On 24.2.2014 18:56, Lukas Slebodnik wrote:
On (24/02/14 16:48), Petr Spacek wrote:
Hello,
Drop unnecessary #define _BSD_SOURCE.
--
Petr^2 Spacek
From 1b5105e3ab92f2a898313da5f7e20e6f3e9d1d2a Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Mon, 24 Feb 2014 16:48:09 +0100
On 02/25/2014 08:56 AM, Tomas Babej wrote:
Given the fact that the patch has been ACKed, can we push the current
iteration?
On 02/20/2014 01:07 PM, Petr Viktorin wrote:
On 02/20/2014 12:58 PM, Jan Pazdziora wrote:
On Thu, Feb 20, 2014 at 12:20:12PM +0100, Petr Viktorin wrote:
On 02/19/2014
Hello list,
I have seen talk Software Archaeology for Beginners from FOSDEM 2014 [1] and
I have couple notes:
1) User docs:
Make sure that project's documentation tells its own story:
Documentation is not so useful if it is a bunch of unrelated documents. Make
sure that there is
On 24.2.2014 20:20, Simo Sorce wrote:
On Mon, 2014-02-24 at 13:11 +0100, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're missing.
https://fedorahosted.org/bind-dyndb-ldap/wiki/BIND9/Design/pkcs11Schema
I think we need to
On 01/14/2014 10:19 AM, Petr Viktorin wrote:
On 01/14/2014 09:27 AM, Jan Cholasta wrote:
On 13.1.2014 14:57, Petr Vobornik wrote:
On 13.1.2014 13:41, Jan Cholasta wrote:
Hi,
On 10.1.2014 21:21, Nathaniel McCallum wrote:
On Thu, 2014-01-09 at 16:30 +0100, Tomas Babej wrote:
Hi,
Adds a
On 02/24/2014 08:20 PM, Simo Sorce wrote:
On Mon, 2014-02-24 at 13:11 +0100, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're missing.
https://fedorahosted.org/bind-dyndb-ldap/wiki/BIND9/Design/pkcs11Schema
I think we
Hi,
As a part of a better cleanup procedure in the integration tests,
make sure that winbindd is not running after uninstalling the IPA
server.
--
Tomas Babej
Associate Software Engeneer | Red Hat | Identity Management
RHCE | Brno Site | IRC: tbabej | freeipa.org
From
On 25.2.2014 11:28, Ludwig Krispenz wrote:
On 02/24/2014 08:20 PM, Simo Sorce wrote:
On Mon, 2014-02-24 at 13:11 +0100, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're missing.
Hi,
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
On 24.2.2014 13:11, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're missing.
On Tue, 25 Feb 2014, Tomas Babej wrote:
Hi,
As a part of a better cleanup procedure in the integration tests,
make sure that winbindd is not running after uninstalling the IPA
server.
--
Tomas Babej
Associate Software Engeneer | Red Hat | Identity Management
RHCE | Brno Site | IRC: tbabej |
On 02/25/2014 01:30 PM, Petr Spacek wrote:
On 25.2.2014 11:28, Ludwig Krispenz wrote:
On 02/24/2014 08:20 PM, Simo Sorce wrote:
On Mon, 2014-02-24 at 13:11 +0100, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're
On 02/25/2014 01:47 PM, Jan Cholasta wrote:
Hi,
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
On 24.2.2014 13:11, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're missing.
On 02/25/2014 01:47 PM, Jan Cholasta wrote:
Hi,
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
On 24.2.2014 13:11, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're missing.
On 02/25/2014 01:47 PM, Jan Cholasta wrote:
Hi,
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
On 24.2.2014 13:11, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're missing.
