New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ipaserver,ipareplica: Add random_serial_numbers to options #852
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is only usable with FreeIPA 4.10+, and will never be back-ported to previous versions.
Is it possible to check the version that will be deployed? Will it fail if the flag is not supported?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
With this patch, downstream tests are working fine.
This is only the hot fix to get the roles working with 4.10. |
With the support for Random Serial Numbers v3 in FreeIPA 4.10, the attribute random_serial_numbers has been added to the installer options. options._random_serial_numbers is generated by ca.install_check and later used by ca.install in the _setup_ca module. ca.install_check is using options.random_serial_numbers and generating options._random_serial_numbers which is later used by ca.install in ca.install the _setup_ca module. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=2103928 https://bugzilla.redhat.com/show_bug.cgi?id=2103924
The variables in options are passed internally and they will not affect older IPA versions as options.random_serial_numbers and options._random_serial_numbers are simply not used. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm.
With the support for Random Serial Numbers v3 in FreeIPA 4.10, the
attribute random_serial_numbers has been added to the installer options.
ca.install_check is using options.random_serial_numbers and setting
setting options._random_serial_numbers, which needs to be passed to
the setup_ca task.
Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=2103928
https://bugzilla.redhat.com/show_bug.cgi?id=2103924