already available. The migration step
URL: https://github.com/freeipa/freeipa/pull/5181
Author: tiran
Title: #5181: [Backport][ipa-4-8] Require(post) systemd with resolved enabled
on F33
Action: opened
PR body:
"""
Manual backport of PR #5175
"""
To pull the PR as Git branch:
git remote add ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5175
Author: tiran
Title: #5175: Require(post) systemd with resolved enabled on F33
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5175/head:pr5175
git checkout
URL: https://github.com/freeipa/freeipa/pull/5178
Author: tiran
Title: #5178: [Backport][ipa-4-8] Replace sudo with runuser
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5178/head:pr5178
git checkout pr5178
URL: https://github.com/freeipa/freeipa/pull/5178
Author: tiran
Title: #5178: [Backport][ipa-4-8] Replace sudo with runuser
Action: opened
PR body:
"""
This PR was opened automatically because PR #5177 was pushed to master and
backport to ipa-4-8 is required.
"""
To pull the PR as Git
URL: https://github.com/freeipa/freeipa/pull/5177
Author: tiran
Title: #5177: Replace sudo with runuser
Action: opened
PR body:
"""
runuser is in util-linux and does not require sudo package.
Related: https://pagure.io/freeipa/issue/8530
Signed-off-by: Christian Heimes
"""
To pull the PR
URL: https://github.com/freeipa/freeipa/pull/5171
Author: tiran
Title: #5171: [Backport][ipa-4-8] Check ca_wrapped in ipa-custodia-check
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5171/head:pr5171
git
URL: https://github.com/freeipa/freeipa/pull/5174
Author: tiran
Title: #5174: Lookup ipa-ca record with NSS
Action: opened
PR body:
"""
DNS data management now uses NSS's getaddrinfo() instead of direct DNS
queries to resolve the ipa-ca record. This fixes missing ipa-ca records
when the
URL: https://github.com/freeipa/freeipa/pull/5173
Author: tiran
Title: #5173: Use separate install logs for AD and DNS instance
Action: opened
PR body:
"""
ipa-dns-install and ipa-adtrust-install no longer overwrite
ipaserver-install.log. Instead they use a separate log file.
Add AD-Trust,
URL: https://github.com/freeipa/freeipa/pull/5167
Author: tiran
Title: #5167: Speed up PKI installer steps
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5167/head:pr5167
git checkout pr5167
URL: https://github.com/freeipa/freeipa/pull/5164
Author: tiran
Title: #5164: Speed up DS related installer steps
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5164/head:pr5164
git checkout pr5164
URL: https://github.com/freeipa/freeipa/pull/5171
Author: tiran
Title: #5171: [Backport][ipa-4-8] Check ca_wrapped in ipa-custodia-check
Action: opened
PR body:
"""
Manual backport of PR #5112
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git
URL: https://github.com/freeipa/freeipa/pull/5112
Author: tiran
Title: #5112: Check ca_wrapped in ipa-custodia-check
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5112/head:pr5112
git checkout pr5112
URL: https://github.com/freeipa/freeipa/pull/5166
Author: tiran
Title: #5166: Retry chronyc waitsync only once
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5166/head:pr5166
git checkout pr5166
URL: https://github.com/freeipa/freeipa/pull/5168
Author: tiran
Title: #5168: [Backport][ipa-4-8] configure_dns_resolver: call
self.restore_context
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5162
Author: tiran
Title: #5162: configure_dns_resolver: call self.restore_context
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5162/head:pr5162
git checkout
URL: https://github.com/freeipa/freeipa/pull/5168
Author: tiran
Title: #5168: [Backport][ipa-4-8] configure_dns_resolver: call
self.restore_context
Action: opened
PR body:
"""
This PR was opened automatically because PR #5162 was pushed to master and
backport to ipa-4-8 is required.
"""
To
URL: https://github.com/freeipa/freeipa/pull/5165
Author: tiran
Title: #5165: Reduce long sleeps in certmonger wait_for_request()
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5165/head:pr5165
git checkout
URL: https://github.com/freeipa/freeipa/pull/5167
Author: tiran
Title: #5167: Speed up PKI installer steps
Action: opened
PR body:
"""
## Skip duplicate import of cert profiles
All supported Dogtag versions import the cert profiles during pkispawn
when using the LDAP profile backend.
