URL: https://github.com/freeipa/freeipa/pull/451
Author: tomaskrizek
Title: #451: certdb: remove unused keysize property
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/451/head:pr451
git checkout pr451
URL: https://github.com/freeipa/freeipa/pull/451
Title: #451: certdb: remove unused keysize property
tomaskrizek commented:
"""
@frasertweedale Fixed.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/451#issuecomment-278590229
--
Manage you
URL: https://github.com/freeipa/freeipa/pull/364
Title: #364: Client-only builds with --disable-server
tomaskrizek commented:
"""
@tiran Do you need `make dist` for anything?
I'm not aware of any plans to release client-only IPA sources, so I don't think
it's nee
URL: https://github.com/freeipa/freeipa/pull/451
Title: #451: certdb: remove unused keysize property
tomaskrizek commented:
"""
Commit that removed valid_moths property:
e736e75ce9724ae8298a5b69d093313cd6e62b60
"""
See the full comment at
https://githu
URL: https://github.com/freeipa/freeipa/pull/451
Author: tomaskrizek
Title: #451: certdb: remove unused keysize property
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/451/head:pr451
git checkout pr451
URL: https://github.com/freeipa/freeipa/pull/451
Author: tomaskrizek
Title: #451: certdb: remove unused keysize property
Action: opened
PR body:
"""
Keysize property is no longer used anywhere in the code. It was
originally introduced for the request_cert function, which was l
URL: https://github.com/freeipa/freeipa/pull/437
Author: tomaskrizek
Title: #437: FIPS: replica install check
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/437/head:pr437
git checkout pr437
From
URL: https://github.com/freeipa/freeipa/pull/426
Title: #426: DNSSEC: forwarders validation improvement
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute
URL: https://github.com/freeipa/freeipa/pull/437
Author: tomaskrizek
Title: #437: FIPS: replica install check
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/437/head:pr437
git checkout pr437
From
URL: https://github.com/freeipa/freeipa/pull/423
Title: #423: dns-update-system-records: add support for nsupdate output format
tomaskrizek commented:
"""
I added some in-line comments/questions.
"""
See the full comment at
https://github.com/freeipa/freeipa/p
URL: https://github.com/freeipa/freeipa/pull/426
Title: #426: DNSSEC: forwarders validation improvement
tomaskrizek commented:
"""
I think the same issue can also occur in
`validate_dnssec_zone_forwarder_step2()`.
"""
See the full comment at
https://githu
URL: https://github.com/freeipa/freeipa/pull/437
Author: tomaskrizek
Title: #437: FIPS: replica install check
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/437/head:pr437
git checkout pr437
From
URL: https://github.com/freeipa/freeipa/pull/437
Title: #437: FIPS: replica install check
tomaskrizek commented:
"""
Thanks for the feedback. Hopefully I addressed all the concerns above in the
update.
"""
See the full comment at
https://github.com/freeipa
URL: https://github.com/freeipa/freeipa/pull/437
Author: tomaskrizek
Title: #437: FIPS: replica install check
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/437/head:pr437
git checkout pr437
From
URL: https://github.com/freeipa/freeipa/pull/437
Title: #437: FIPS: replica install check
tomaskrizek commented:
"""
@MartinBasti Since this check is performed only during installation, the user
could simply install non-FIPS replica and then turn FIPS on afterwards. There
might
URL: https://github.com/freeipa/freeipa/pull/437
Author: tomaskrizek
Title: #437: FIPS: replica install check
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/437/head:pr437
git checkout pr437
From
URL: https://github.com/freeipa/freeipa/pull/437
Author: tomaskrizek
Title: #437: FIPS: replica install check
Action: opened
PR body:
"""
PR depends on the rest of the FIPS patches.
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/8
Title: #8: Log when pointers are different
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/8
Author: pemensik
Title: #8: Log when pointers are different
Action: closed
To pull the PR as Git branch:
git remote add ghbind-dyndb-ldap https://github.com/freeipa/bind-dyndb-ldap
git fetch ghbind-dyndb-ldap pull/8/head:pr8
git checkout p
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/8
Title: #8: Log when pointers are different
tomaskrizek commented:
"""
Thanks, this should help with the future debugging efforts.
