You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by Shawn McKinney <sm...@apache.org> on 2018/07/15 21:08:54 UTC
[VOTE] Apache Fortress 2.0.1 release, Take 2
Hello,
This is an announcement to vote for the next release of Apache Directory Fortress.
The version, 2.0.1, has a tag created for git: ‘2.0.1’.
and the sources may be pulled using git commands:
git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-core.git
git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-realm.git
git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-enmasse.git
git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-commander.git
with their associated checksums:
- core: 073b97920a0f33db6053ad773d1ffcedf3f1bee2
- realm: 8e9447739c97245cecccc9850066528c3e515c04
- rest: c4b601163360d93b83837110f806d81da3da5bff
- web: 98976bd224a23a07415150787d9697cc73c6c1b7
Or, source distros may be downloaded from SVN:
- https://dist.apache.org/repos/dist/dev/directory/fortress/2.0.1/
Or, source distros may be downloaded from this location:
- http://home.apache.org/~smckinney/
The staging repo on Nexus:
- https://repository.apache.org/content/repositories/orgapachedirectory-1170
Test using one of these:
* https://github.com/apache/directory-fortress-core/blob/master/README-QUICKSTART-DOCKER-APACHEDS.md
* https://github.com/apache/directory-fortress-core/blob/master/README-QUICKSTART-APACHEDS.md
* https://github.com/apache/directory-fortress-core/blob/master/README-QUICKSTART-DOCKER-SLAPD.md
* https://github.com/apache/directory-fortress-core/blob/master/README-QUICKSTART-SLAPD.md
- Choose one of the above. Complete (only) the sections leading up to and including the SECTION entitled: 'Apache Fortress Core Integration Test’
- Choose the docker quickstart & save time. Won't have to install an LDAP server for the integration tests.
2.0.1 includes:
* Update to use Apache LDAP API v1.0.2
* FC-235 Add support for runtime constraints to be placed on activated roles
* FC-102 [fortress-web] fix problems with group page
* FC-108 Add support for RFC2307 BIS
* FC-217 Option to disable role occupants
* FC-226 ehcache masking security exceptions
* FC-227 Exclude xml-apis from LDAP api
* FC-228 [fortress-rest] CVE-2017-12624: Apache CXF web services that process attachments are vulnerable to Denial of Service (DoS) attacks
* FC-233 [FORTRESS-REST] Upgrade to Spring 5 and latest CXF
* FC-232 [fortress-web] to Spring 5 and Wicket 7.9
* The complete list from JIRA: https://issues.apache.org/jira/browse/FC-232?jql=project%20%3D%2012315921%20AND%20fixVersion%20%3D%2012338782%20ORDER%20BY%20priority%20DESC%2C%20key%20ASC
Please vote:
[ ] +1 | Release Fortress core, realm, rest and web 2.0.1
[ ] +/-0 | Abstain
[ ] -1 | Do *NOT* Release Fortress core, realm, rest and web 2.0.1
[Result][VOTE] Apache Fortress 2.0.1 release, Take 2
Posted by Shawn McKinney <sm...@apache.org>.
Calling it with +3 for, Colm, Emmanuel and myself. Stefan’s earlier +1 doesn’t count here (it was on the 1st take), but perhaps provides extra assurances we’re in the good.
Thanks for the help, I’ll be finishing up with the needful over the w/e.
Shawn
> On Jul 18, 2018, at 6:56 AM, Shawn McKinney <sm...@apache.org> wrote:
>
>
>> On Jul 17, 2018, at 11:33 AM, Colm O hEigeartaigh <co...@apache.org> wrote:
>>
>> +1. The NOTICE files could be updated to change 2016 to 2018.
>>
>
> Done. And thanks Colm.
>
> — Shawn
Re: [VOTE] Apache Fortress 2.0.1 release, Take 2
Posted by Shawn McKinney <sm...@apache.org>.
> On Jul 17, 2018, at 11:33 AM, Colm O hEigeartaigh <co...@apache.org> wrote:
>
> +1. The NOTICE files could be updated to change 2016 to 2018.
>
Done. And thanks Colm.
— Shawn
Re: [VOTE] Apache Fortress 2.0.1 release, Take 2
Posted by Colm O hEigeartaigh <co...@apache.org>.
+1. The NOTICE files could be updated to change 2016 to 2018.
Colm.
On Mon, Jul 16, 2018 at 10:12 PM, Emmanuel Lécharny <el...@gmail.com>
wrote:
> My +1
>
> - Tested the sources
> - Tested the dist packages
> - Checked the signatures (ftr, the
> fortress-realm-2.0.1-source-release.zip.asc file is missing)
> - Tested against ApacheDS
> - Checked the N&L files
>
> Two last remarks:
> * Shawn, your GPG Key is not trusted. It would be useful to have it
> signed by trusted people.