URL: https://github.com/freeipa/freeipa/pull/5166
Author: tiran
Title: #5166: Retry chronyc waitsync only once
Action: opened
PR body:
"""
It's unlikely that a third chrony synchronization attempt is going to
succeed after the the first two attempts have failed. Only retry chronyc
waitsync
URL: https://github.com/freeipa/freeipa/pull/5163
Author: tiran
Title: #5163: [Backport][ipa-4-8] Add missing fedora_container platform members
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5163/head:pr5163
URL: https://github.com/freeipa/freeipa/pull/5165
Author: tiran
Title: #5165: Reduce long sleeps in certmonger wait_for_request()
Action: opened
PR body:
"""
## Add helper for poll/sleep loops with timeout
The Sleeper class is a helper that makes poll/sleep loops with timeout
easier to
URL: https://github.com/freeipa/freeipa/pull/5164
Author: tiran
Title: #5164: Speed up DS related installer steps
Action: opened
PR body:
"""
## Remove root-autobind configuration
The new lib389-based installer configured 389-DS with LDAPI support and
autobind for root.
URL: https://github.com/freeipa/freeipa/pull/5159
Author: tiran
Title: #5159: [Backport][ipa-4-8] Use single update LDIF for indices and add
more indices
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5163
Author: tiran
Title: #5163: [Backport][ipa-4-8] Add missing fedora_container platform members
Action: opened
PR body:
"""
This PR was opened automatically because PR #5161 was pushed to master and
backport to ipa-4-8 is required.
"""
To pull
URL: https://github.com/freeipa/freeipa/pull/5161
Author: tiran
Title: #5161: Add missing fedora_container platform members
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5161/head:pr5161
git checkout pr5161
URL: https://github.com/freeipa/freeipa/pull/5157
Author: tiran
Title: #5157: Use single update LDIF for indices and add more indices
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5157/head:pr5157
git checkout
URL: https://github.com/freeipa/freeipa/pull/5162
Author: tiran
Title: #5162: configure_dns_resolver: call self.restore_context
Action: opened
PR body:
"""
Use the platform implementation of restore_context() instead of the base
implementation.
Fixes: https://pagure.io/freeipa/issue/8518
URL: https://github.com/freeipa/freeipa/pull/5161
Author: tiran
Title: #5161: Add missing fedora_container platform members
Action: opened
PR body:
"""
The fedora_container platform was missing User and Group members.
Add test case to verify that all known platforms define correct module
URL: https://github.com/freeipa/freeipa/pull/5158
Author: tiran
Title: #5158: [Backport][ipa-4-8] Ensure that resolved.conf.d is accessible
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5158/head:pr5158
git
URL: https://github.com/freeipa/freeipa/pull/5156
Author: tiran
Title: #5156: Ensure that resolved.conf.d is accessible
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5156/head:pr5156
git checkout pr5156
URL: https://github.com/freeipa/freeipa/pull/5158
Author: tiran
Title: #5158: [Backport][ipa-4-8] Ensure that resolved.conf.d is accessible
Action: opened
PR body:
"""
This PR was opened automatically because PR #5156 was pushed to master and
backport to ipa-4-8 is required.
"""
To pull the
URL: https://github.com/freeipa/freeipa/pull/5157
Author: tiran
Title: #5157: Use single update LDIF for indices and add more indices
Action: opened
PR body:
"""
## Use single update LDIF for indices
Index definitions were split across four files. indices.ldif contained
the initial subset of
URL: https://github.com/freeipa/freeipa/pull/5155
Author: tiran
Title: #5155: [Backport][ipa-4-8] Pre-populate IP addresses for the name
server upgrades
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5156
Author: tiran
Title: #5156: Ensure that resolved.conf.d is accessible
Action: opened
PR body:
"""
systemd-resolved runs as user systemd-resolve. Ensure that
resolved.conf.d drop-in directory is accessible when installer runs with
restricted
URL: https://github.com/freeipa/freeipa/pull/5155
Author: tiran
Title: #5155: [Backport][ipa-4-8] Pre-populate IP addresses for the name
server upgrades
Action: opened
PR body:
"""
This PR was opened automatically because PR #5153 was pushed to master and
backport to ipa-4-8 is required.
