#486 nsslapd-enablePlugin should not be multivalued
Closed: wontfix None Opened 8 years ago by rmeggins.

https://bugzilla.redhat.com/show_bug.cgi?id=864013 (Red Hat Enterprise Linux 6)

Description of problem:

nsslapd-pluginEnabled attribute present in plugin configuration determines
whether plugin is enabled or not. This attribute seems to be multivalued - so
it is possible to add new value that contradicts original one.

Version-Release number of selected component (if applicable):


How reproducible:
always

Steps to Reproduce:
ldapmodify ....<<EOF
dn: cn=PAM Pass Through Auth,cn=plugins,cn=config
changetype: modify
add: nsslapd-pluginEnabled
nsslapd-pluginEnabled: on
EOF

ldapsearch ... -b "cn=PAM Pass Through Auth,cn=plugins,cn=config"
nsslapd-pluginEnabled
dn: cn=PAM Pass Through Auth,cn=plugins,cn=config
nsslapd-pluginEnabled: on
nsslapd-pluginEnabled: off


Actual results:
Succceeds and plugin is both enabled and disabled.


Expected results:
Should fail.


Additional info:
This problem seems to be present for all plugins, not just PAM PTA plugin.

nsDS5ReplicaBindDN needs to be multi-valued. In a replication agreement, it is single valued, but in a replica definition (cn=replica) it can be multi-valued. This allows you to specify several different bind DNs that can update a replica.

git merge ticket486
Updating 4d522d3..70117a1
Fast-forward
ldap/schema/01core389.ldif | 32 ++++++++++++++++----------------
1 files changed, 16 insertions(+), 16 deletions(-)

[mareynol@localhost plugins]$ git push origin master
Counting objects: 9, done.
Delta compression using up to 4 threads.
Compressing objects: 100% (5/5), done.
Writing objects: 100% (5/5), 740 bytes, done.
Total 5 (delta 4), reused 0 (delta 0)
To ssh://git.fedorahosted.org/git/389/ds.git
4d522d3..70117a1 master -> master
[mareynol@localhost plugins]$
[mareynol@localhost plugins]$
[mareynol@localhost plugins]$ git checkout 389-ds-base-1.2.11
Switched to branch '389-ds-base-1.2.11'
[mareynol@localhost plugins]$ git cherry-pick -x master
Finished one cherry-pick.
[389-ds-base-1.2.11 283561b] Ticket 486 - nsslapd-enablePlugin should not be multivalued
1 files changed, 16 insertions(+), 16 deletions(-)

[mareynol@localhost plugins]$ git push origin 389-ds-base-1.2.11
Counting objects: 9, done.
Delta compression using up to 4 threads.
Compressing objects: 100% (5/5), done.
Writing objects: 100% (5/5), 786 bytes, done.
Total 5 (delta 4), reused 0 (delta 0)
To ssh://git.fedorahosted.org/git/389/ds.git
7890e21..283561b 389-ds-base-1.2.11 -> 389-ds-base-1.2.11

Metadata Update from @mreynolds:
- Issue assigned to mreynolds
- Issue set to the milestone: 1.3.0

4 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/486

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix (was: Fixed)

a year ago

Login to comment on this ticket.

Metadata