> * It would be a good idea to generate SHA 256 and SHA 512 signatures and
> push them in dist. I have a script that does that if needed.
>
> Many thanks !
>
>
> Le 15/07/2018 à 23:08, Shawn McKinney a écrit :
> > Hello,
> >
> > This is an announcement to vote for the next release of Apache Directory
> Fortress.
> >
> > The version, 2.0.1, has a tag created for git: ‘2.0.1’.
> >
> > and the sources may be pulled using git commands:
> > git clone --branch 2.0.1 https://git-wip-us.apache.org/
> repos/asf/directory-fortress-core.git
> > git clone --branch 2.0.1 https://git-wip-us.apache.org/
> repos/asf/directory-fortress-realm.git
> > git clone --branch 2.0.1 https://git-wip-us.apache.org/
> repos/asf/directory-fortress-enmasse.git
> > git clone --branch 2.0.1 https://git-wip-us.apache.org/
> repos/asf/directory-fortress-commander.git
> >
> > with their associated checksums:
> > - core: 073b97920a0f33db6053ad773d1ffcedf3f1bee2
> > - realm: 8e9447739c97245cecccc9850066528c3e515c04
> > - rest: c4b601163360d93b83837110f806d81da3da5bff
> > - web: 98976bd224a23a07415150787d9697cc73c6c1b7
> >
> > Or, source distros may be downloaded from SVN:
> > - https://dist.apache.org/repos/dist/dev/directory/fortress/2.0.1/
> >
> > Or, source distros may be downloaded from this location:
> > - http://home.apache.org/~smckinney/
> >
> > The staging repo on Nexus:
> > - https://repository.apache.org/content/repositories/
> orgapachedirectory-1170
> >
> > Test using one of these:
> > * https://github.com/apache/directory-fortress-core/blob/
> master/README-QUICKSTART-DOCKER-APACHEDS.md
> > * https://github.com/apache/directory-fortress-core/blob/
> master/README-QUICKSTART-APACHEDS.md
> > * https://github.com/apache/directory-fortress-core/blob/
> master/README-QUICKSTART-DOCKER-SLAPD.md
> > * https://github.com/apache/directory-fortress-core/blob/
> master/README-QUICKSTART-SLAPD.md
> >
> > - Choose one of the above. Complete (only) the sections leading up to
> and including the SECTION entitled: 'Apache Fortress Core Integration Test’
> > - Choose the docker quickstart & save time. Won't have to install an
> LDAP server for the integration tests.
> >
> > 2.0.1 includes:
> > * Update to use Apache LDAP API v1.0.2
> > * FC-235 Add support for runtime constraints to be placed on activated
> roles
> > * FC-102 [fortress-web] fix problems with group page
> > * FC-108 Add support for RFC2307 BIS
> > * FC-217 Option to disable role occupants
> > * FC-226 ehcache masking security exceptions
> > * FC-227 Exclude xml-apis from LDAP api
> > * FC-228 [fortress-rest] CVE-2017-12624: Apache CXF web services that
> process attachments are vulnerable to Denial of Service (DoS) attacks
> > * FC-233 [FORTRESS-REST] Upgrade to Spring 5 and latest CXF
> > * FC-232 [fortress-web] to Spring 5 and Wicket 7.9
> >
> > * The complete list from JIRA: https://issues.apache.org/
> jira/browse/FC-232?jql=project%20%3D%2012315921%20AND%20fixVersion%20%3D%
> 2012338782%20ORDER%20BY%20priority%20DESC%2C%20key%20ASC
> >
> > Please vote:
> >
> > [ ] +1 | Release Fortress core, realm, rest and web 2.0.1
> > [ ] +/-0 | Abstain
> > [ ] -1 | Do *NOT* Release Fortress core, realm, rest and web 2.0.1
> >
> >
>
> --
> Emmanuel Lecharny
>
> Symas.com
> directory.apache.org
>
>
--
Colm O hEigeartaigh
Talend Community Coder
http://coders.talend.com
Re: [VOTE] Apache Fortress 2.0.1 release, Take 2
Posted by Shawn McKinney <sm...@apache.org>.
> On Jul 16, 2018, at 4:12 PM, Emmanuel Lécharny <el...@gmail.com> wrote:
>
> My +1
>
> - Tested the sources
> - Tested the dist packages
> - Checked the signatures (ftr, the
> fortress-realm-2.0.1-source-release.zip.asc file is missing)
> - Tested against ApacheDS
> - Checked the N&L files
Good catch. Checked in the missing file to the dev SVN repo.