On 25.2.2014 13:49, Ludwig Krispenz wrote:
On 02/25/2014 01:30 PM, Petr Spacek wrote:
On 25.2.2014 11:28, Ludwig Krispenz wrote:
On 02/24/2014 08:20 PM, Simo Sorce wrote:
On Mon, 2014-02-24 at 13:11 +0100, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is
Dialog loses focus when the links are clicked making the dialog
uncontrollable by keyboard. This patch focuses the link again after
expanding/collapsing the error list. Thus keeping the focus in a dialog
https://fedorahosted.org/freeipa/ticket/4097
--
Petr Vobornik
From
Fixes issue when:
1. 2 dialogs are opened
2. top dialog's close button is focused
3. user presses enter to execute 'close' action
4. dialog is immediately closed (enter key is still pressed)
5. second dialog automatically receives focus (it's top dialog now)
6. user releases the key
7. second
On Tue, 2014-02-25 at 11:08 +0100, Petr Spacek wrote:
On 24.2.2014 20:20, Simo Sorce wrote:
Also can you add some examples on how we would use these classes to
store DNS keys ?
We need to think about it a bit more. We plan to use PKCS#11 for key
manipulation and data signing so the key
On Tue, 2014-02-25 at 11:28 +0100, Ludwig Krispenz wrote:
On 02/24/2014 08:20 PM, Simo Sorce wrote:
On Mon, 2014-02-24 at 13:11 +0100, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what you're missing.
On 25.2.2014 13:47, Jan Cholasta wrote:
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
I don't understand the purpose of cn=crypto suffix. I thought that PKCS#11
module will have to search for token with given TOKEN_ID or LABEL anyway,
right? Do I miss
On 02/25/2014 02:44 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 11:28 +0100, Ludwig Krispenz wrote:
On 02/24/2014 08:20 PM, Simo Sorce wrote:
On Mon, 2014-02-24 at 13:11 +0100, Ludwig Krispenz wrote:
Hi,
here is a draft to start discussion. Lt me know if it is the right
direction and what
On (25/02/14 09:54), Petr Spacek wrote:
On 24.2.2014 18:56, Lukas Slebodnik wrote:
On (24/02/14 16:48), Petr Spacek wrote:
Hello,
Drop unnecessary #define _BSD_SOURCE.
--
Petr^2 Spacek
From 1b5105e3ab92f2a898313da5f7e20e6f3e9d1d2a Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
On Fri, Feb 21, 2014 at 11:42:45AM -0500, Nathaniel McCallum wrote:
In the parameters system, we have been checking for a positive list of
values which get converted to None. The problem is that this method can
in some cases throw warnings when type coercion doesn't work
(particularly, string
On 25.2.2014 14:52, Petr Spacek wrote:
On 25.2.2014 13:47, Jan Cholasta wrote:
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
I don't understand the purpose of cn=crypto suffix. I thought that
PKCS#11 module will have to search for token with given
On Tue, 2014-02-25 at 13:58 +0100, Petr Spacek wrote:
I'm sorry for not being clear. I don't insist on splitting it to
multiple
attributes as long as we are able to reconstruct BIND key files.
This is just one long string stored in normal idnsZone object. was
meant as
we can re-use
On Tue, 2014-02-25 at 14:52 +0100, Petr Spacek wrote:
On 25.2.2014 13:47, Jan Cholasta wrote:
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
I don't understand the purpose of cn=crypto suffix. I thought that PKCS#11
module will have to search for
On 25.2.2014 15:32, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:52 +0100, Petr Spacek wrote:
On 25.2.2014 13:47, Jan Cholasta wrote:
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
I don't understand the purpose of cn=crypto suffix. I thought that PKCS#11
On 02/25/2014 03:11 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any reason why we should follow in detail what softshm does ?
because I did't know what is really needed. If you want to have a
pkcs11
module, which stores data in ldap, I though it should have
On 25.2.2014 15:48, Ludwig Krispenz wrote:
On 02/25/2014 03:11 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any reason why we should follow in detail what softshm does ?
because I did't know what is really needed. If you want to have a
pkcs11
module, which
On 25.2.2014 15:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any reason why we should follow in detail what softshm does ?
because I did't know what is really needed. If you want to have a
pkcs11
module, which stores data in ldap, I though it should have all
On 02/25/2014 02:47 PM, Jan Cholasta wrote:
On 21.2.2014 12:11, Adam Misnyovszki wrote:
- Original Message -
From: Jan Cholasta jchol...@redhat.com
To: Adam Misnyovszki amisn...@redhat.com, freeipa-devel@redhat.com
Sent: Friday, February 21, 2014 11:05:12 AM
Subject: Re:
On Tue, 2014-02-25 at 15:43 +0100, Petr Spacek wrote:
On 25.2.2014 15:32, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:52 +0100, Petr Spacek wrote:
On 25.2.2014 13:47, Jan Cholasta wrote:
here is a draft of the PKCS#11 design:
http://www.freeipa.org/page/V3/PKCS11_in_LDAP.
