On 18.2.2014 14:22, Tomas Hozza wrote:
On 02/18/2014 10:34 AM, Petr Spacek wrote:
ewer GCC complains that I didn't check return value from getcwd() ...
Hi.
I reviewed all patches from PATCH 0181 to the latest one PATCH 0221
and tested the bind-dyndb-ldap on Fedora 20 (adding/removing
records
On 7.10.2013 15:20, Tomas Hozza wrote:
On 08/01/2013 03:49 PM, Petr Spacek wrote:
Hello,
Move data structures for parser from ldap_qresult_t to ldap_entry_t.
The target branch is master.
ACK.
Tested Patch bundle 181 - 185. Common tasks like
adding/deleting/updating records work fine
On 1.8.2013 15:51, Petr Spacek wrote:
Hello,
Use DNS_RDATA_MAXLENGTH from rdata.h instead of own definition.
This minor fix could go to v3 and master.
Pushed to v3 and master branch: ad4beb6968114eb85c639772050b54dbab53ba7f
--
Petr^2 Spacek
On 1.8.2013 15:52, Petr Spacek wrote:
Hello,
Do not execute new LDAP search for each updated object.
Syncrepl delivers notification about change in particular object
along with all data from the object. Resource Records are parsed out
from this data instead of data obtained via separate LDAP
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Update NEWS for upcoming 3.6 release.
This patch should go to branches v3 and master.
Pushed to v3 and master branch: 775cad18a63c973a7c437c988fc82087643fa54e
--
Petr^2 Spacek
___
Freeipa-devel
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Remove unused parameter attrlist from ldap_entry_nextattr().
This patch should go to branches v3 and master.
Pushed to v3 and master branch: 03620d3a448149ff0dc4c75e12b06d896af52a1a
--
Petr^2 Spacek
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Fix crash caused by invalid data in SOA record.
E.g. try to put '\0' to the idnsSOAmName attribute...
This patch should go to branches v3 and master.
Pushed to v3 and master branch: 6da35665011aa7e9ad9567b5ea098c998e846630
--
Petr^2 Spacek
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Add missing default branches to switch statemets.
This should help little bit with uninitialized memory usage.
This patch should go to branches v3 and master.
Pushed to v3 and master branch: ce14966943de2b5e2f577cc5130c511edb132a7c
--
Petr^2
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Remove local variables which shadow variables from a upper level.
This patch should go to branches v3 and master.
Pushed to v3 and master branch: 618b3a8c9a6c808f72d9121b6da27ac1e611a382
--
Petr^2 Spacek
On 7.1.2014 19:36, Petr Spacek wrote:
Hello,
Limit number of unprocessed syncrepl events in queue to 100.
All syncrepl events are processed sequentialy. This patch limits
memory consumption in cases where the LDAP server is sending
syncrepl events too quickly.
LDAP client library should
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Make ldap_parse_rrentry() idempotent.
Now, a call to ldap_parse_rrentry() resets the internal entry
interators in ldap_entry_t so the results are always correct.
Without this patch, a second call returned empty ldapdb_rdatalist_t
because all
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Cleanup zone and journal files on LDAP reconnect.
This cleanup solves potential inconsistencies between order
of operations in LDAP and order of operations recorded in journal.
This patch should go to master branch.
Pushed to master branch
On 13.12.2013 17:44, Petr Spacek wrote:
On 12.11.2013 16:13, Petr Spacek wrote:
On 5.11.2013 12:29, Tomas Hozza wrote:
- Original Message -
Hello,
Improve performance of initial LDAP synchronization.
Changes are not journaled and SOA serial is not incremented during initial
LDAP
On 13.12.2013 17:44, Petr Spacek wrote:
On 23.10.2013 17:20, Petr Spacek wrote:
On 23.10.2013 17:12, Tomas Hozza wrote:
On 10/10/2013 07:05 PM, Petr Spacek wrote:
Hello,
this patch set adds journaling to bind-dyndb-ldap.
