Bug 35506 – locking fails if cn=ATTRIBUTE_NAME,cn=temporary,cn=univention is not readable

Bug 35506 - locking fails if cn=ATTRIBUTE_NAME,cn=temporary,cn=univention is not readable


Summary:	locking fails if cn=ATTRIBUTE_NAME,cn=temporary,cn=univention is not readable

Status:	RESOLVED WONTFIX

Product:	UCS
Classification:	Unclassified
Component:	UDM (Generic)
Version:	UCS 4.2
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	UCS 3.x
Assigned To:	UMC maintainers
QA Contact:

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2014-07-29 10:59 CEST by Florian Best
Modified:	2020-07-03 20:51 CEST (History)
CC List:	2 users (show)

See Also:	42379
What kind of report is it?:	Bug Report
What type of bug is this?:	2: Improvement: Would be a product improvement
Who will be affected by this bug?:	1: Will affect a very few installed domains
How will those affected feel about the bug?:	2: A Pain – users won’t like this once they notice it
User Pain:	0.023
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):	Error handling
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Florian Best

2014-07-29 10:59:10 CEST

The locking mechanism could create the necessary container cn=ATTRIBUTE_NAME,cn=temporary,cn=univention if it does not exists.

36856 29.07.14 08:11:21.223  ADMIN       ( INFO    ) : LOCK univention.admin.locking.lock scope = base
36857 29.07.14 08:11:21.224  ADMIN       ( INFO    ) : Traceback (most recent call last):
36862   File "/usr/lib/pymodules/python2.6/univention/admin/hooks.d/.py", line 62, in lock
36863     value = request(module.lo, module.position, MAP_NAME, value=value)
36864   File "/usr/lib/pymodules/python2.6/univention/admin/allocators.py", line 169, in request
36865     return acquireUnique(lo, position, type, value, _type2attr[type], scope = _type2scope[type])
36866   File "/usr/lib/pymodules/python2.6/univention/admin/allocators.py", line 158, in acquireUnique
36867     univention.admin.locking.lock(lo, position, type, value, scope=scope)
36868   File "/usr/lib/pymodules/python2.6/univention/admin/locking.py", line 66, in lock
36869     lo.add(dn, al, exceptions=0)
36870   File "/usr/lib/pymodules/python2.6/univention/admin/uldap.py", line 398, in add
36871     raise univention.admin.uexceptions.ldapError, _err2str(msg)
36872 ldapError: No such object

Comment 1 Florian Best

2014-07-29 10:59:50 CEST

locking mechanism means univention.admin.allocators.request()

Comment 2 Florian Best

2016-09-23 11:50:14 CEST

If I remeberes this some days ago... This is a simple adaption to Bug #42379.

We should not create the container (because this happens probably only when the ACL's deny read access) but we should handle this error appropriatly with a nice error message.

Comment 3 Ingo Steuwer

2020-07-03 20:51:39 CEST

This issue has been filed against UCS 4.2.

UCS 4.2 is out of maintenance and many UCS components have changed in later releases. Thus, this issue is now being closed.

If this issue still occurs in newer UCS versions, please use "Clone this bug" or reopen it and update the UCS version. In this case please provide detailed information on how this issue is affecting you.