URL: https://github.com/freeipa/freeipa/pull/5153
Author: abbra
Title: #5153: Pre-populate IP addresses for the name server upgrades
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5153/head:pr5153
git checkout
URL: https://github.com/freeipa/freeipa/pull/5150
Author: tiran
Title: #5150: trust-add: Catch correct exception when chown SSSD
Action: opened
PR body:
"""
Commit 72fb4e6 introduced a regression. SSSD_USER.chown() raises
ValueError instead of KeyError when SSSD user does not exist.
Fixes:
URL: https://github.com/freeipa/freeipa/pull/5148
Author: tiran
Title: #5148: [Backport][ipa-4-8] Fix nsslapd-db-lock tuning of BDB backend
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5148/head:pr5148
git
URL: https://github.com/freeipa/freeipa/pull/5148
Author: tiran
Title: #5148: [Backport][ipa-4-8] Fix nsslapd-db-lock tuning of BDB backend
Action: opened
PR body:
"""
Manual backport of PR #5145
The backport conflicted in ``Makefile.am``.
"""
To pull the PR as Git branch:
git remote add
URL: https://github.com/freeipa/freeipa/pull/5145
Author: tiran
Title: #5145: Fix nsslapd-db-lock tuning of BDB backend
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5145/head:pr5145
git checkout pr5145
URL: https://github.com/freeipa/freeipa/pull/5145
Author: tiran
Title: #5145: Fix nsslapd-db-lock tuning of BDB backend
Action: opened
PR body:
"""
nsslapd-db-lock was moved from cn=config,cn=ldbm database,cn=plugins,cn=config
entry to cn=bdb subentry. Manual patching of dse.ldif was no
URL: https://github.com/freeipa/freeipa/pull/5137
Author: tiran
Title: #5137: [Backport][ipa-4-8] Clean up entire /run/ipa/ccaches directory
not just files
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/5141
Author: tiran
Title: #5141: [Backport][ipa-4-8] Add systemd-resolved support
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5141/head:pr5141
git checkout pr5141
URL: https://github.com/freeipa/freeipa/pull/5138
Author: tiran
Title: #5138: [Backport][ipa-4-8] Delay import of psutil to avoid AVC
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5138/head:pr5138
git checkout
URL: https://github.com/freeipa/freeipa/pull/5142
Author: rcritten
Title: #5142: Reduce the memory requirement from 1.6 to 1.2 GB
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5142/head:pr5142
git checkout
URL: https://github.com/freeipa/freeipa/pull/5143
Author: tiran
Title: #5143: [Backport][ipa-4-8] Reduce the memory requirement from 1.6 to
1.2 GB
Action: opened
PR body:
"""
This PR was opened automatically because PR #5142 was pushed to master and
backport to ipa-4-8 is required.
"""
To
URL: https://github.com/freeipa/freeipa/pull/5139
Author: tiran
Title: #5139: [Backport][ipa-4-8] Make git a build requirement
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5139/head:pr5139
git checkout pr5139
URL: https://github.com/freeipa/freeipa/pull/5141
Author: tiran
Title: #5141: [Backport][ipa-4-8] Add systemd-resolved support
Action: opened
PR body:
"""
Manual backport of PR #5125 to 4.8 branch.
61ec5de2640c300bbf21ae68faed62e5b8d80d4a had a minor conflict in
URL: https://github.com/freeipa/freeipa/pull/5125
Author: tiran
Title: #5125: Add systemd-resolved support
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5125/head:pr5125
git checkout pr5125
URL: https://github.com/freeipa/freeipa/pull/5140
Author: tiran
Title: #5140: [Backport][ipa-4-8] Add ipa_pki_retrieve_key_exec() interface
Action: opened
PR body:
"""
This PR was opened automatically because PR #5131 was pushed to master and
backport to ipa-4-8 is required.
"""
To pull the
URL: https://github.com/freeipa/freeipa/pull/5131
Author: zpytela
Title: #5131: Add ipa_pki_retrieve_key_exec() interface
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5131/head:pr5131
git checkout pr5131
URL: https://github.com/freeipa/freeipa/pull/5139
Author: tiran
Title: #5139: [Backport][ipa-4-8] Make git a build requirement
Action: opened
PR body:
"""
This PR was opened automatically because PR #5126 was pushed to master and
backport to ipa-4-8 is required.
