Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4711.
Honza
--
Jan Cholasta
From 5c00f80cce0e0952252df4f7ec3922d71e8f2cc9 Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Mon, 10 Nov 2014 16:24:22 +
Subject: [PATCH] Fix CA certificate backup
Hi,
the attached patches provide additional fixes for
https://fedorahosted.org/freeipa/ticket/4651.
I'm not 100% sure if the fixes for ipa-sam and ipa-kdb are correct,
please check them carefully.
Honza
--
Jan Cholasta
From a195644143042a0161de81472646f41f503ffe48 Mon Sep 17 00:00:00 2001
that uses an NSS database without establishing an SSL
connection such as vault CLIs.
Ticket #4638
New patch attached. It's identical except for the ticket URL in the
commit log.
ACK.
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel
Dne 10.11.2014 v 17:46 Jan Cholasta napsal(a):
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4711.
Honza
Forgot to include /etc/pki/ca-trust/source/anchors/ipa-ca.crt in backup.
Updated patch attached.
--
Jan Cholasta
From f61c3b242e9eb83fa585b091da4d60b7262d124f Mon
: a8e2a242bec1ce68d6b14be27e1b5b8d94f0deb9
ipa-4-1: d6b79a3ce7dd253737c41854e81273b01bc4a4c4
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Dne 10.11.2014 v 19:25 Jan Cholasta napsal(a):
Hi,
the attached patches provide additional fixes for
https://fedorahosted.org/freeipa/ticket/4651.
I'm not 100% sure if the fixes for ipa-sam and ipa-kdb are correct,
please check them carefully.
Honza
Changed the ticket to https
Dne 11.11.2014 v 11:40 Alexander Bokovoy napsal(a):
On Tue, 11 Nov 2014, Jan Cholasta wrote:
From 82d7d37ca310af015018ebb2da2f9a72c4dabcaa Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Mon, 10 Nov 2014 18:10:27 +
Subject: [PATCH 4/7] Fix unchecked return value
?
The original patch was released with 4.1.1, shouldn't there be update in
ipa-upgradeconfig?
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Dne 10.11.2014 v 13:24 David Kupka napsal(a):
On 11/10/2014 08:20 AM, Jan Cholasta wrote:
Hi,
Dne 7.11.2014 v 15:26 David Kupka napsal(a):
https://fedorahosted.org/freeipa/ticket/4611
I think you should use MutuallyExclusiveError.
Honza
Thanks, that's the error class I was searching
: e60ef1fe029594876bd0e075cd5efc0173743138
ipa-4-1: 082485c2832a51cf6018bc172881e67e979de69c
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
to:
ipa-4-0: e5ec47992cd641def024cc77c07f98ca66b7b673
ipa-4-1: 1b22a53717cd2ead8a8f3fec84d04dac698d8925
master: 40ea328a78bec511377b464700e3add09cedc2b9
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com
Dne 12.11.2014 v 13:33 Martin Basti napsal(a):
On 11/11/14 16:58, Jan Cholasta wrote:
Hi,
Dne 11.11.2014 v 16:22 Martin Basti napsal(a):
Using specfile to create file doesn't work if named user is not on
system.
Appropriate permission have to be set during ipa-dns installation.
Patch
Dne 13.11.2014 v 13:45 David Kupka napsal(a):
On 11/13/2014 11:24 AM, Jan Cholasta wrote:
Dne 10.11.2014 v 13:24 David Kupka napsal(a):
On 11/10/2014 08:20 AM, Jan Cholasta wrote:
Hi,
Dne 7.11.2014 v 15:26 David Kupka napsal(a):
https://fedorahosted.org/freeipa/ticket/4611
I think you
Dne 12.11.2014 v 08:58 Petr Spacek napsal(a):
On 11.11.2014 12:27, Jan Cholasta wrote:
Dne 11.11.2014 v 11:40 Alexander Bokovoy napsal(a):
On Tue, 11 Nov 2014, Jan Cholasta wrote:
From 82d7d37ca310af015018ebb2da2f9a72c4dabcaa Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Hi,
Dne 13.11.2014 v 14:50 Martin Basti napsal(a):
On 13/11/14 13:59, Jan Cholasta wrote:
Dne 12.11.2014 v 13:33 Martin Basti napsal(a):
On 11/11/14 16:58, Jan Cholasta wrote:
Hi,
Dne 11.11.2014 v 16:22 Martin Basti napsal(a):
Using specfile to create file doesn't work if named user
Dne 18.11.2014 v 16:53 Martin Basti napsal(a):
On 18/11/14 15:01, Jan Cholasta wrote:
Hi,
Dne 13.11.2014 v 14:50 Martin Basti napsal(a):
On 13/11/14 13:59, Jan Cholasta wrote:
Dne 12.11.2014 v 13:33 Martin Basti napsal(a):
On 11/11/14 16:58, Jan Cholasta wrote:
Hi,
Dne 11.11.2014 v 16:22
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4645.