I don't
Hello,
Ticket https://fedorahosted.org/389/ticket/47553, is a 389-ds
enhancement to allow a finer access control during a MODDN (new
superior) operation. The use case being to allow/deny a bound user
to move an entry from one specified part of the DIT to an other part.
This
On 02/25/2014 03:07 PM, Jan Pazdziora wrote:
On Fri, Feb 21, 2014 at 11:42:45AM -0500, Nathaniel McCallum wrote:
In the parameters system, we have been checking for a positive list of
values which get converted to None. The problem is that this method can
in some cases throw warnings when type
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014 15:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any reason why we should follow in detail what softshm does ?
because I did't know what is really
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014 15:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any reason why we should follow in detail what softshm does ?
because I did't know what is really needed. If you want to have a
pkcs11
On 02/25/2014 04:01 PM, Petr Viktorin wrote:
On 02/25/2014 02:47 PM, Jan Cholasta wrote:
On 21.2.2014 12:11, Adam Misnyovszki wrote:
- Original Message -
From: Jan Cholasta jchol...@redhat.com
To: Adam Misnyovszki amisn...@redhat.com, freeipa-devel@redhat.com
Sent: Friday, February
Jan Cholasta wrote:
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014 15:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any reason why we should follow in detail what softshm does ?
because I did't know
On 25.2.2014 16:42, Rob Crittenden wrote:
Jan Cholasta wrote:
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014 15:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any reason why we should follow in detail
Hi!
In case we've got constraint delegation, we need to look into the
delegated entry, not the service that is going to delegate it.
I'm not sure we need to pass original entry in both cases but with this
patch we have solved long standing problem of testing AD trusts in
automated CI.
On Tue, 2014-02-25 at 16:18 +0100, Jan Cholasta wrote:
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014 15:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any reason why we should follow in detail what
On 02/25/2014 05:12 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 16:18 +0100, Jan Cholasta wrote:
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014 15:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 14:54 +0100, Ludwig Krispenz wrote:
Any
Depends on tbabej's patches # 137, 138 and my 546.
https://fedorahosted.org/freeipa/ticket/3306
--
Petr Vobornik
From 7b4a35b811a8918adefa281e00ee06fad5f54064 Mon Sep 17 00:00:00 2001
From: Petr Vobornik pvobo...@redhat.com
Date: Wed, 15 Jan 2014 14:15:24 +0100
Subject: [PATCH] webui: expose
Depends on tbabej's patches # 137, 140 and pvoborni's 546 and 531-541.
https://fedorahosted.org/freeipa/ticket/3369
--
Petr Vobornik
From 7a9d5636978b77a6e1119bc7e5724a811fcbf669 Mon Sep 17 00:00:00 2001
From: Petr Vobornik pvobo...@redhat.com
Date: Wed, 15 Jan 2014 14:19:41 +0100
Subject:
This is a minor fix. Please don't close ticket 3904 yet if committed.
Checkboxes have not used unique ids across the whole UI. It broke
checking by clicking on label for later displayed instances. It became
serious problem when rcue introduced new checkbox styles with 'label
clicking' as
On 25.2.2014 17:36, Ludwig Krispenz wrote:
On 02/25/2014 05:12 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 16:18 +0100, Jan Cholasta wrote:
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014 15:11, Simo Sorce wrote:
On Tue, 2014-02-25
Heya,
Just wanted to say thank you for FreeOTP, Nathaniel and co.
And, of course, more thankful to all the Identity open source/free
software from this awesome team!
A happy user.