Journaling requires proper SOA serial maintenance, so from now
SOA
On 13.12.2013 17:45, Petr Spacek wrote:
On 12.11.2013 16:08, Petr Spacek wrote:
Hello,
Publish zones only after all LDAP events have been processed.
Zones are not exposed in _default DNS view until all events
generated before LDAP intermediate message have been processed.
This prevents BIND
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Improve error handling in code for LDAP modification.
Failed LDAP modification is retried once.
This patch should go to branches v3 and master.
Pushed to v3 and master branch: b19977b11455e771250f5f5d61f3cb4d6afe1fbf
--
Petr^2 Spacek
On 13.12.2013 17:44, Petr Spacek wrote:
On 11.11.2013 13:03, Petr Spacek wrote:
Hello,
Fix race condition during write to internal RBTDB.
RBTDB implementation allows to open only one RBTDB instance
for writing at the same time. This patch adds mutex to
newversion() implementation
On 13.12.2013 17:44, Petr Spacek wrote:
On 24.10.2013 16:00, Tomas Hozza wrote:
On 10/23/2013 05:14 PM, Petr Spacek wrote:
Hello,
this patch belongs to 4.0 release. It allows the user to catch some
mis-configurations.
It produces error messages like this:
LDAP error: Critical extension
On 13.12.2013 17:44, Petr Spacek wrote:
On 23.10.2013 17:12, Tomas Hozza wrote:
On 10/11/2013 03:35 PM, Petr Spacek wrote:
Hello,
update documentation and schema files for upcoming version 4.0.
This fixes typo in schema file:
https://fedorahosted.org/bind-dyndb-ldap/ticket/121
Have a nice
On 18.2.2014 17:38, Nathaniel McCallum wrote:
On Tue, 2014-02-18 at 09:58 +0100, Petr Spacek wrote:
On 28.1.2014 16:45, Petr Spacek wrote:
Hello,
Move temporary files to /var/named/dyndb-ldap directory.
This should make RPM packaging easier.
This patch should go to master branch before 4.0
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Bump NVR to 3.6.
BIND 9.9.0 is required.
Tomas, shouldn't I use
Requires: bind = 32:9.9.0-1
?
This patch should go to branches v3 and master.
Pushed to v3 and master branch: a6d7aee2af0c410aeeb51d4295fbb17798661f63
--
Petr^2 Spacek
On 13.12.2013 17:45, Petr Spacek wrote:
Hello,
Silence GCC warnings produced by -Wjump-misses-init.
It seems that it is false alarm in our case.
This patch should go to branches v3 and master.
Pushed to v3 and master branch: 2471ce0b3c0682a65237965188e79c46fa4228ac
--
Petr^2 Spacek
On 13.12.2013 16:02, Petr Spacek wrote:
On 23.10.2013 16:54, Tomas Hozza wrote:
On 10/10/2013 06:58 PM, Petr Spacek wrote:
On 8.10.2013 12:00, Tomas Hozza wrote:
On 10/02/2013 12:57 PM, Petr Spacek wrote:
On 13.9.2013 15:31, Petr Spacek wrote:
On 14.8.2013 16:42, Petr Spacek wrote
On 13.12.2013 17:45, Petr Spacek wrote:
On 27.11.2013 16:34, Petr Spacek wrote:
Hello,
Do not load invalid zones.
Without this patch, it was possible to load an invalid zone without
proper SOA or NS records because the fake SOA and NS records allowed
checks in dns_zone_load() to pass
On 21.2.2014 13:02, Tomas Hozza wrote:
On 02/21/2014 12:54 PM, Tomas Hozza wrote:
On 02/21/2014 12:10 PM, Petr Spacek wrote:
On 21.2.2014 11:05, Tomas Hozza wrote:
On 02/21/2014 10:46 AM, Petr Spacek wrote:
I want to release bind-dyndb-ldap 4.0 to Fedora 20+ but I have found
that we
need
On 17.1.2014 16:13, Tomas Hozza wrote:
On 11/11/2013 12:53 PM, Petr Spacek wrote:
Hello,
Remove obsolete zr_get_rbt() function from zone register.