Honza
--
Jan Cholasta
From d022389ef15101fca108ec2be9b88b417f369dc3 Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Tue, 18 Nov 2014 14:57:17 +
Subject: [PATCH] Update Requires on pki-ca
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4717.
Honza
--
Jan Cholasta
From 871217e002b8a2ee4f58c42977ac680a5305de1a Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Tue, 18 Nov 2014 14:01:59 +
Subject: [PATCH] Fix wrong expiration date
Dne 19.11.2014 v 13:55 Petr Vobornik napsal(a):
On 18.11.2014 23:29, Nathaniel McCallum wrote:
On Tue, 2014-11-18 at 19:56 +0100, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4645.
ACK
Shouldn't the version be 10.1.2-4 ?
http
as this is the method subsenqently called by almost
any command.
You can always derive the new error (ParentNotFound or whatever) on
NotFound, so old code won't break.
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
Dne 19.11.2014 v 14:07 Petr Vobornik napsal(a):
On 19.11.2014 13:59, Jan Cholasta wrote:
Dne 19.11.2014 v 13:55 Petr Vobornik napsal(a):
On 18.11.2014 23:29, Nathaniel McCallum wrote:
On Tue, 2014-11-18 at 19:56 +0100, Jan Cholasta wrote:
Hi,
the attached patch fixes
https
Dne 19.11.2014 v 15:02 David Kupka napsal(a):
On 11/19/2014 08:32 AM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4717.
Honza
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
Dne 20.11.2014 v 09:51 David Kupka napsal(a):
https://fedorahosted.org/freeipa/ticket/4620
IMO changing the loop to:
for attr in attr_blacklist:
entry_attrs.pop(attr, None)
would be better, because LDAPEntry already handles case insensitivity in
attribute names.
--
Jan Cholasta
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4727.
Honza
--
Jan Cholasta
From 2cf85ec35cf4618279af81ba16d4a4805e8c590e Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Thu, 20 Nov 2014 13:57:46 +
Subject: [PATCH] Stop tracking certificates
Dne 20.11.2014 v 14:51 Martin Basti napsal(a):
On 20/11/14 11:53, David Kupka wrote:
On 11/20/2014 10:03 AM, Jan Cholasta wrote:
Dne 20.11.2014 v 09:51 David Kupka napsal(a):
https://fedorahosted.org/freeipa/ticket/4620
IMO changing the loop to:
for attr in attr_blacklist
Dne 19.11.2014 v 15:12 Tomas Babej napsal(a):
On 11/19/2014 02:03 PM, Jan Cholasta wrote:
Dne 19.11.2014 v 13:44 Tomas Babej napsal(a):
On 11/19/2014 12:51 PM, Martin Kosek wrote:
On 11/19/2014 12:41 PM, Tomas Babej wrote:
On 11/19/2014 12:24 PM, Martin Kosek wrote:
On 11/19/2014 12:03 PM
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4754.
Honza
--
Jan Cholasta
From c1db9d92088436234d2a00c946a8e470d740745b Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Fri, 21 Nov 2014 07:52:24 +
Subject: [PATCH] Use correct service name
Hi,
Dne 20.11.2014 v 17:52 Martin Basti napsal(a):
Ticket: https://fedorahosted.org/freeipa/ticket/4747
Patch attached:
ACK!