Fixed upstream:
[ec2e125ed1b81c41448f699c8df54da66fbc5e8c](https://git.fedorahosted.org/
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/8
Title: #8: Log when pointers are different
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Co
URL: https://github.com/freeipa/freeipa/pull/351
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
tomaskrizek commented:
"""
I've updated the version of BIND and the patch should be complete. I suggest we
do a review (you can use
https://copr.fedora
URL: https://github.com/freeipa/freeipa/pull/351
Author: tomaskrizek
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/351/head:pr351
URL: https://github.com/freeipa/freeipa/pull/351
Author: tomaskrizek
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/351/head:pr351
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/7
Author: tomaskrizek
Title: #7: Added named.conf API transformation script to spec
Action: synchronized
To pull the PR as Git branch:
git remote add ghbind-dyndb-ldap https://github.com/freeipa/bind-dyndb-ldap
git fetch ghbind-dyndb-ldap
URL: https://github.com/freeipa/freeipa/pull/395
Title: #395: Configure PKI ajp redirection to use "localhost" instead of "::1"
tomaskrizek commented:
"""
**ACK** for z-stream with the patched PKI.
Waiting for the PKI release and bump of `Requires` to ack an
URL: https://github.com/freeipa/freeipa/pull/395
Title: #395: Configure PKI ajp redirection to use "localhost" instead of "::1"
tomaskrizek commented:
"""
**ACK** for z-stream with the patched PKI.
Waiting for the PKI release and bump of `Requires` to ack an
URL: https://github.com/freeipa/freeipa/pull/395
Title: #395: Configure PKI ajp redirection to use "localhost" instead of "::1"
tomaskrizek commented:
"""
Since the bug is completely fixed on the PKI side, shouldn't we bump the
`Requires` to require th
URL: https://github.com/freeipa/freeipa/pull/347
Title: #347: Improvements in {get|set}_directive functions
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contri
URL: https://github.com/freeipa/freeipa/pull/347
Title: #347: Improvements in {get|set}_directive functions
tomaskrizek commented:
"""
I wasn't able to find any more issues with the quoting of certificate names.
The directive quoting seems to work properly now.
"&q
URL: https://github.com/freeipa/freeipa/pull/359
Title: #359: dogtag: search past the first 100 certificates
tomaskrizek commented:
"""
We examined the WebUI side and it behaves as expected - the size limit is
respected when viewing certificates.
"""
URL: https://github.com/freeipa/freeipa/pull/359
Title: #359: dogtag: search past the first 100 certificates
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contr
URL: https://github.com/freeipa/freeipa/pull/359
Title: #359: dogtag: search past the first 100 certificates
tomaskrizek commented:
"""
The behavior of the command seems to be correct now, but I'm also not sure
about the WebUI. There seems to be a limit of 20 items whe
URL: https://github.com/freeipa/freeipa/pull/336
Title: #336: [py3] pki: add missing depedency pki-base[-python3]
tomaskrizek commented:
"""
@HonzaCholasta Perhaps it's more of a personal preference, but I'd rather see
an existing version of a certain package. Since t
URL: https://github.com/freeipa/freeipa/pull/336
Title: #336: [py3] pki: add missing depedency pki-base[-python3]
tomaskrizek commented:
"""
I agree with @tiran here. Even though `>= 10.2.1` will match the correct
package, I don't think it's a good practice to use
URL: https://github.com/freeipa/freeipa/pull/389
Title: #389: Fix build in mock
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/389
Title: #389: Fix build in mock
tomaskrizek commented:
"""
Thanks for the fix and explanation!
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/389#issuecomment-273206316
--
Manage your subs
URL: https://github.com/freeipa/freeipa/pull/390
Title: #390: WebUI: Fix Coverity JS bugs
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/364
Title: #364: Client-only builds with --disable-server
tomaskrizek commented:
"""
I'm not really experienced with autotools, so I do not want to ack this PR
without someone else taking a look. I'm also not sure about th
URL: https://github.com/freeipa/freeipa/pull/179
Title: #179: Fix for handling CalledProcessError in authconfig
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Co
URL: https://github.com/freeipa/freeipa/pull/179
Title: #179: Fix for handling CalledProcessError in authconfig
tomaskrizek commented:
"""
Since there's been no suggestions for a more descriptive error message -> ack.