ACK.
Patch looks good.
Pushed to v3 and master branch: fa03da94d04c539ed84cc75d0ac070feb1052820
--
Petr^2 Spacek
8161ff3f69313a0780e3134da45b3dc1fb9334cb Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Fri, 21 Feb 2014 14:48:05 +0100
Subject: [PATCH] Clarify error message about missing DNS component in
ipa-replica-prepare.
---
ipaserver/install/ipa_replica_prepare.py | 7 +--
1 file changed, 5
On 21.2.2014 15:12, Lukas Slebodnik wrote:
ehlo,
Function get_krb5_tgt is declared in header file krb5_helper.h, but this header
file was not included in implementation file krb5_helper.c
Function fs_dirs_create is declared in header file fs.h, but this header file
was not included in the
On 21.2.2014 16:16, Nathaniel McCallum wrote:
On Fri, 2014-02-21 at 16:12 +0100, Petr Spacek wrote:
Hello,
Add function attributes warn_unused_result and nonnull
where appropriate and add missing CHECK()s to string operations.
Lukas, thanks for catching the missing CHECK() around str_new
On 20.2.2014 05:47, Darth Vader wrote:
Hi,
Changed when ntp sync's in ipa-client-install for the ticket below:
https://fedorahosted.org/freeipa/ticket/3957
Thanks,
Gabe
Thank you very much for your patch! Somebody will review it.
Please be so kind and update Trac with information about
On 20.2.2014 09:35, Jan Cholasta wrote:
On 19.2.2014 23:01, Dmitri Pal wrote:
On 02/19/2014 03:30 PM, Petr Spacek wrote:
On 19.2.2014 21:13, Dmitri Pal wrote:
On 02/19/2014 01:49 PM, Petr Spacek wrote:
Hello list,
I just came across this page:
http://www.gooze.eu/howto/using-openssh
On 20.2.2014 13:31, Sumit Bose wrote:
On Thu, Feb 20, 2014 at 01:14:50PM +0100, Martin Kosek wrote:
We had a discussion with other developers how better track who is reviewing
which patch. Recently, we introduced the Reviewed-By tag in a commit message,
but that is a post-review tag which is
On 19.2.2014 17:55, Martin Basti wrote:
On Wed, 2014-02-19 at 17:10 +0100, Petr Spacek wrote:
On 19.2.2014 15:11, Petr Spacek wrote:
On 18.2.2014 17:34, Nathaniel McCallum wrote:
On Tue, 2014-02-18 at 17:06 +0100, Petr Viktorin wrote:
On 02/18/2014 04:45 PM, Petr Spacek wrote:
Hello,
Add
On 20.2.2014 14:31, Jan Cholasta wrote:
On 20.2.2014 13:14, Martin Kosek wrote:
We had a discussion with other developers how better track who is reviewing
which patch. Recently, we introduced the Reviewed-By tag in a commit message,
but that is a post-review tag which is not useful for someone
On 20.2.2014 14:47, Martin Kosek wrote:
On 02/20/2014 02:31 PM, Jan Cholasta wrote:
On 20.2.2014 13:14, Martin Kosek wrote:
We had a discussion with other developers how better track who is reviewing
which patch. Recently, we introduced the Reviewed-By tag in a commit message,
but that is a
On 20.2.2014 14:20, Jan Cholasta wrote:
On 20.2.2014 13:39, Ludwig Krispenz wrote:
Hi,
I am now getting more familiar with PKCS#11 and did check which objects
are handled by softhsm and I think the best way would be a direct
mapping of a subset of the pkcs#11 objectclasses and attributes to
On 20.2.2014 20:08, Martin Kosek wrote:
But I think a simple script like startreview.py some.patch that Petr
mentioned is a good start, few lines of code.
I have modified my push.py to start_review.py.
Clone
https://github.com/spacekpe/freeipa-processes.git
and read the commit message :-)
It
On 18.2.2014 17:34, Nathaniel McCallum wrote:
On Tue, 2014-02-18 at 17:06 +0100, Petr Viktorin wrote:
On 02/18/2014 04:45 PM, Petr Spacek wrote:
Hello,
Add wait_for_dns option to default.conf.