Pushed to:
master: 7de424f42541e73ed24a95f1dd90ff4a61e111fa
ipa-4-1: 5b397dced1ef4a1eea7b3636fc71c2b7108a0b25
Honza
--
Jan Cholasta
Dne 21.11.2014 v 11:28 Tomas Babej napsal(a):
On 11/20/2014 04:01 PM, Jan Cholasta wrote:
Dne 19.11.2014 v 15:12 Tomas Babej napsal(a):
On 11/19/2014 02:03 PM, Jan Cholasta wrote:
Dne 19.11.2014 v 13:44 Tomas Babej napsal(a):
On 11/19/2014 12:51 PM, Martin Kosek wrote:
On 11/19/2014 12
version configured on the
client.
Functionally the patch is OK.
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Hi,
Dne 21.11.2014 v 16:11 David Kupka napsal(a):
https://fedorahosted.org/freeipa/ticket/4643
You probably don't want to change get_dn_if_exists to get_dn, as the
latter does not usually raise NotFound when the entry does not exist.
Honza
--
Jan Cholasta
Dne 21.11.2014 v 16:09 Rob Crittenden napsal(a):
Jan Cholasta wrote:
Hi,
Dne 20.11.2014 v 23:26 Rob Crittenden napsal(a):
Use new capability in python-nss-0.16 to use the NSS protocol range
setter. This lets us enable TLSv1.1 and TLSv1.2 for client connections.
I made this configurable via
Hi,
Dne 24.11.2014 v 14:01 Martin Basti napsal(a):
Ticket: https://fedorahosted.org/freeipa/ticket/4762
Patch attached.
Thanks, ACK.
Pushed to:
master: 230df95ed9e043069da0008d046b6b0135b0a8d1
ipa-4-1: 880f1e5c277a8826e3334723cd840cae4e65dfb8
Honza
--
Jan Cholasta
Dne 24.11.2014 v 14:44 Alexander Bokovoy napsal(a):
On Tue, 18 Nov 2014, Jan Cholasta wrote:
Dne 12.11.2014 v 08:58 Petr Spacek napsal(a):
On 11.11.2014 12:27, Jan Cholasta wrote:
Dne 11.11.2014 v 11:40 Alexander Bokovoy napsal(a):
On Tue, 11 Nov 2014, Jan Cholasta wrote:
From
Dne 11.11.2014 v 11:13 Jan Cholasta napsal(a):
Dne 10.11.2014 v 19:25 Jan Cholasta napsal(a):
Hi,
the attached patches provide additional fixes for
https://fedorahosted.org/freeipa/ticket/4651.
I'm not 100% sure if the fixes for ipa-sam and ipa-kdb are correct,
please check them carefully
Dne 25.11.2014 v 09:19 Alexander Bokovoy napsal(a):
On Tue, 11 Nov 2014, Jan Cholasta wrote:
Dne 10.11.2014 v 19:25 Jan Cholasta napsal(a):
Hi,
the attached patches provide additional fixes for
https://fedorahosted.org/freeipa/ticket/4651.
I'm not 100% sure if the fixes for ipa-sam and ipa
Dne 24.11.2014 v 15:59 Rob Crittenden napsal(a):
Jan Cholasta wrote:
Dne 21.11.2014 v 16:09 Rob Crittenden napsal(a):
Jan Cholasta wrote:
Hi,
Dne 20.11.2014 v 23:26 Rob Crittenden napsal(a):
Use new capability in python-nss-0.16 to use the NSS protocol range
setter. This lets us enable
Hi,
Dne 25.11.2014 v 14:07 Martin Basti napsal(a):
Ticket: https://fedorahosted.org/freeipa/ticket/4766
Patch attached.
Thanks, ACK. Hopefully it's correct this time.
Pushed to:
master: c13862104ab64cda81c86c51b849c8d01c3c9187
ipa-4-1: e457a3e615b695cfd98e7d54594e5a3663562b06
Honza
--
Jan
Hi,
Dne 25.11.2014 v 14:07 Martin Basti napsal(a):
Ticket: https://fedorahosted.org/freeipa/ticket/4766
Patch attached.
Thanks, ACK. Hopefully it's correct this time.
Pushed to:
master: c13862104ab64cda81c86c51b849c8d01c3c9187
ipa-4-1: e457a3e615b695cfd98e7d54594e5a3663562b06
Honza
--
Jan
-python in the spec file.
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
dns.exception.DNSException as e:
raise ValueError(e)
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4744.
