Wednesday, November 20, 2024

[Test-Announce]Fedora 42 Rawhide 20241120.n.0 nightly compose nominated for testing

Announcing the creation of a new nightly release validation test event
for Fedora 42 Rawhide 20241120.n.0. Please help run some tests for this
nightly compose if you have time. For more information on nightly
release validation testing, see:
https://fedoraproject.org/wiki/QA:Release_validation_test_plan

Notable package version changes:
pungi - 20241117.n.0: pungi-4.7.0-6.fc42.src, 20241120.n.0: pungi-4.7.0-8.fc42.src

Test coverage information for the current release can be seen at:
https://openqa.fedoraproject.org/testcase_stats/42

You can see all results, find testing instructions and image download
locations, and enter results on the Summary page:

https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241120.n.0_Summary

The individual test result pages are:

https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241120.n.0_Installation
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241120.n.0_Base
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241120.n.0_Server
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241120.n.0_Cloud
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241120.n.0_Desktop
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241120.n.0_Security_Lab

Thank you for testing!
--
Mail generated by relvalconsumer: https://pagure.io/fedora-qa/relvalconsumer
--
_______________________________________________
test-announce mailing list -- test-announce@lists.fedoraproject.org
To unsubscribe send an email to test-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/test-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Monday, November 18, 2024

Planned Outage - Server update/reboots - 2024-11-20 21:00 UTC

Planned Outage - Server update/reboots - 2024-11-20 21:00 UTC

There will be an outage starting at 2024-11-20 21:00 UTC,
which will last approximately 5 hours.

To convert UTC to your local time, take a look at
http://fedoraproject.org/wiki/Infrastructure/UTCHowto
or run:

date -d '2024-11-20 21:00 UTC'

Reason for outage:

We will be updating and rebooting servers to pick up the recent
RHEL 9.5 release as well as to move a number of instances to
Fedora 41 (including hopefully builders/koji hubs)

Affected Services:

Most maintainer / contributor services will be affected for some short windows during the outage.
Package maintainers are advised to wait for the outage to be over to launch any builds.

Ticket Link:

https://pagure.io/fedora-infrastructure/issue/12293

Please join #admin:fedoraproject.org / #noc:fedoraproject.org on matrix.
Please add comments to the ticket for this outage above.

Updated status for this outage may be available at
https://www.fedorastatus.org/

[fedora-arm] [Fedocal] Reminder meeting : Fedora ARM & AArch64 status meeting

Dear all,

You are kindly invited to the meeting:
Fedora ARM & AArch64 status meeting on 2024-11-19 from 15:00:00 to 16:00:00 UTC

The meeting will be about:
Fedora ARM & AArch64 weekly status meeting.

Join us on Matrix at [https://matrix.to/#/#meeting-2:fedoraproject.org](https://matrix.to/#/#meeting-2:fedoraproject.org) through [chat.fedoraproject.org](through chat.fedoraproject.org).

More information available at:
[https://fedoraproject.org/wiki/Architectures/ARM](https://fedoraproject.org/wiki/Architectures/ARM)


Source: https://calendar.fedoraproject.org//meeting/10455/

--
_______________________________________________
arm mailing list -- arm@lists.fedoraproject.org
To unsubscribe send an email to arm-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/arm@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Sunday, November 17, 2024

[Test-Announce]Fedora 42 Rawhide 20241117.n.0 nightly compose nominated for testing

Announcing the creation of a new nightly release validation test event
for Fedora 42 Rawhide 20241117.n.0. Please help run some tests for this
nightly compose if you have time. For more information on nightly
release validation testing, see:
https://fedoraproject.org/wiki/QA:Release_validation_test_plan

Notable package version changes:
pungi - 20241114.n.0: pungi-4.7.0-5.fc42.src, 20241117.n.0: pungi-4.7.0-6.fc42.src

Test coverage information for the current release can be seen at:
https://openqa.fedoraproject.org/testcase_stats/42