This option makes record changes in DNS tree synchronous.
IPA calls will wait until new data
Hello list,
I just came across this page:
http://www.gooze.eu/howto/using-openssh-with-smartcards/using-ssh-authentication-agent-ssh-add-with-smartcards
If I understand correctly, it allows you to store use your personal SSH keys
via PKCS#11 interface.
It sounds like a killer feature to me!
On 19.2.2014 21:10, Dmitri Pal wrote:
On 02/19/2014 11:58 AM, Adam Misnyovszki wrote:
Hi,
I reviewed this old patch:
If an error occurs in the start up sequence in ipactl start/restart,
all the services are stopped. Using the --force/-f option prevents
stopping of services that have
On 19.2.2014 21:13, Dmitri Pal wrote:
On 02/19/2014 01:49 PM, Petr Spacek wrote:
Hello list,
I just came across this page:
http://www.gooze.eu/howto/using-openssh-with-smartcards/using-ssh-authentication-agent-ssh-add-with-smartcards
If I understand correctly, it allows you to store use
On 28.1.2014 16:45, Petr Spacek wrote:
Hello,
Move temporary files to /var/named/dyndb-ldap directory.
This should make RPM packaging easier.
This patch should go to master branch before 4.0 release.
This version fixes packaging problems found by Tomas Hozza.
--
Petr^2 Spacek
From
Hello,
Make getcwd() calls safer.
Newer GCC complains that I didn't check return value from getcwd() ...
--
Petr^2 Spacek
From 39940f692e42313c7301c12c49d76003482d7e11 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Tue, 18 Feb 2014 10:33:15 +0100
Subject: [PATCH] Make
On 18.2.2014 16:31, Jan Cholasta wrote:
2] low level replacement for eg the sqlite3 database in softhsm.
That's what I sometimes get the impression what is wanted. SoftHsm has
one component Softdatabase with an API, which more or less passes sets
of attributes (attributes defined by PKCS#11)
and DNS.
I would recommend value like 10 seconds.
--
Petr^2 Spacek
From 7ad81ab266754afb1e5b33b459bc92399ff2f09c Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Fri, 14 Feb 2014 15:33:24 +0100
Subject: [PATCH] Add wait_for_dns option to default.conf.
This option makes record
Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Mon, 17 Feb 2014 14:37:28 +0100
Subject: [PATCH] Fix regular expression for LOC records in DNS.
- Fractional parts of integers are not mandatory.
- Expressions containing only size or only size + horizontal precision
are allowed
On 13.2.2014 22:39, Petr Spacek wrote:
On 13.2.2014 14:33, Martin Kosek wrote:
On 11/08/2013 10:18 AM, Martin Kosek wrote:
On 10/17/2013 12:04 PM, Martin Kosek wrote:
On 10/17/2013 07:25 AM, Petr Spacek wrote:
On 17.10.2013 03:06, Simo Sorce wrote:
On Wed, 2013-10-16 at 21:59 +0200, Petr
On 14.2.2014 11:03, Jan Cholasta wrote:
On 13.2.2014 18:36, Petr Spacek wrote:
Hello list,
I would like to point you to design pages for DNSSEC feature:
Zone signing:
https://fedorahosted.org/bind-dyndb-ldap/wiki/BIND9/Design/DNSSEC
Automatic key rotation:
https://fedorahosted.org/bind-dyndb
On 14.2.2014 12:27, Jan Cholasta wrote:
On 14.2.2014 12:08, Petr Spacek wrote:
On 14.2.2014 11:03, Jan Cholasta wrote:
On 13.2.2014 18:36, Petr Spacek wrote:
Hello list,
I would like to point you to design pages for DNSSEC feature:
Zone signing:
https://fedorahosted.org/bind-dyndb-ldap/wiki
Hello,
I have got an silly idea to use TPM (Trusted Platform Module) as backend for
Keytab storage (via GSS-Proxy).