>
> On Jul 16, 2018, at 4:12 PM, Emmanuel Lécharny <el...@gmail.com> wrote:
>
> Two last remarks:
> * Shawn, your GPG Key is not trusted. It would be useful to have it
> signed by trusted people.
> * It would be a good idea to generate SHA 256 and SHA 512 signatures and
> push them in dist. I have a script that does that if needed.
Ah, should have attended Jean-Frederic’s key signing parties at ApacheCon rather than getting dragged out for beers. Pity I won’t be attending the next one. What options does one have short of that?
Would like to see that script to gen the SHA256/512 signatures.
And thanks for the help Emmanuel. Much appreciated.
—Shawn
Re: [VOTE] Apache Fortress 2.0.1 release, Take 2
Posted by Emmanuel Lécharny <el...@gmail.com>.
My +1
- Tested the sources
- Tested the dist packages
- Checked the signatures (ftr, the
fortress-realm-2.0.1-source-release.zip.asc file is missing)
- Tested against ApacheDS
- Checked the N&L files
Two last remarks:
* Shawn, your GPG Key is not trusted. It would be useful to have it
signed by trusted people.
* It would be a good idea to generate SHA 256 and SHA 512 signatures and
push them in dist. I have a script that does that if needed.
Many thanks !
Le 15/07/2018 à 23:08, Shawn McKinney a écrit :
> Hello,
>
> This is an announcement to vote for the next release of Apache Directory Fortress.
>
> The version, 2.0.1, has a tag created for git: ‘2.0.1’.
>
> and the sources may be pulled using git commands:
> git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-core.git
> git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-realm.git
> git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-enmasse.git
> git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-commander.git
>
> with their associated checksums:
> - core: 073b97920a0f33db6053ad773d1ffcedf3f1bee2
> - realm: 8e9447739c97245cecccc9850066528c3e515c04
> - rest: c4b601163360d93b83837110f806d81da3da5bff
> - web: 98976bd224a23a07415150787d9697cc73c6c1b7
>
> Or, source distros may be downloaded from SVN:
> - https://dist.apache.org/repos/dist/dev/directory/fortress/2.0.1/
>
> Or, source distros may be downloaded from this location:
> - http://home.apache.org/~smckinney/
>
> The staging repo on Nexus:
> - https://repository.apache.org/content/repositories/orgapachedirectory-1170
>
> Test using one of these:
> * https://github.com/apache/directory-fortress-core/blob/master/README-QUICKSTART-DOCKER-APACHEDS.md
> * https://github.com/apache/directory-fortress-core/blob/master/README-QUICKSTART-APACHEDS.md
> * https://github.com/apache/directory-fortress-core/blob/master/README-QUICKSTART-DOCKER-SLAPD.md
> * https://github.com/apache/directory-fortress-core/blob/master/README-QUICKSTART-SLAPD.md
>
> - Choose one of the above. Complete (only) the sections leading up to and including the SECTION entitled: 'Apache Fortress Core Integration Test’
> - Choose the docker quickstart & save time. Won't have to install an LDAP server for the integration tests.
>
> 2.0.1 includes:
> * Update to use Apache LDAP API v1.0.2
> * FC-235 Add support for runtime constraints to be placed on activated roles
> * FC-102 [fortress-web] fix problems with group page
> * FC-108 Add support for RFC2307 BIS
> * FC-217 Option to disable role occupants
> * FC-226 ehcache masking security exceptions
> * FC-227 Exclude xml-apis from LDAP api
> * FC-228 [fortress-rest] CVE-2017-12624: Apache CXF web services that process attachments are vulnerable to Denial of Service (DoS) attacks
> * FC-233 [FORTRESS-REST] Upgrade to Spring 5 and latest CXF
> * FC-232 [fortress-web] to Spring 5 and Wicket 7.9
>
> * The complete list from JIRA: https://issues.apache.org/jira/browse/FC-232?jql=project%20%3D%2012315921%20AND%20fixVersion%20%3D%2012338782%20ORDER%20BY%20priority%20DESC%2C%20key%20ASC
>
> Please vote:
>
> [ ] +1 | Release Fortress core, realm, rest and web 2.0.1
> [ ] +/-0 | Abstain
> [ ] -1 | Do *NOT* Release Fortress core, realm, rest and web 2.0.1
>
>
--
Emmanuel Lecharny
Symas.com
directory.apache.org
Re: [VOTE] Apache Fortress 2.0.1 release, Take 2
Posted by Stefan Seelmann <ma...@stefan-seelmann.de>.
When I run core tests against OpenLDAP (I use
src/docker/openldap-for-apache-fortress-tests/run-tests.sh) I get 5 test
failures which I didn't got last week, see below. I saw some changes in
slapd.properties.example, is that related? I won't have time to dig
deeper before the weekend but don't want to block the release if it's
only a problem with the test script.