--
/kashyap
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
On 02/25/2014 01:32 AM, Petr Spacek wrote:
Hello list,
I have seen talk Software Archaeology for Beginners from FOSDEM 2014
[1] and I have couple notes:
1) User docs:
Make sure that project's documentation tells its own story:
Documentation is not so useful if it is a bunch of unrelated
On 02/25/2014 08:46 AM, Simo Sorce wrote:
On Tue, 2014-02-25 at 11:08 +0100, Petr Spacek wrote:
On 24.2.2014 20:20, Simo Sorce wrote:
Also can you add some examples on how we would use these classes to
store DNS keys ?
We need to think about it a bit more. We plan to use PKCS#11 for key
Hi,
Simple patch to fix KeyError as --pkey-only causes no attributes to be
returned and trustdomain_find.post_callback checked them
unconditionally.
https://fedorahosted.org/freeipa/ticket/4196
--
/ Alexander Bokovoy
From a8540634ddac57ce3c05416b3a08a958b01d99b3 Mon Sep 17 00:00:00 2001
From:
On Tue, 25 Feb 2014, Tomas Babej wrote:
Hi,
As a part of a better cleanup procedure in the integration tests,
make sure that winbindd is not running after uninstalling the IPA
server.
Better patch 0140 attached. We simply need to stop and disable winbind in
adtrustinstance.uninstall()
--
/
On 02/25/2014 01:21 PM, Tomas Babej wrote:
Hi,
As a part of a better cleanup procedure in the integration tests,
make sure that winbindd is not running after uninstalling the IPA
server.
-9, what a brutal way to kill. Usually when I stop a service this way,
systemd restarts it right away.
Jan Cholasta wrote:
On 25.2.2014 17:36, Ludwig Krispenz wrote:
On 02/25/2014 05:12 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 16:18 +0100, Jan Cholasta wrote:
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014 15:11, Simo Sorce wrote:
Resending patch 0138 together with another case Simo found out today:
when authdata flag is cleared by admin for the service principal, we'll
get NULL client database entry. In such case we have to bail out.
--
/ Alexander Bokovoy
From 8e7c41bf35d68bfad2dc5b790cf6f5b964949417 Mon Sep 17
On Tue, 2014-02-25 at 20:58 +0200, Alexander Bokovoy wrote:
Resending patch 0138 together with another case Simo found out today:
when authdata flag is cleared by admin for the service principal, we'll
get NULL client database entry. In such case we have to bail out.
The patches look correct
On Tue, 2014-02-25 at 13:22 -0500, Rob Crittenden wrote:
Jan Cholasta wrote:
On 25.2.2014 17:36, Ludwig Krispenz wrote:
On 02/25/2014 05:12 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 16:18 +0100, Jan Cholasta wrote:
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59
On 25.2.2014 18:26, Jan Cholasta wrote:
On 25.2.2014 17:36, Ludwig Krispenz wrote:
On 02/25/2014 05:12 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 16:18 +0100, Jan Cholasta wrote:
On 25.2.2014 16:11, Simo Sorce wrote:
On Tue, 2014-02-25 at 15:59 +0100, Petr Spacek wrote:
On 25.2.2014
On Thu, Feb 20, 2014 at 02:11:08PM -0500, Simo Sorce wrote:
On Thu, 2014-02-20 at 17:29 +0100, Petr Viktorin wrote:
Patchwork:
patch arrives: nothing
mark self as reviewer: use web interface
send review: reply, find patch in Patchwork, mark status
send fixed patch: send the
On 02/24/2014 10:21 AM, Nathaniel McCallum wrote:
On Mon, 2014-02-24 at 15:48 +0100, Petr Vobornik wrote:
On 24.2.2014 15:31, Nathaniel McCallum wrote:
On Mon, 2014-02-24 at 11:04 +0100, Petr Vobornik wrote:
On 21.2.2014 20:00, Nathaniel McCallum wrote:
Is it possible to do something more
On 02/25/2014 07:59 PM, Simo Sorce wrote:
On Tue, 2014-02-25 at 20:58 +0200, Alexander Bokovoy wrote:
Resending patch 0138 together with another case Simo found out today:
when authdata flag is cleared by admin for the service principal, we'll
get NULL client database entry. In such case we
60 matches
Mail list logo