GSS-Proxy prevents application from accessing key material, right? So
GSS-Proxy could theoretically store keys in TPM and application wouldn't
notice any difference, right?
Hello,
This patch prevents the test suite from hitting limitations
in bind-dyndb-ldap 4.0.
It should go to 3.4 (master branch, right?).
--
Petr^2 Spacek
From 39da51eedef455b4d3f436acb0d85de1024debfb Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Fri, 14 Feb 2014 15:06:42
On 14.2.2014 15:29, Petr Viktorin wrote:
On 02/14/2014 03:10 PM, Petr Spacek wrote:
Hello,
This patch prevents the test suite from hitting limitations
in bind-dyndb-ldap 4.0.
It should go to 3.4 (master branch, right?).
Tests still pass, but the commit message is not very informative
Hello list,
I would like to point you to design pages for DNSSEC feature:
Zone signing:
https://fedorahosted.org/bind-dyndb-ldap/wiki/BIND9/Design/DNSSEC
Automatic key rotation:
https://fedorahosted.org/bind-dyndb-ldap/wiki/BIND9/Design/DNSSEC/Keys/Shortterm
On 13.2.2014 14:33, Martin Kosek wrote:
On 11/08/2013 10:18 AM, Martin Kosek wrote:
On 10/17/2013 12:04 PM, Martin Kosek wrote:
On 10/17/2013 07:25 AM, Petr Spacek wrote:
On 17.10.2013 03:06, Simo Sorce wrote:
On Wed, 2013-10-16 at 21:59 +0200, Petr Spacek wrote:
On 16.10.2013 15:31, Martin
On 7.2.2014 10:42, Martin Basti wrote:
On Thu, 2014-02-06 at 17:04 +0100, Martin Basti wrote:
On Thu, 2014-02-06 at 16:37 +0100, Jan Cholasta wrote:
On 6.2.2014 15:57, Martin Basti wrote:
On Thu, 2014-02-06 at 10:59 +0100, Jan Cholasta wrote:
Hi,
On 31.1.2014 16:06, Martin Basti wrote:
On 31.1.2014 14:17, Francesco Chicchiriccò wrote:
On 31/01/2014 12:52, Dmitri Pal wrote:
On 01/31/2014 05:03 AM, Martin Kosek wrote:
On 01/31/2014 10:45 AM, Francesco Chicchiriccò wrote:
On 30/01/2014 19:25, Dmitri Pal wrote:
On 01/30/2014 11:35 AM, Francesco Chicchiriccò wrote:
...
To
Hello,
Move temporary files to /var/named/dyndb-ldap directory.
This should make RPM packaging easier.
This patch should go to master branch before 4.0 release.
--
Petr^2 Spacek
From 1811facb8c736ed4d6176c3524c0d56ce0c2b2f5 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date
Hello,
Prevent crash if working directory for zone cannot be created.
This patch should go to master branch before 4.0 release.
--
Petr^2 Spacek
From eb7b0c980f181bfffbb57aff8af44d13114eb4a4 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Tue, 28 Jan 2014 15:55:57 +0100
On 24.1.2014 18:46, Dmitri Pal wrote:
On 01/24/2014 10:39 AM, Rob Crittenden wrote:
Martin Kosek wrote:
When working on release, this question comes to my mind every time -
what is
the following page good for? :)
http://www.freeipa.org/page/Changelog
To me, it is usually just an annoyance of
:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Mon, 27 Jan 2014 14:47:10 +0100
Subject: [PATCH] Remove working directory for bind-dyndb-ldap plugin.
The working directory will be provided directly
by bind-dyndb-ldap package.
This partially reverts commit
: Petr Spacek pspa...@redhat.com
Date: Thu, 23 Jan 2014 12:22:38 +0100
Subject: [PATCH] Limit memberOf and refInt DS plugins to main IPA suffix.
