Bug 1381334

Summary: Keystone LDAP pagination with specified "page_size" fails
Product: Red Hat Enterprise Linux 7 Reporter: Aaron Thomas <aathomas>
Component: python-ldapAssignee: Christian Heimes <cheimes>
Status: CLOSED WONTFIX QA Contact: ipa-qe <ipa-qe>
Severity: high Docs Contact:
Priority: high    
Version: 7.1   
Target Milestone: rc   
Target Release: 7.1   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-12-15 07:46:46 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 1298243, 1420851    

Description Aaron Thomas 2016-10-03 18:00:28 UTC 
Description of problem:
-----------------------------------------
The API for using the LDAP simple paged results control changed
between python-ldap version 2.3 and 2.4. Our current implementation
fails with an AttributeError when trying to use paging with version
2.4 of python-ldap.

Cisco is experiencing this issue in their OpenStack OSP-5 on rhel 7 (Icehouse) environment on RHEL 7.1 that we are currently in a partnership. I've looked through the source / change logs and it doesn't appear the commits outlined below have been backported to 7.1 through 7.3.


Upstream bug #1381768 that is resolved by the commit below:

AttributeError: 'module' object has no attribute 'LDAP_CONTROL_PAGE_OID' with python-ldap 2.4
-----------------------------------------
https://bugs.launchpad.net/keystone/+bug/1381768


Commit that fixes bug #1381768:

Use newer python-ldap paging control API
-----------------------------------------
https://review.openstack.org/gitweb?p=openstack/keystone.git;a=commit;h=cbbd616f4d46277d231f74e699e2d547a492610e


Version-Release number of selected component (if applicable):
-----------------------------------------
python-ldap-2.4.15-2.el7.x86_64


How reproducible:
-----------------------------------------
100% in Cisco's environment


Steps to Reproduce:
1. Set page_size keystone.conf to a non-zero value


Actual results:
-----------------------------------------
Keystone LDAP pagination with specified "page_size" fails


Expected results:
-----------------------------------------
Keystone LDAP queries return paginated results


Additional info:
-----------------------------------------
Support case attached to BZ
Comment 3 RHEL Program Management 2020-12-15 07:46:46 UTC 
After evaluating this issue, there are no plans to address it further or fix it in an upcoming release.  Therefore, it is being closed.  If plans change such that this issue will be fixed in an upcoming release, then the bug can be reopened.