Honza
--
Jan Cholasta
From 204a065d67a65d9ed43e5eaa22958cd8daf7b15f Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Mon, 1 Dec 2014 12:12:15 +
Subject: [PATCH] Improve validation of --instance
Dne 1.12.2014 v 09:10 Jan Cholasta napsal(a):
Hi,
Dne 27.11.2014 v 14:20 Martin Basti napsal(a):
Ticket: https://fedorahosted.org/freeipa/ticket/4771
Patch attached.
I would prefer if you did something like this instead:
1) Add validate_idn_normalized function with the normalized IDN
importance compared to other fields.
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
of trust flags.
For unknown CA certificates, you must keep the default ,, and
explicitly override it where necessary. We don't want to trust *any* CA
certificate to issue server certs.
https://fedorahosted.org/freeipa/ticket/4779
Honza
--
Jan Cholasta
Dne 2.12.2014 v 13:55 Tomas Babej napsal(a):
On 12/02/2014 01:45 PM, Jan Cholasta wrote:
Hi,
Dne 2.12.2014 v 13:16 Tomas Babej napsal(a):
Hi,
For CA certificates that are not certificates of IPA CA, we incorrectly
set the trust flags to ,,, regardless what the actual trust_flags
parameter
Dne 2.12.2014 v 14:09 Tomas Babej napsal(a):
On 12/02/2014 02:02 PM, Jan Cholasta wrote:
Dne 2.12.2014 v 13:55 Tomas Babej napsal(a):
On 12/02/2014 01:45 PM, Jan Cholasta wrote:
Hi,
Dne 2.12.2014 v 13:16 Tomas Babej napsal(a):
Hi,
For CA certificates that are not certificates of IPA CA
, the
type of the ipassignedview param should be changed to Str, for
consistency with existing code.
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Dne 2.12.2014 v 17:01 Tomas Babej napsal(a):
On 12/02/2014 04:14 PM, Jan Cholasta wrote:
Hi,
Dne 2.12.2014 v 15:43 Tomas Babej napsal(a):
Hi,
Makes ipaassignedidview a default attribute and takes care about the
conversion from the DN to the proper ID view name.
https://fedorahosted.org
Dne 1.12.2014 v 19:25 Petr Vobornik napsal(a):
On 12/01/2014 02:33 PM, Jan Cholasta wrote:
Hi,
Dne 1.12.2014 v 14:17 Petr Vobornik napsal(a):
`--hosts` option added to:
* service-allow-create-keytab
* service-allow-retrieve-keytab
* service-disallow-create-keytab
* service-disallow-retrieve
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4765.
Honza
--
Jan Cholasta
From 5e541c915c3165328bca199f295164a2a9b509e2 Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Wed, 3 Dec 2014 07:43:15 +
Subject: [PATCH] Fix automatic CA cert renewal
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4781.
Honza
--
Jan Cholasta
From d1d323fa046a9aabed08571c2be2d91a02e866e0 Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Thu, 4 Dec 2014 08:15:46 +
Subject: [PATCH] Check subject name encoding
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4784.
Honza
--
Jan Cholasta
From 1e268143669621c01973859590af0a22d80255bf Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Thu, 4 Dec 2014 15:34:55 +
Subject: [PATCH] Do not renew the IPA CA cert
Dne 5.12.2014 v 09:03 Martin Kosek napsal(a):
On 12/04/2014 09:36 AM, Jan Cholasta wrote:
+if x509.get_der_subject(cert, x509.DER) != der_subject:
+raise admintool.ScriptError(Subject name encoding
mismatch)
I think we can expect this to be a pretty common error
Dne 5.12.2014 v 11:43 Martin Kosek napsal(a):
On 12/05/2014 11:34 AM, Jan Cholasta wrote:
Dne 5.12.2014 v 09:03 Martin Kosek napsal(a):
On 12/04/2014 09:36 AM, Jan Cholasta wrote:
+if x509.get_der_subject(cert, x509.DER) != der_subject:
+raise admintool.ScriptError
Dne 5.12.2014 v 12:01 Jan Cholasta napsal(a):
Dne 5.12.2014 v 11:43 Martin Kosek napsal(a):
On 12/05/2014 11:34 AM, Jan Cholasta wrote:
Dne 5.12.2014 v 09:03 Martin Kosek napsal(a):
On 12/04/2014 09:36 AM, Jan Cholasta wrote:
+if x509.get_der_subject(cert, x509.DER
Dne 9.12.2014 v 14:27 David Kupka napsal(a):
On 12/01/2014 01:16 PM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4744.
Honza
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
/ticket/4794
Patch 793: Works for me, ACK.
Pushed to:
master: 489dfe64689f86f7ddc4ad0784de0636f8e6c1f8
ipa-4-1: 2fa07b1d24f61f9bcff5adb804a18c9eae72932d
Patch 794: As Thierry pointed out, this patch is not necessary, as the
bug is fixed by patch 793 alone.
Not pushed.
Honza
--
Jan Cholasta
Dne 1.12.2014 v 16:48 Martin Basti napsal(a):
On 01/12/14 08:46, Jan Cholasta wrote:
Hi,
Dne 27.11.2014 v 14:24 Martin Basti napsal(a):
Ticket: https://fedorahosted.org/freeipa/ticket/4676
Replaces current workaround. Should go to 4.1.3.
Patch attached.
When constructing URLs with host:port
Dne 9.12.2014 v 13:03 David Kupka napsal(a):
On 12/04/2014 09:36 AM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4781.
Honza
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
Dne 10.12.2014 v 17:53 Martin Basti napsal(a):
On 10/12/14 16:02, Martin Kosek wrote:
On 12/10/2014 02:35 PM, Jan Cholasta wrote:
Dne 10.12.2014 v 11:53 Martin Kosek napsal(a):
On 12/09/2014 01:56 PM, Jan Cholasta wrote:
Dne 5.12.2014 v 12:01 Jan Cholasta napsal(a):
Dne 5.12.2014 v 11:43
Dne 10.12.2014 v 18:01 Jan Cholasta napsal(a):
Dne 1.12.2014 v 16:48 Martin Basti napsal(a):
On 01/12/14 08:46, Jan Cholasta wrote:
Hi,
Dne 27.11.2014 v 14:24 Martin Basti napsal(a):
Ticket: https://fedorahosted.org/freeipa/ticket/4676
Replaces current workaround. Should go to 4.1.3.
Patch
.
Pushed to:
master: b5ff0b941efad5170ff5fdda4ab05b9f1c7a2113
ipa-4-1: d229c4a1cc397cfe6adf661b6bcc8360a758248c
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
support both lists and tuples, pick just one.)
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Dne 11.12.2014 v 10:01 Martin Basti napsal(a):
On 10/12/14 19:21, Jan Cholasta wrote:
Dne 10.12.2014 v 18:01 Jan Cholasta napsal(a):
Dne 1.12.2014 v 16:48 Martin Basti napsal(a):
On 01/12/14 08:46, Jan Cholasta wrote:
Hi,
Dne 27.11.2014 v 14:24 Martin Basti napsal(a):
Ticket: https
, this way
admins can use ipa dnsrecod-add and friends w/o exposing the key.
+1, we had a short discussion about external DNS with Petr yesterday and
reached the same conclusion.
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
in it. We usually don't do that and IMHO we shouldn't do that.
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Dne 15.1.2015 v 15:39 Martin Basti napsal(a):
On 15/01/15 15:07, Jan Cholasta wrote:
Dne 15.1.2015 v 14:58 Martin Basti napsal(a):
On 15/01/15 14:25, Jan Cholasta wrote:
Hi,
Dne 15.1.2015 v 13:27 Martin Basti napsal(a):
On 15/01/15 13:17, Martin Basti wrote:
https://fedorahosted.org
Dne 13.1.2015 v 17:58 Jan Cholasta napsal(a):
Dne 13.1.2015 v 17:44 Petr Vobornik napsal(a):
On 01/12/2015 05:46 PM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4822.
Honza
works for me, ACK
Thanks, pushed to:
master
Dne 13.1.2015 v 18:55 Jan Cholasta napsal(a):
Dne 13.1.2015 v 18:46 David Kupka napsal(a):
On 01/13/2015 05:55 PM, Jan Cholasta wrote:
Dne 13.1.2015 v 12:12 Jan Cholasta napsal(a):
Hi,
the attached patch fixes
https://fedorahosted.org/freeipa/ticket/4835.
