[Freeipa-devel] [Test][patch-0053] Forced-client-reenrollment test fixed.

Oleg Fayans ofayans at redhat.com
Tue Jul 26 13:34:54 UTC 2016 

Hi Martin,

The patch was updated according to your suggestions. A separate patch 
removing outdated tests is attached.

On 07/08/2016 02:10 PM, Martin Basti wrote:
>
>
> On 07.07.2016 08:09, Oleg Fayans wrote:
>> Updated version of the patch is attached with the failing tests marked
>> as xfailed (let's make the jenkins green).
>>
>> On 07/04/2016 10:50 PM, Oleg Fayans wrote:
>>> 2 out of 7 tests currently fail due to a known issue [1], others pass.
>>>
>>> [1] https://fedorahosted.org/freeipa/ticket/6029
>>>
>>>
>>>
>>>
>>
>>
>>
> This is wrong:
>
> 1)
> you are not getting SSHFP records, just SSH public key (with your changes)
>
> 2)
> you are using host-find without any arguments, so it will returns SSH
> key for all hosts, the code before was getting SSHFP only for one host.
> Would be better to use host-show?
>
> 3)
> you actually found a bug, because host-find and host-show should print
> only SSH fingerprints not SSH keys
> https://fedorahosted.org/freeipa/ticket/6042
> https://fedorahosted.org/freeipa/ticket/6043
>
> 4)
> don't call it SSHFP records in code, because it is not DNS related,
> probably you want to get SSH fingerprints instead of SSH keys
>
> 5)
> It may contain multiple SSH keys, you always return only the first (the
> original code returns all values)
>
>      def get_sshfp_record(self):
> -        sshfp_record = ''
> -        client_host = self.clients[0].hostname.split('.')[0]
> -
>           result = self.master.run_command(
> -            ['ipa', 'dnsrecord-show', self.master.domain.name, client_host]
> +            ['ipa', 'host-find']
>           )
> -
> -        lines = result.stdout_text.splitlines()
> -        for line in lines:
> -            if 'SSHFP record:' in line:
> -                sshfp_record = line.replace('SSHFP record:', '').strip()
> -
> -        assert sshfp_record, 'SSHFP record not found'
> -
> -        sshfp_record = set(sshfp_record.split(', '))
> -        self.log.debug("SSHFP record for host %s: %s", client_host,
> str(sshfp_record))
> -
> -        return sshfp_record
> +        records = result.stdout_text.split('\n\n')
> +        sshkey_re = re.compile('.+SSH public key: ssh-\w+ (\S+?),.+')
> +        for hostrecord in records:
> +            if self.clients[0].hostname in hostrecord:
> +                sshfps = sshkey_re.findall(hostrecord)
> +                assert sshfps, 'SSHFP record not found'
> +                sshfp = sshfps[0]
> +        return sshfp
>
>

-- 
Oleg Fayans
Quality Engineer
FreeIPA team
RedHat.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-ofayans-0053-Removed-outdated-reenrollment-tests.patch
Type: text/x-patch
Size: 2731 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20160726/e32a3748/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-ofayans-0054-Updated-forced_client_reenrollment-test.patch
Type: text/x-patch
Size: 6868 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20160726/e32a3748/attachment-0001.bin>

More information about the Freeipa-devel mailing list