"""
To pull the PR as Git
URL: https://github.com/freeipa/freeipa/pull/5126
Author: tiran
Title: #5126: Make git a build requirement
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5126/head:pr5126
git checkout pr5126
URL: https://github.com/freeipa/freeipa/pull/5138
Author: tiran
Title: #5138: [Backport][ipa-4-8] Delay import of psutil to avoid AVC
Action: opened
PR body:
"""
This PR was opened automatically because PR #5132 was pushed to master and
backport to ipa-4-8 is required.
"""
To pull the PR as
URL: https://github.com/freeipa/freeipa/pull/5132
Author: tiran
Title: #5132: Delay import of psutil to avoid AVC
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5132/head:pr5132
git checkout pr5132
URL: https://github.com/freeipa/freeipa/pull/5137
Author: tiran
Title: #5137: [Backport][ipa-4-8] Clean up entire /run/ipa/ccaches directory
not just files
Action: opened
PR body:
"""
This PR was opened automatically because PR #5124 was pushed to master and
backport to ipa-4-8 is required.
URL: https://github.com/freeipa/freeipa/pull/5124
Author: rcritten
Title: #5124: Clean up entire /run/ipa/ccaches directory not just files
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5124/head:pr5124
git
URL: https://github.com/freeipa/freeipa/pull/5136
Author: tiran
Title: #5136: [Backport][ipa-4-8] SELinux: do not double-define node_t and
pki_tomcat_cert_t
Action: opened
PR body:
"""
This PR was opened automatically because PR #5133 was pushed to master and
backport to ipa-4-8 is
URL: https://github.com/freeipa/freeipa/pull/5133
Author: fcami
Title: #5133: SELinux: do not double-define node_t and pki_tomcat_cert_t
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5133/head:pr5133
git
URL: https://github.com/freeipa/freeipa/pull/5134
Author: tiran
Title: #5134: Fix various C compiler warnings
Action: opened
PR body:
"""
- remove unused variables in hotp.c
- fix const of assertion_value
- cast const error message to non-const char*
I tried to make errMesg a const char* but
URL: https://github.com/freeipa/freeipa/pull/5132
Author: tiran
Title: #5132: Delay import of psutil to avoid AVC
Action: opened
PR body:
"""
Commit cfad7af35dd5a2cdd4081d1e9ac7c245f47f1dce added a check to ensure a
system has sufficient amount of memory. The feature uses psutil to get
URL: https://github.com/freeipa/freeipa/pull/5126
Author: tiran
Title: #5126: Make git a build requirement
Action: opened
PR body:
"""
FreeIPA uses git in its build process. In the past git was automatically
pulled in. On Fedora 33 builds are failing because git is missing.
Signed-off-by:
URL: https://github.com/freeipa/freeipa/pull/5125
Author: tiran
Title: #5125: Add systemd-resolved support
Action: opened
PR body:
"""
Fedora 33 switched to systemd-resolved
- [X] Add helpers to get forwarders from resolve1 D-BUS API
- [X] Configure NetworkManager to use systemd-resolved
-
URL: https://github.com/freeipa/freeipa/pull/5116
Author: tiran
Title: #5116: Add timings to install logs
Action: opened
PR body:
"""
The logging manager now adds timings for installation steps to the
installer logs. The information can be extracted and dumped to a CSV
file with a simple grep
URL: https://github.com/freeipa/freeipa/pull/5114
Author: tiran
Title: #5114: Duplicate CA CRT: ignore expected cert
Action: opened
PR body:
"""
When search for duplicate CA certs ignore the one expected entry.
Related: https://pagure.io/freeipa/issue/7125
Signed-off-by: Christian Heimes
URL: https://github.com/freeipa/freeipa/pull/5112
Author: tiran
Title: #5112: Check ca_wrapped in ipa-custodia-check
Action: opened
PR body:
"""
ca_wrapped uses Dogtag's pki tool (written in Java) to wrap key
material. Add checks to custodia to verify that key wrapping works.
Signed-off-by:
1 - 100 of 1684 matches
Mail list logo