Honza
Modified the fix to create
['idnsname'] =
entry_attrs.single_value['idnsname'].make_absolute()
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Dne 15.1.2015 v 14:58 Martin Basti napsal(a):
On 15/01/15 14:25, Jan Cholasta wrote:
Hi,
Dne 15.1.2015 v 13:27 Martin Basti napsal(a):
On 15/01/15 13:17, Martin Basti wrote:
https://fedorahosted.org/freeipa/ticket/4722
Patch attached.
Fast fix.
Updated patch attached.
1) Forward zone
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4833.
Honza
--
Jan Cholasta
From f5e6e45977b699bada1990f8231d0f142ab6fc61 Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Wed, 21 Jan 2015 07:57:03 +
Subject: [PATCH] Revert Make all ipatokenTOTP
Dne 21.1.2015 v 09:09 Martin Kosek napsal(a):
On 01/21/2015 09:02 AM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4833.
Honza
Please also add the reason why we are reverting the change (see details
https://bugzilla.redhat.com/show_bug.cgi?id
for me, ACK.
Pushed to:
master: 0a7a8d66040f7a5f0e55da4b01e614dd9b569a00
ipa-4-1: b54b740f7903a0722930cc281ccb5a2bece45aef
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4857.
Honza
--
Jan Cholasta
From 6270155705249b6b6bcb4665156d73f2f14edb86 Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Tue, 27 Jan 2015 07:38:06 +
Subject: [PATCH] Do not crash when replica
Dne 26.1.2015 v 17:22 Martin Kosek napsal(a):
On 01/26/2015 12:12 PM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4865.
Honza
I tested the use case and log directories were properly created.
So ACK, works for me.
Martin
Thanks.
Pushed
Dne 23.1.2015 v 15:51 Martin Basti napsal(a):
On 23/01/15 08:22, Jan Cholasta wrote:
Dne 20.1.2015 v 12:49 Martin Basti napsal(a):
On 15/01/15 16:07, Jan Cholasta wrote:
Dne 15.1.2015 v 15:39 Martin Basti napsal(a):
On 15/01/15 15:07, Jan Cholasta wrote:
Dne 15.1.2015 v 14:58 Martin Basti
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4865.
Honza
--
Jan Cholasta
From 2cdb9f96c94c146805f43f38b5b93d48c95eecdb Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Mon, 26 Jan 2015 10:39:48 +
Subject: [PATCH] Create correct log directories
?
Patch 188:
IMO it would be slightly better to do it like this:
-name = name.relativize(dns.name.root)
+if name != dns.name.root:
+name = name.relativize(dns.name.root)
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Dne 23.1.2015 v 10:13 Martin Basti napsal(a):
On 23/01/15 08:04, Jan Cholasta wrote:
Hi,
Dne 21.1.2015 v 13:39 Martin Basti napsal(a):
Patch 188 catch ldap exceptions to prevent false positive abrt reports
Patch 187 fixes issues with removing root zone
Patches attached.
Patch 187
Dne 23.1.2015 v 10:25 Martin Basti napsal(a):
On 23/01/15 10:23, Jan Cholasta wrote:
Dne 23.1.2015 v 10:13 Martin Basti napsal(a):
On 23/01/15 08:04, Jan Cholasta wrote:
Hi,
Dne 21.1.2015 v 13:39 Martin Basti napsal(a):
Patch 188 catch ldap exceptions to prevent false positive abrt reports
Dne 20.1.2015 v 12:49 Martin Basti napsal(a):
On 15/01/15 16:07, Jan Cholasta wrote:
Dne 15.1.2015 v 15:39 Martin Basti napsal(a):
On 15/01/15 15:07, Jan Cholasta wrote:
Dne 15.1.2015 v 14:58 Martin Basti napsal(a):
On 15/01/15 14:25, Jan Cholasta wrote:
Hi,
Dne 15.1.2015 v 13:27 Martin
: 3b87302f5a280c044a8e6a8b4aa08a29e3b4b0d5
ipa-4-1: 0dc7448b3634be443806db45ffead57107213ad6
Your patches will latter go into ipa-4-2.
+1
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4797.
Note that --data with data-only backup and --logs-only with data-only
restore are deliberately ignored and considered no-op.
Honza
--
Jan Cholasta
From 6b14a609d726f5b6dc8e94b1d3d21123637599c1 Mon Sep 17 00:00:00
hostname-bound values?
Just checking...
IMO the error should be raised in both data-only and full restore, if in
unattended mode or the user wishes not to continue.