"""
See the full comment at
https
URL: https://github.com/freeipa/freeipa/pull/347
Title: #347: Improvements in {get|set}_directive functions
tomaskrizek commented:
"""
I still managed to find a an issue for certain edge cases. See inline comments
for more info.
"""
See the full comment at
http
URL: https://github.com/freeipa/freeipa/pull/351
Author: tomaskrizek
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/351/head:pr351
URL: https://github.com/freeipa/freeipa/pull/395
Title: #395: Configure PKI ajp redirection to use "localhost" instead of "::1"
tomaskrizek commented:
"""
@flo You're right, I'm able to install the IPA server in IPv6 env now. I
probably forgot some
URL: https://github.com/freeipa/freeipa/pull/395
Title: #395: Configure PKI ajp redirection to use "localhost" instead of "::1"
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.fre
URL: https://github.com/freeipa/freeipa/pull/395
Title: #395: Configure PKI ajp redirection to use "localhost" instead of "::1"
tomaskrizek commented:
"""
The fix solves [ticket #6575](https://fedorahosted.org/freeipa/ticket/6575),
but I once agai
URL: https://github.com/freeipa/freeipa/pull/392
Author: tomaskrizek
Title: #392: Fix coverity issue
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/392/head:pr392
git checkout pr392
From
URL: https://github.com/freeipa/freeipa/pull/392
Author: tomaskrizek
Title: #392: Fix coverity issue
Action: opened
PR body:
"""
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/392/head
URL: https://github.com/freeipa/freeipa/pull/364
Title: #364: Client-only builds with --disable-server
tomaskrizek commented:
"""
The extra dependencies are indeed not necessary with this change.
However, `make install` produces directories like
`/usr/lib/python2.7/site-pac
URL: https://github.com/freeipa/freeipa/pull/364
Title: #364: Client-only builds with --disable-server
tomaskrizek commented:
"""
Could you please extend [V4/Build system
refactoring](http://www.freeipa.org/page/V4/Build_system_refactoring) to
include steps describing how to
URL: https://github.com/freeipa/freeipa/pull/381
Title: #381: disable hostname canonicalization by Kerberos library
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/pag
URL: https://github.com/freeipa/freeipa/pull/381
Title: #381: disable hostname canonicalization by Kerberos library
tomaskrizek commented:
"""
Works as expected.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/381#issuecomment-271818581
--
Ma
URL: https://github.com/freeipa/freeipa/pull/385
Title: #385: Generate sha256 ssh pubkey fingerprints for hosts
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Co
URL: https://github.com/freeipa/freeipa/pull/179
Title: #179: Fix for handling CalledProcessError in authconfig
tomaskrizek commented:
"""
I investigated some other options for the displayed error message, but I
haven't found anything more appropriate.
[Comment#4](http
URL: https://github.com/freeipa/freeipa/pull/347
Title: #347: Improvements in {get|set}_directive functions
tomaskrizek commented:
"""
Please see my feedback in in-line comments.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/347#issuecom
URL: https://github.com/freeipa/freeipa/pull/351
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
tomaskrizek commented:
"""
Required version of BIND is a subject to change. When a version with fixed
`named-pkcs11` issue ([BZ
1410433](https://bugz
URL: https://github.com/freeipa/freeipa/pull/351
Author: tomaskrizek
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/351/head:pr351
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/7
Title: #7: Added named.conf API transformation script to spec
tomaskrizek commented:
"""
This patch is meant to fix existing IPA installations when they're upgraded to
use BIND-9.11. New IPA installations are covered by
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/7
Author: tomaskrizek
Title: #7: Added named.conf API transformation script to spec
Action: opened
PR body:
"""
A script that converts old-style configuration API of named.conf
to the new-style API after rpm isntallati
URL: https://github.com/freeipa/freeipa/pull/351
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
tomaskrizek commented:
"""
This fix only applies to new IPA installations.
Upgrade of `named.conf` will be handled separately by bind-dyndb-ldap. When a
new
URL: https://github.com/freeipa/freeipa/pull/371
Title: #371: [4.4] Set up DS TLS on replica in CA-less topology
tomaskrizek commented:
"""
I re-tested CA-less and CA-full use cases in both domlvl0 and domlvl1. They all
seem to work and ldapssl is running.
