freeipa 4.3.90
When using https://github.com/freeipa/freeipa-tools/blob/master/create-test-data.py, it creates empty hostgroup like
dn: cn=hostgroup0,cn=hostgroups,cn=accounts,<SUFFIX> objectClass: ipahostgroup objectClass: ipaobject objectClass: nestedGroup objectClass: groupOfNames objectClass: top objectClass: mepOriginEntry ipaUniqueID: autogenerate cn: hostgroup0
When adding that group with ldapadd, we can see the following failure (err=20) in the logs
[28/Apr/2016:13:27:02 +0200] conn=Internal op=-1 MOD dn="cn=hostgroup0,cn=hostgroups,cn=accounts,<SUFFIX>" [28/Apr/2016:13:27:02 +0200] conn=Internal op=-1 SRCH base="cn=hostgroup0,cn=hostgroups,cn=accounts,<SUFFIX>" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL [28/Apr/2016:13:27:02 +0200] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0.000000 [28/Apr/2016:13:27:02 +0200] conn=Internal op=-1 RESULT err=20 tag=48 nentries=0 etime=0.000000 [28/Apr/2016:13:27:02 +0200] conn=Internal op=-1 MOD dn="cn=hostgroup0,cn=hostgroups,cn=accounts,<SUFFIX>" [28/Apr/2016:13:27:02 +0200] conn=Internal op=-1 SRCH base="cn=hostgroup0,cn=hostgroups,cn=accounts,<SUFFIX>" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL [28/Apr/2016:13:27:02 +0200] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0.000000 [28/Apr/2016:13:27:02 +0200] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0.000000
It is possible that it is triggered by mep plugin trying to update 'mepManagedEntry' alt networkgroup. error is LDAP_TYPE_OR_VALUE_EXISTS that can be a replaced valueset containing duplicated value.
This bug seems to have no major functional or performance impact
deferring because, per triage: No functional impact I noticed but needs to be confirmed. It is looking like the first failing MOD was successfully replayed.
Metadata Update from @tbordaz: - Issue assigned to someone - Issue set to the milestone: Ticket Backlog
Login to comment on this ticket.