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
Dne 12.1.2015 v 13:37 David Kupka napsal(a):
On 01/12/2015 01:14 PM, Jan Cholasta wrote:
Dne 12.1.2015 v 13:08 Martin Kosek napsal(a):
On 01/12/2015 12:53 PM, David Kupka wrote:
https://fedorahosted.org/freeipa/ticket/4823
Looking at this patch, are data-only backups supposed to work
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4822.
Honza
--
Jan Cholasta
From 38223d7d7df123af672a303aa989fb8259e84384 Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Mon, 12 Jan 2015 15:37:33 +
Subject: [PATCH] Remove RUV from LDIF files
within the
terminal?
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Dne 13.1.2015 v 18:46 David Kupka napsal(a):
On 01/08/2015 05:04 PM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4820.
Honza
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
Dne 13.1.2015 v 17:45 Jan Cholasta napsal(a):
Dne 13.1.2015 v 16:37 Petr Vobornik napsal(a):
On 01/13/2015 02:26 PM, Jan Cholasta wrote:
Dne 13.1.2015 v 13:01 Petr Vobornik napsal(a):
On 01/12/2015 02:28 PM, Jan Cholasta wrote:
Hi,
the attached patch fixes
https://fedorahosted.org/freeipa
Dne 13.1.2015 v 18:46 David Kupka napsal(a):
On 01/13/2015 05:55 PM, Jan Cholasta wrote:
Dne 13.1.2015 v 12:12 Jan Cholasta napsal(a):
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4835.
Honza
Modified the fix to create only one service object in stopped_service
Dne 13.1.2015 v 18:47 David Kupka napsal(a):
On 01/13/2015 12:17 PM, Jan Cholasta wrote:
Hi,
the attached patches fix https://fedorahosted.org/freeipa/ticket/4803.
Note that if you want to test upgrades on CA-less, you need to apply my
patch 390 as well:
https://www.redhat.com/archives
characters)
ipa-client/ipa-install/ipa-client-install:2532:80: E501 line too long
(81 79 characters)
Honza
--
Jan Cholasta
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4835.
Honza
--
Jan Cholasta
From 09155e3546adbeededbd025dea631c2a5ac39cc6 Mon Sep 17 00:00:00 2001
From: Jan Cholasta jchol...@redhat.com
Date: Tue, 13 Jan 2015 10:59:08 +
Subject: [PATCH] Do not crash on unknown services
Dne 13.1.2015 v 10:46 Petr Vobornik napsal(a):
On 01/12/2015 06:07 PM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4824.
Honza
Is there a reason why `installutils.check_server_configuration()
` is called in `cert_restore_prepare`, ie., method
Hi,
the attached patches fix https://fedorahosted.org/freeipa/ticket/4803.
Note that if you want to test upgrades on CA-less, you need to apply my
patch 390 as well:
https://www.redhat.com/archives/freeipa-devel/2015-January/msg00103.html.
Honza
--
Jan Cholasta
From
Dne 13.1.2015 v 13:01 Petr Vobornik napsal(a):
On 01/12/2015 02:28 PM, Jan Cholasta wrote:
Hi,
the attached patch fixes https://fedorahosted.org/freeipa/ticket/4797.
Note that --data with data-only backup and --logs-only with data-only
restore are deliberately ignored and considered no-op
Dne 13.1.2015 v 15:54 David Kupka napsal(a):
On 01/13/2015 03:07 PM, David Kupka wrote:
On 01/13/2015 02:57 PM, Jan Cholasta wrote:
Dne 13.1.2015 v 14:44 David Kupka napsal(a):
On 01/12/2015 04:50 PM, Rob Crittenden wrote:
Jan Cholasta wrote:
Dne 12.1.2015 v 16:30 Rob Crittenden napsal
Dne 13.1.2015 v 16:47 Petr Vobornik napsal(a):
On 01/13/2015 11:54 AM, Jan Cholasta wrote:
Dne 13.1.2015 v 10:46 Petr Vobornik napsal(a):
On 01/12/2015 06:07 PM, Jan Cholasta wrote:
Hi,
the attached patch fixes
https://fedorahosted.org/freeipa/ticket/4824.
Honza
Is there a reason why
901 - 1000 of 2029 matches
Mail list logo