Thanks for f
URL: https://github.com/freeipa/freeipa/pull/371
Title: #371: [4.4] Set up DS TLS on replica in CA-less topology
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/C
URL: https://github.com/freeipa/freeipa/pull/355
Title: #355: Set up DS TLS on replica in CA-less topology
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contrib
URL: https://github.com/freeipa/freeipa/pull/355
Title: #355: Set up DS TLS on replica in CA-less topology
tomaskrizek commented:
"""
I re-tested the most recent change in domlvl1. ldapssl is turned on both for
CA-less replica install and CA-full replica install.
I also creat
URL: https://github.com/freeipa/freeipa/pull/359
Title: #359: dogtag: search past the first 100 certificates
tomaskrizek commented:
"""
@frasertweedale
I ran into this issue when I created 100 users with different user certificates:
```
for i in {300..400}; do
ipa user-add &qu
URL: https://github.com/freeipa/freeipa/pull/359
Title: #359: dogtag: search past the first 100 certificates
tomaskrizek commented:
"""
With this fix, more than 100 certificates are displayed and click-able from
WebUI overview. However, I'm still getting an error m
URL: https://github.com/freeipa/freeipa/pull/355
Title: #355: Set up DS TLS on replica in CA-less topology
tomaskrizek commented:
"""
I've tested the following use cases:
- CA-less replica promotion domlvl1: *ldapssl running*; but the following
behaviour is present: If
URL: https://github.com/freeipa/freeipa/pull/355
Title: #355: Set up DS TLS on replica in CA-less topology
tomaskrizek commented:
"""
89de60c was reveted because while it fixed this particular use case, it broke
others. IIRC it broke regular replica promotion with CA.
The pr
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/5
Author: pspacek
Title: #5: Add GDB pretty-printers for plugin data structures to contrib.
Action: closed
To pull the PR as Git branch:
git remote add ghbind-dyndb-ldap https://github.com/freeipa/bind-dyndb-ldap
git fetch ghbind-dyndb-ldap
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/5
Title: #5: Add GDB pretty-printers for plugin data structures to contrib.
tomaskrizek commented:
"""
Fixed upstream:
[0f9c9584a697147a2c56858acf5dec07ed8365bc](https://git.fedorahosted.org/cgit/bind-dyndb-ldap
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/5
Title: #5: Add GDB pretty-printers for plugin data structures to contrib.
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/6
Title: #6: handle termination of syncrepl watcher thread
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/5
Title: #5: Add GDB pretty-printers for plugin data structures to contrib.
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.fr
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/5
Title: #5: Add GDB pretty-printers for plugin data structures to contrib.
tomaskrizek commented:
"""
Seems like a good addition for debugging, thanks!
"""
See the full comment at
https://github.com/
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/6
Title: #6: handle termination of syncrepl watcher thread
tomaskrizek commented:
"""
Fixed upstream:
[edd8c0552eb7e977a961c9492eb18c177685e438](https://git.fedorahosted.org/cgit/bind-dyndb-ldap
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/6
Author: tomaskrizek
Title: #6: handle termination of syncrepl watcher thread
Action: closed
To pull the PR as Git branch:
git remote add ghbind-dyndb-ldap https://github.com/freeipa/bind-dyndb-ldap
git fetch ghbind-dyndb-ldap pull/6
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/6
Author: tomaskrizek
Title: #6: handle termination of syncrepl watcher thread
Action: synchronized
To pull the PR as Git branch:
git remote add ghbind-dyndb-ldap https://github.com/freeipa/bind-dyndb-ldap
git fetch ghbind-dyndb-ldap pull/6
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/6
Author: tomaskrizek
Title: #6: handle termination of syncrepl watcher thread
Action: synchronized
To pull the PR as Git branch:
git remote add ghbind-dyndb-ldap https://github.com/freeipa/bind-dyndb-ldap
git fetch ghbind-dyndb-ldap pull/6
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/6
Author: tomaskrizek
Title: #6: handle termination of syncrepl watcher thread
Action: synchronized
To pull the PR as Git branch:
git remote add ghbind-dyndb-ldap https://github.com/freeipa/bind-dyndb-ldap
git fetch ghbind-dyndb-ldap pull/6
URL: https://github.com/freeipa/freeipa/pull/351
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
tomaskrizek commented:
"""
The version of BIND in `freeipa.spec.in` is also subject to change. There is