This drastically improves performance of retro changelog trimming.
https://fedorahosted.org/freeipa/ticket/3967
---
freeipa.spec.in| 6
Hello list,
I just found that freeipa.spec silences all messages from %posttrans scripts,
which makes me a bit nervous:
%posttrans server
# This must be run in posttrans so that updates from previous
# execution that may no longer be shipped are not applied.
/usr/sbin/ipa-ldap-updater
On 28.11.2013 10:33, Ana Krivokapic wrote:
On 10/29/2013 06:57 PM, Ana Krivokapic wrote:
On 10/29/2013 12:46 PM, Martin Kosek wrote:
On 10/25/2013 05:03 PM, Ana Krivokapic wrote:
Hello,
This patch addresses ticket https://fedorahosted.org/freeipa/ticket/3967.
NACK. I do not think this will
Hello,
Treat error during write to /etc/resolv.conf as non-fatal.
https://fedorahosted.org/freeipa/ticket/4110
--
Petr^2 Spacek
From 23104ca67953c0346005567af2710c29689980d5 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Tue, 14 Jan 2014 10:48:31 +0100
Subject: [PATCH
will be lost.
This patch should go to the head of future master branch (rbtdb.v22).
--
Petr^2 Spacek
From ebd5264baf76f86240d45e8024aaac44e677b941 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Tue, 7 Jan 2014 17:25:43 +0100
Subject: [PATCH] Limit number of unprocessed syncrepl events
On 17.12.2013 10:12, Jakub Hrozek wrote:
On Tue, Dec 17, 2013 at 08:19:09AM +0100, Jan Cholasta wrote:
Hi,
On 16.12.2013 22:12, Nathaniel McCallum wrote:
Patch attached.
Care to elaborate? There's no ticket or explanation why this is
beneficial or necessary.
We had a short chat with
On 17.12.2013 17:40, Alexander Bokovoy wrote:
On Tue, 17 Dec 2013, Rich Megginson wrote:
On 12/16/2013 08:07 AM, Petr Spacek wrote:
Hello list,
we have to decide what we will do with 389-ds-base package in Fedora 20.
Currently, we know about following problems:
Schema problems:
https
Hello list,
we have to decide what we will do with 389-ds-base package in Fedora 20.
Currently, we know about following problems:
Schema problems:
https://fedorahosted.org/389/ticket/47631 (regression)
Referential Integrity:
https://fedorahosted.org/389/ticket/47621 (new functionality)
On 16.12.2013 17:15, Rich Megginson wrote:
On 12/16/2013 08:07 AM, Petr Spacek wrote:
Hello list,
we have to decide what we will do with 389-ds-base package in Fedora 20.
Currently, we know about following problems:
Schema problems:
https://fedorahosted.org/389/ticket/47631 (regression
On 16.12.2013 17:55, Alexander Bokovoy wrote:
On Mon, 16 Dec 2013, Rich Megginson wrote:
Simo thinks that this is a reason why 'downgrade package' with 1.3.1.x
inevitably needs automated script which will purge two missing plugins
from dse.ldif.
We have an upgrade/downgrade framework, it
On 12.11.2013 16:08, Petr Spacek wrote:
Hello,
Publish zones only after all LDAP events have been processed.
Zones are not exposed in _default DNS view until all events
generated before LDAP intermediate message have been processed.
This prevents BIND from returning NXDOMAIN for some names
On 7.10.2013 15:19, Tomas Hozza wrote:
On 07/22/2013 03:16 PM, Petr Spacek wrote:
On 22.7.2013 13:23, Petr Spacek wrote:
Hello,
Replace LDAP persistent search with syncrepl (RFC 4533).
All direct operations with LDAP Persistent Search control are replaced
by ldap_sync_* calls.
Syncrepl code
On 24.10.2013 16:00, Tomas Hozza wrote:
On 10/23/2013 05:14 PM, Petr Spacek wrote:
Hello,
this patch belongs to 4.0 release. It allows the user to catch some
mis-configurations.
It produces error messages like this:
LDAP error: Critical extension is unavailable: unable to start SyncRepl
Hello,
Add missing default branches to switch statemets.
This should help little bit with uninitialized memory usage.
This patch should go to branches v3 and master.
--
Petr^2 Spacek
From c6e2339e1cb6aefe1ad7899eccc416d746e67f3e Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Hello,
Remove local variables which shadow variables from a upper level.
This patch should go to branches v3 and master.
--
Petr^2 Spacek
From 92bf6a1b7808ffe779dbeed18ef845b18f4927fe Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Fri, 6 Dec 2013 14:29:16 +0100
Subject
On 11.11.2013 13:03, Petr Spacek wrote:
Hello,
Fix race condition during write to internal RBTDB.
RBTDB implementation allows to open only one RBTDB instance
for writing at the same time. This patch adds mutex to
newversion() implementation in ldap_driver.c.
See comments around ldapdb_t
On 23.10.2013 17:12, Tomas Hozza wrote:
On 10/11/2013 03:35 PM, Petr Spacek wrote:
Hello,
update documentation and schema files for upcoming version 4.0.
This fixes typo in schema file:
https://fedorahosted.org/bind-dyndb-ldap/ticket/121
Have a nice weekend!
I updated NEWS file in patch
.
This patch should go to branches v3 and master.
--
Petr^2 Spacek
From f1f1a8c9273ec9bf2f921e7ab534e0104bb84734 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Thu, 12 Dec 2013 10:01:34 +0100
Subject: [PATCH] Make ldap_parse_rrentry() idempotent.
Now, a call
Hello,
Bump NVR to 3.6.
BIND 9.9.0 is required.
Tomas, shouldn't I use
Requires: bind = 32:9.9.0-1
?
This patch should go to branches v3 and master.
--
Petr^2 Spacek
From d2777beec08e797ff6342d36fc15c480a4f9cee0 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Thu, 12 Dec
Hello,
Update NEWS for upcoming 3.6 release.
This patch should go to branches v3 and master.
--
Petr^2 Spacek
From 72b4e9ea86b9621792cf17292fcb3b7ea90ee399 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Thu, 12 Dec 2013 12:53:46 +0100
Subject: [PATCH] Update NEWS
On 11.11.2013 12:53, Petr Spacek wrote:
Hello,
Remove obsolete zr_get_rbt() function from zone register.
This patch stays unchanged.
It should go to branches v3 and master.
--
Petr^2 Spacek
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
Hello,
Silence GCC warnings produced by -Wjump-misses-init.
It seems that it is false alarm in our case.
This patch should go to branches v3 and master.
--
Petr^2 Spacek
From ba457ca6c37b40d59194ea723285ec4b2a7645b0 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Fri, 6
Hello,
Remove unused parameter attrlist from ldap_entry_nextattr().
This patch should go to branches v3 and master.
--
Petr^2 Spacek
From f92881a2e0fa32e7f84816b10984f1e6745d0176 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Wed, 11 Dec 2013 12:10:50 +0100
Subject
On 27.11.2013 16:34, Petr Spacek wrote:
Hello,
Do not load invalid zones.
Without this patch, it was possible to load an invalid zone without
proper SOA or NS records because the fake SOA and NS records allowed
checks in dns_zone_load() to pass.
With this patch, no fake SOA or NS records
On 12.11.2013 16:13, Petr Spacek wrote:
On 5.11.2013 12:29, Tomas Hozza wrote:
- Original Message -
Hello,
Improve performance of initial LDAP synchronization.
Changes are not journaled and SOA serial is not incremented during initial
LDAP synchronization.
This eliminates
Hello,
Fix crash caused by invalid data in SOA record.
E.g. try to put '\0' to the idnsSOAmName attribute...
This patch should go to branches v3 and master.
--
Petr^2 Spacek
From b49bea1d803d6e2deb285ad13a84442512f25394 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Fri
Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Fri, 13 Dec 2013 10:54:37 +0100
Subject: [PATCH] Cleanup zone and journal files on LDAP reconnect.
This cleanup solves potential inconsistencies between order
of operations in LDAP and order of operations recorded in journal.