You can see all results, find testing instructions and image download
locations, and enter results on the Summary page:

https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241117.n.0_Summary

The individual test result pages are:

https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241117.n.0_Installation
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241117.n.0_Base
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241117.n.0_Server
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241117.n.0_Cloud
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241117.n.0_Desktop
https://fedoraproject.org/wiki/Test_Results:Fedora_42_Rawhide_20241117.n.0_Security_Lab

Thank you for testing!
--
Mail generated by relvalconsumer: https://pagure.io/fedora-qa/relvalconsumer
--
_______________________________________________
test-announce mailing list -- test-announce@lists.fedoraproject.org
To unsubscribe send an email to test-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/test-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Friday, November 15, 2024

[389-users] Re: root groups

thanks for replying, it turns out this is an artifact of sssd not
passing the root queries along to ldap. not an oddity with 389ds

On Thu, Nov 14, 2024 at 7:53 PM William Brown <wbrown@suse.de> wrote:
>
> What's in your /etc/nsswitch.conf?
>
> > On 15 Nov 2024, at 02:20, Michael DiDomenico via 389-users <389-users@lists.fedoraproject.org> wrote:
> >
> > is there a restriction on what groups 389ds will return for user root?
> > my ldap tree is working fine, all the normal users seem to be in the
> > right groups as returned by getent/id, but when i query root it
> > doesn't return any group info. a google search didn't pull anything
> > immediately relevant, but i'm still looking
> >
> > thanks
> > --
> > _______________________________________________
> > 389-users mailing list -- 389-users@lists.fedoraproject.org
> > To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
> > Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
> > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> > List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
> > Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
>
> --
> Sincerely,
>
> William Brown
>
> Senior Software Engineer,
> Identity and Access Management
> SUSE Labs, Australia
>
--
_______________________________________________
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Thursday, November 14, 2024

[389-users] Re: Setting Up 389 DS Nodes for HAProxy Behind F5 Load Balancers

Hi Trevor,
Okay, I see... It's the multi-valued config bug, and it actually affected the `dsconf config add`.

So, as of now, you need to use ldapmodify command and do the modification in the same LDAP transaction:

  dn: cn=config
  changetype: modify
  add: nsslapd-haproxy-trusted-ip
  nsslapd-haproxy-trusted-ip: 192.168.0.1 
  -
  add: nsslapd-haproxy-trusted-ip
  nsslapd-haproxy-trusted-ip: 192.168.0.2
  -
  add: nsslapd-haproxy-trusted-ip
  nsslapd-haproxy-trusted-ip: 192.168.0.3

This way, it will persist after the restart.
We'll be working on the fix in the meantime.

Regards,
Simon

On Sat, Nov 9, 2024 at 4:04 PM Trevor Fong <tjfong@gmail.com> wrote:
Hi Simon,

I've added 8 different nsslapd-haproxy-trusted-ip entries to all the nodes in my dev cluster (each being a potential upstream loadbalancer/snat pool node - trying to provide for the different envs the nodes might end up being deployed to in actual use), but after restarting dirsrv.target, most of them get removed somehow.  The entries that remain seem to be the loadbalancer nodes healthchecking the dirsrv node.  Does this behaviour sound right to you?

eg:

# ldapsearch -H ldap://localhost  -x -D "cn=Directory Manager" -W -b "cn=config" -s base -a always "(objectClass=*)" nsslapd-haproxy-trusted-ip -LLL
Enter LDAP Password:
dn: cn=config
nsslapd-haproxy-trusted-ip: 10.x.x.1
nsslapd-haproxy-trusted-ip: 10.x.x.2
nsslapd-haproxy-trusted-ip: 10.x.x.3
nsslapd-haproxy-trusted-ip: 10.x.x.14
nsslapd-haproxy-trusted-ip: 10.x.x.11
nsslapd-haproxy-trusted-ip: 10.x.x.15
nsslapd-haproxy-trusted-ip: 10.x.x.13
nsslapd-haproxy-trusted-ip: 10.x.x.12

[root@eldap-s-van-01 log] 16:02:07
# systemctl restart dirsrv.target
[root@eldap-s-van-01 log] 16:02:31
# ldapsearch -H ldap://localhost  -x -D "cn=Directory Manager" -W -b "cn=config" -s base -a always "(objectClass=*)" nsslapd-haproxy-trusted-ip -LLL
Enter LDAP Password:
dn: cn=config
nsslapd-haproxy-trusted-ip: 10.19.170.13
nsslapd-haproxy-trusted-ip: 10.19.170.14

