Bug 1482802
| Summary: | Unable to set ca renewal master on replica | ||||||
|---|---|---|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 7 | Reporter: | Abhijeet Kasurde <akasurde> | ||||
| Component: | ipa | Assignee: | IPA Maintainers <ipa-maint> | ||||
| Status: | CLOSED ERRATA | QA Contact: | Michal Reznik <mreznik> | ||||
| Severity: | high | Docs Contact: | |||||
| Priority: | high | ||||||
| Version: | 7.4 | CC: | frenaud, ksiddiqu, mreznik, pasik, pvoborni, rcritten, slaznick, tscherf | ||||
| Target Milestone: | rc | Keywords: | Regression, ZStream | ||||
| Target Release: | --- | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | ipa-4.5.0-21.el7.2 | Doc Type: | If docs needed, set a value | ||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | |||||||
| : | 1489299 1489300 (view as bug list) | Environment: | |||||
| Last Closed: | 2018-04-10 16:43:55 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Bug Depends On: | |||||||
| Bug Blocks: | 1489299, 1489300 | ||||||
| Attachments: |
|
||||||
|
Description
Abhijeet Kasurde
2017-08-18 06:40:16 UTC
In ipaserver/servroles.py, l 421:
class SingleValuedServerAttribute(ServerAttribute):
"""
Base class for server attributes that are forced to be single valued
this means that `get` method will return a one-element list, and `set`
method will accept only one-element list
"""
def set(self, api_instance, masters):
if len(masters) > 1:
raise errors.ValidationError(
name=self.attr_name,
error=_("must be enabled only on a single master"))
The issue is that the set() method is called with masters = a unicode, and len(masters) returns the length of the string, not the number of elements in a list.
Probably a regression introduced with commit bddb90f38a3505a2768862d2f814c5e749a7dcde Allow for multivalued server attributes Upstream ticket: https://pagure.io/freeipa/issue/7120 Fixed upstream master: https://pagure.io/freeipa/c/a077c705fe211716e967faf7a12ed738bc5261e9 ipa-4-6: https://pagure.io/freeipa/c/5f79504d3dc29891802c6d7eeaa465c298b7e417 ipa-4-5: https://pagure.io/freeipa/c/770fb59637affc22c76256478b53bbe831b3ec88 Verified on ipa-server-4.5.4-6.el7.x86_64 Created attachment 1364705 [details]
verification_steps
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2018:0918 |