Signed-off
Hello,
latest patches for v3 branch are in my temporary v3.6 branch on Github:
https://github.com/spacekpe/bind-dyndb-ldap/tree/v3.6
... and latest patches for master branch are in master.rbtdb.v22 branch:
https://github.com/spacekpe/bind-dyndb-ldap/tree/master.rbtdb.v22
I hope that this will
On 7.10.2013 15:20, Tomas Hozza wrote:
On 08/01/2013 03:48 PM, Petr Spacek wrote:
Hello,
Fix false error messages when nonexistent object/attribute is deleted.
This patch should go to branches v3 and master.
ACK.
Tested Patch bundle 181 - 185. Common tasks like
adding/deleting/updating
On 12.12.2013 15:02, Tomas Babej wrote:
On sysrestore failure, user is prompted out to remove the sysrestore
file. However, the path to the sysrestore file mentioned in the
sentence is not correct.
https://fedorahosted.org/freeipa/ticket/4080
--
Tomas Babej
On 6.12.2013 11:52, Jan Cholasta wrote:
freeipa-jcholast-208.1-Add-stricter-default-CFLAGS-to-Makefile.patch
From 85ad15d522274a711c87f92ed91889b781d7455e Mon Sep 17 00:00:00 2001
From: Jan Cholastajchol...@redhat.com
Date: Wed, 4 Dec 2013 18:42:36 +0100
Subject: [PATCH 3/5] Add stricter
Hello,
Clarify error message about IPv6 socket creation in ipa-cldap plugin.
https://fedorahosted.org/freeipa/ticket/4056
--
Petr^2 Spacek
From e7c950a17a13abe2c2ea430c1f8ca2b1ab44513d Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Tue, 3 Dec 2013 15:10:26 +0100
Subject
before end of the initial synchronization.
See the function ldapdb_associate() in ldap_driver.c and it's comments.
--
Petr^2 Spacek
From bd2f1f3d3c13d3efe5833146eb5bcb2bbf76b8d3 Mon Sep 17 00:00:00 2001
From: Petr Spacek pspa...@redhat.com
Date: Wed, 27 Nov 2013 16:25:30 +0100
Subject: [PATCH] Do
On 22.11.2013 04:17, Jan Pazdziora wrote:
On Fri, Nov 15, 2013 at 11:30:22AM -0600, Derek Moore wrote:
Is there an opportunity to also bring in OpenShift Origin, in particular
Broker, which also uses its own BIND with dyndb and/or nsupdate?
Derek,
is your interest getting OpenShift with IPA
On 15.11.2013 17:44, Derek Moore wrote:
Practically though, I think an idempotent installer opens a lot of cans of
worms. Do we limit some answers to their original? Take for instance the
REALM. Can someone change it on-the-fly? It would have some deep
repercussions. Similarly, changing the
, Petr Spacek pspa...@redhat.com wrote:
Hello list,
as you may know, we don't have any tests for bind-dyndb-ldap/DNS in
FreeIPA. It seems that we have a chance to change that now.
The LinuxAlt conference 2013 brought the information that Knot DNS [1]
developers plan to write a new test suite
Hello list,
as you may know, we don't have any tests for bind-dyndb-ldap/DNS in FreeIPA.
It seems that we have a chance to change that now.
The LinuxAlt conference 2013 brought the information that Knot DNS [1]
developers plan to write a new test suite for their server, but as usual,
Hello,
there is an interesting idea that installers should be idempotent. I have
heard it on LinuxAlt conference 2013 in Brno, Czech republic and it is
implemented e.g. by project Chef [1] and it is used e.g. by OpenStack
installer [2] (used e.g. by SUSE).
What Wikipedia says about
Hello,
latest FreeIPA build from branch ipa-3-3 (built today on Fedora 20, latest
bits) fails following tests:
==
ERROR: test_config[0]: config_mod: Try to add an unrelated objectclass to
ipauserobjectclasses
Hello,
latest FreeIPA build from branch ipa-3-3 (built today on Fedora 20, latest
bits) fails following tests:
==
FAIL: Find all certificates for this IPA server short name (exact)
1001 - 1100 of 1581 matches
Mail list logo