Thanks,
Trev

On Sat, 9 Nov 2024 at 15:57, Trevor Fong <tjfong@gmail.com> wrote:
Hi Simon,

Thanks for the answer - dsconf worked for me. 
I was trying to add new values of nsslapd-haproxy-trusted-ip using Apache Directory Studio.  It seemed to be behaving idiosyncratically and it didn't seem to be adding them, but rather overwriting the previous value.  But doing an ldapsearch thereafter showed that it was actually being added as a multi-valued attribute, with multiple entries of nsslapd-haproxy-trusted-ip.  I guess ADS works a little funkily for nsslapd-haproxy-trusted-ip?
Going forward, I'll use dsconf to manage this attribute.

Thanks,
Trev

On Sat, 9 Nov 2024 at 08:29, Simon Pichugin <spichugi@redhat.com> wrote:
Hi Trevor,
The easiest way will be to use the dsconf command and run the dsconf add a few times (and do separate delete commands if needed).

  dsconf instance config add nsslapd-haproxy-trusted-ip=192.168.0.1 
  dsconf instance config add nsslapd-haproxy-trusted-ip=192.168.0.2
  dsconf instance config add nsslapd-haproxy-trusted-ip=192.168.0.3
  dsconf instance config delete nsslapd-haproxy-trusted-ip=192.168.0.2 
  dsconf instance config add nsslapd-haproxy-trusted-ip=192.168.0.4

Another way will be to use ldapmodify command and do the modification in the same LDAP transaction:

  dn: cn=config
  changetype: modify
  add: nsslapd-haproxy-trusted-ip
  nsslapd-haproxy-trusted-ip: 192.168.0.1 
  -
  add: nsslapd-haproxy-trusted-ip
  nsslapd-haproxy-trusted-ip: 192.168.0.2
  -
  add: nsslapd-haproxy-trusted-ip
  nsslapd-haproxy-trusted-ip: 192.168.0.3

Sorry if it's a bit inconvenient. We have plans to improve the cn=config handling logic for multivalued attributes.

Regards,
Simon
 

On Fri, Nov 8, 2024 at 3:43 PM Trevor Fong via 389-users <389-users@lists.fedoraproject.org> wrote:
Hi There,

I'm trying to set up 389 DS nodes (2.4.5) for to use the Proxy protocol for HAProxy load-balancing behind F5 load-balancers.  


The Red Hat docs say "the nsslapd-haproxy-trusted-ip attribute configures the list of trusted proxy servers."  I have at least 5 IP's I would need the 389 DS nodes to trust, but nsslapd-haproxy-trusted-ip does not want to accept a CIDR nor does it seem to accept multiple values.  It also doesn't want to accept a comma delimited list of IP's.  

Does anyone know the correct syntax/setup for multiple HAProxy trusted IP's?
Are there any further docs available?

Thanks,
Trev
--
_______________________________________________
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Re: Xfce 4.20 for F42/Rawhide?

On 11/13/24 19:30, Kevin Fenzi wrote:
>>>
>>> I have made the change page -
>>>
>>> https://fedoraproject.org/wiki/Changes/Xfce-4.20
>>>
>>> Any comments on the content? If there are no comments, I will set the
>>> category to "ChangeReadyForWrangler" and move forward.
>>>
>>
>> Looks good to me to send it for wrangling. :)
>
> Some minor nitpicks:
>
> * Might mention the roadmap / dates from https://wiki.xfce.org/releng/4.20/roadmap
> * Might mention the pre1 blog post:
> https://alexxcons.github.io/blogpost_11.html
>
> Otherwise looks great to me!
>
> kevin
>

Thanks for the feedback Neal and Kevin.

I have added the links and sent it to the wrangler.

Mukundan.
--
_______________________________________________
xfce mailing list -- xfce@lists.fedoraproject.org
To unsubscribe send an email to xfce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/xfce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue