Issue #7213: Increase dbus client timeouts during CA install - freeipa

freeipa

#7213 Increase dbus client timeouts during CA install

Closed: fixed 6 years ago Opened 6 years ago by zultron.

In FreeIPA 4.5 and 4.6, the ipa-server-install program can fail during the "Configuring certificate server (pki-tomcatd)" stage on a heavily-loaded host.

The dogtag service is memory intensive, and on a memory-constrained system, can be unresponsive right after start-up, especially for expensive operations that generate new certificates.

These delays can cause failures when dbus clients time out while attempting to run
new certificate operations through certmonger. This patch changes dbus client timeouts for some such operations to 120 seconds (from the default 25 seconds).

There is a github PR #1078 that fixes this problem, as well as quite a bit of discussion.

Metadata Update from @tkrizek:
- Issue priority set to: normal
- Issue set to the milestone: FreeIPA 4.6.2

6 years ago

tkrizek commented 6 years ago

master:

a2dea5a Increase dbus client timeouts during CA install

tdudlak commented 6 years ago

ipa-4-6:

7881d6d Increase dbus client timeouts during CA install

Metadata Update from @tdudlak:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

6 years ago

Metadata

Assignee

None

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.6.2

None

affects_doc

None

source

None

knownissue

None

type

None

blockedby

None

test_case

None

component

None

blocking

None

on_review

None

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

None

tester

None

changelog

None

design

None

freeipa

Source Code

#7213 Increase dbus client timeouts during CA install Closed: fixed 6 years ago Opened 6 years ago by zultron.

Metadata

#7213 Increase dbus client timeouts during CA install

Closed: fixed 6 years ago Opened 6 years ago by zultron.