https://bugzilla.redhat.com/show_bug.cgi?id=864013 (Red Hat Enterprise Linux 6)
Description of problem: nsslapd-pluginEnabled attribute present in plugin configuration determines whether plugin is enabled or not. This attribute seems to be multivalued - so it is possible to add new value that contradicts original one. Version-Release number of selected component (if applicable): How reproducible: always Steps to Reproduce: ldapmodify ....<<EOF dn: cn=PAM Pass Through Auth,cn=plugins,cn=config changetype: modify add: nsslapd-pluginEnabled nsslapd-pluginEnabled: on EOF ldapsearch ... -b "cn=PAM Pass Through Auth,cn=plugins,cn=config" nsslapd-pluginEnabled dn: cn=PAM Pass Through Auth,cn=plugins,cn=config nsslapd-pluginEnabled: on nsslapd-pluginEnabled: off Actual results: Succceeds and plugin is both enabled and disabled. Expected results: Should fail. Additional info: This problem seems to be present for all plugins, not just PAM PTA plugin.
nsDS5ReplicaBindDN needs to be multi-valued. In a replication agreement, it is single valued, but in a replica definition (cn=replica) it can be multi-valued. This allows you to specify several different bind DNs that can update a replica.
revision 0001-Ticket-486-nsslapd-enablePlugin-should-not-be-multiv.patch
git merge ticket486 Updating 4d522d3..70117a1 Fast-forward ldap/schema/01core389.ldif | 32 ++++++++++++++++---------------- 1 files changed, 16 insertions(+), 16 deletions(-)
[mareynol@localhost plugins]$ git push origin master Counting objects: 9, done. Delta compression using up to 4 threads. Compressing objects: 100% (5/5), done. Writing objects: 100% (5/5), 740 bytes, done. Total 5 (delta 4), reused 0 (delta 0) To ssh://git.fedorahosted.org/git/389/ds.git 4d522d3..70117a1 master -> master [mareynol@localhost plugins]$ [mareynol@localhost plugins]$ [mareynol@localhost plugins]$ git checkout 389-ds-base-1.2.11 Switched to branch '389-ds-base-1.2.11' [mareynol@localhost plugins]$ git cherry-pick -x master Finished one cherry-pick. [389-ds-base-1.2.11 283561b] Ticket 486 - nsslapd-enablePlugin should not be multivalued 1 files changed, 16 insertions(+), 16 deletions(-)
[mareynol@localhost plugins]$ git push origin 389-ds-base-1.2.11 Counting objects: 9, done. Delta compression using up to 4 threads. Compressing objects: 100% (5/5), done. Writing objects: 100% (5/5), 786 bytes, done. Total 5 (delta 4), reused 0 (delta 0) To ssh://git.fedorahosted.org/git/389/ds.git 7890e21..283561b 389-ds-base-1.2.11 -> 389-ds-base-1.2.11
Metadata Update from @mreynolds: - Issue assigned to mreynolds - Issue set to the milestone: 1.3.0
389-ds-base is moving from Pagure to Github. This means that new issues and pull requests will be accepted only in 389-ds-base's github repository.
This issue has been cloned to Github and is available here: - https://github.com/389ds/389-ds-base/issues/486
If you want to receive further updates on the issue, please navigate to the github issue and click on subscribe button.
subscribe
Thank you for understanding. We apologize for all inconvenience.
Metadata Update from @spichugi: - Issue close_status updated to: wontfix (was: Fixed)
Login to comment on this ticket.