Test against ApacheDS
(src/docker/apacheds-for-apache-fortress-tests/run-tests.sh) worked
fine, also everything else looks good.
Kind Regards,
Stefan
Tests run: 129, Failures: 5, Errors: 0, Skipped: 0, Time elapsed:
192.234 sec <<< FAILURE! - in
org.apache.directory.fortress.core.impl.FortressJUnitTest
testSearchBinds(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.07 sec <<< FAILURE!
junit.framework.AssertionFailedError: LdapException in
AuditDAO.searchBinds
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.Ldap
InvalidDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.searchBinds(AuditMgrImplTest.java:444)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testSearchBinds(AuditMgrImplTest.java:399)
testGetAuthZs(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.011 sec <<< FAILURE!
junit.framework.AssertionFailedError: LdapException in
AuditDAO.getAllAuthZs
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.Lda
pInvalidDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.getAuthZs(AuditMgrImplTest.java:355)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testGetAuthZs(AuditMgrImplTest.java:311)
testSearchAuthZs(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.01 sec <<< FAILURE!
junit.framework.AssertionFailedError: LdapException in
AuditDAO.searchAuthZs
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.Ld$
pInvalidDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.searchAuthZs(AuditMgrImplTest.java:301)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testSearchAuthZs(AuditMgrImplTest.java:248)
testSearchMods(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.006 sec <<< FAILURE!
junit.framework.AssertionFailedError: searchUserMods caught
LdapException
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.LdapI$
validDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.searchMods(AuditMgrImplTest.java:241)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testSearchMods(AuditMgrImplTest.java:205)
testSearchAdminMods(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.007 sec <<< FAILURE!
junit.framework.AssertionFailedError: searchAdminMods caught
LdapException
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.Ldap$
nvalidDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.searchAdminMods(AuditMgrImplTest.java:195)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testSearchAdminMods(AuditMgrImplTest.java:94)
Re: [VOTE] Apache Fortress 2.0.1 release, Take 2
Posted by Stefan Seelmann <ma...@stefan-seelmann.de>.
When I run core tests against OpenLDAP (I use
src/docker/openldap-for-apache-fortress-tests/run-tests.sh) I get 5 test
failures which I didn't got last week, see below. I saw some changes in
slapd.properties.example, is that related? I won't have time to dig
deeper before the weekend but don't want to block the release if it's
only a problem with the test script.
Test against ApacheDS
(src/docker/apacheds-for-apache-fortress-tests/run-tests.sh) worked
fine, also everything else looks good.
Kind Regards,
Stefan
Tests run: 129, Failures: 5, Errors: 0, Skipped: 0, Time elapsed:
192.234 sec <<< FAILURE! - in
org.apache.directory.fortress.core.impl.FortressJUnitTest
testSearchBinds(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.07 sec <<< FAILURE!
junit.framework.AssertionFailedError: LdapException in
AuditDAO.searchBinds
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.Ldap
InvalidDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.searchBinds(AuditMgrImplTest.java:444)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testSearchBinds(AuditMgrImplTest.java:399)
testGetAuthZs(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.011 sec <<< FAILURE!
junit.framework.AssertionFailedError: LdapException in
AuditDAO.getAllAuthZs
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.Lda
pInvalidDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.getAuthZs(AuditMgrImplTest.java:355)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testGetAuthZs(AuditMgrImplTest.java:311)
testSearchAuthZs(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.01 sec <<< FAILURE!
junit.framework.AssertionFailedError: LdapException in
AuditDAO.searchAuthZs
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.Ld$
pInvalidDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.searchAuthZs(AuditMgrImplTest.java:301)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testSearchAuthZs(AuditMgrImplTest.java:248)
testSearchMods(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.006 sec <<< FAILURE!
junit.framework.AssertionFailedError: searchUserMods caught
LdapException
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.LdapI$
validDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.searchMods(AuditMgrImplTest.java:241)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testSearchMods(AuditMgrImplTest.java:205)
testSearchAdminMods(org.apache.directory.fortress.core.impl.AuditMgrImplTest)
Time elapsed: 0.007 sec <<< FAILURE!
junit.framework.AssertionFailedError: searchAdminMods caught
LdapException
id=org.apache.directory.api.ldap.model.exception.LdapException:
org.apache.directory.api.ldap.model.exception.Ldap$
nvalidDnException: ERR_04202 A value is missing on some RDN
at junit.framework.Assert.fail(Assert.java:57)
at junit.framework.TestCase.fail(TestCase.java:227)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.searchAdminMods(AuditMgrImplTest.java:195)
at
org.apache.directory.fortress.core.impl.AuditMgrImplTest.testSearchAdminMods(AuditMgrImplTest.java:94)