currently a bug that affects `named-pkcs11`, but not `
URL: https://github.com/freeipa/freeipa/pull/351
Author: tomaskrizek
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/351/head:pr351
URL: https://github.com/freeipa/bind-dyndb-ldap/pull/6
Author: tomaskrizek
Title: #6: handle termination of syncrepl watcher thread
Action: opened
PR body:
"""
In some cases, the thread could have been already terminated and
sending a signal to the thread using pthread_kill()
URL: https://github.com/freeipa/freeipa/pull/351
Author: tomaskrizek
Title: #351: [fedora-26] named.conf template: update API for bind 9.11
Action: opened
PR body:
"""
Please **do not merge** this patch upstream, we need to have BIND 9.11
available before we do, otherwise it
URL: https://github.com/freeipa/freeipa/pull/284
Author: tomaskrizek
Title: #284: ipautil: check for open ports on all resolved IPs
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/284/head:pr284
git
URL: https://github.com/freeipa/freeipa/pull/309
Author: tomaskrizek
Title: #309: ipa-replica-conncheck: fix race condition
Action: opened
PR body:
"""
When the thread that opens ports would execute notify() before the
original thread could call wait(), the original th
URL: https://github.com/freeipa/freeipa/pull/276
Author: tomaskrizek
Title: #276: replica-conncheck: improve error msg + logging
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/276/head:pr276
git checkout
URL: https://github.com/freeipa/freeipa/pull/284
Author: tomaskrizek
Title: #284: ipautil: check for open ports on all resolved IPs
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/284/head:pr284
git
URL: https://github.com/freeipa/freeipa/pull/267
Author: tomaskrizek
Title: #267: ipa-replica-conncheck: do not close listening ports until required
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/267
URL: https://github.com/freeipa/freeipa/pull/287
Title: #287: Wheel bundles fixes
tomaskrizek commented:
"""
I wasn't able to fully test this since there is an issue with building
`bdist_wheel`. But since ipaplatform dependency has been removed, it seems to
be all righ
URL: https://github.com/freeipa/freeipa/pull/287
Title: #287: Wheel bundles fixes
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/287
Title: #287: Wheel bundles fixes
tomaskrizek commented:
"""
PR needs a rebase to fix `extra_requires` -> `extras_require` typo.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/287#issue
URL: https://github.com/freeipa/freeipa/pull/284
Author: tomaskrizek
Title: #284: ipautil: check for open ports on all resolved IPs
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/284/head:pr284
git
URL: https://github.com/freeipa/freeipa/pull/285
Title: #285: Check the result of cert request in replica installer
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/pag
URL: https://github.com/freeipa/freeipa/pull/291
Title: #291: replica install: track the RA agent certificate again
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/pag
URL: https://github.com/freeipa/freeipa/pull/285
Title: #285: Check the result of cert request in replica installer
tomaskrizek commented:
"""
Functional ACK. If it's possible, it would be nice to have a bit more info in
the error msg as @mbasti-rh pointed out.
"&q
URL: https://github.com/freeipa/freeipa/pull/228
Title: #228: cert-request: allow directoryName in SAN extension
tomaskrizek commented:
"""
@frasertweedale Oh, I didn't realize the DN in SAN matches the LDAP DN, while
the Subject DN does not.
In that case, this PR makes
URL: https://github.com/freeipa/freeipa/pull/276
Author: tomaskrizek
Title: #276: replica-conncheck: improve error msg + logging
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/276/head:pr276
git checkout
URL: https://github.com/freeipa/freeipa/pull/267
Title: #267: ipa-replica-conncheck: do not close listening ports until required
tomaskrizek commented:
"""
I've created a separate [ticket](https://fedorahosted.org/freeipa/ticket/6522)
and PR #284 for the change discuss
URL: https://github.com/freeipa/freeipa/pull/284
Author: tomaskrizek
Title: #284: ipautil: check for open ports on all resolved IPs
Action: opened
PR body:
"""
When a hostname is provided to host_port_open, it should check if
ports are open for ALL IPs that are resolved fr
URL: https://github.com/freeipa/freeipa/pull/228
Title: #228: cert-request: allow directoryName in SAN extension
tomaskrizek commented:
"""
@frasertweedale Oh, I didn't realize the DN in SAN matches the LDAP DN, while
the Subject DN does not.
In that case, this PR makes
401 - 500 of 623 matches
Mail list logo