Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-1053

Test improvement: "ldap group sync can sync groups from ldap" fails

XMLWordPrintable

    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      `ldap group sync can sync groups from ldap` fails with low frequency, but it often fails by itself which makes it a good target to identify a cause and fix.

      [sig-auth][Feature:LDAP] LDAP IDP should authenticate against an ldap server [Suite:openshift/conformance/parallel]

      [sig-auth][Feature:LDAP][Serial] ldap group sync can sync groups from ldap [Suite:openshift/conformance/serial]

      Error message:

      STEP: starting an openldap server
      Sep  8 12:38:43.516: INFO: Running 'oc --namespace=e2e-test-ldap-group-sync-wtwnc --kubeconfig=/tmp/kubeconfig-4272906302 create role scc-anyuid --verb=use --resource=scc --resource-name=anyuid'
      role.rbac.authorization.k8s.io/scc-anyuid created
      Sep  8 12:38:43.748: INFO: Running 'oc --namespace=e2e-test-ldap-group-sync-wtwnc --kubeconfig=/tmp/kubeconfig-4272906302 adm policy add-role-to-user scc-anyuid -z ldap --role-namespace e2e-test-ldap-group-sync-wtwnc'
      role.rbac.authorization.k8s.io/scc-anyuid added: "ldap"
      Sep  8 12:38:44.239: INFO: Running 'oc --namespace=e2e-test-ldap-group-sync-wtwnc --kubeconfig=/tmp/kubeconfig-4272906302 create role scc-priv --verb=use --resource=scc --resource-name=privileged'
      role.rbac.authorization.k8s.io/scc-priv created
      Sep  8 12:38:44.468: INFO: Running 'oc --namespace=e2e-test-ldap-group-sync-wtwnc --kubeconfig=/tmp/kubeconfig-4272906302 adm policy add-role-to-user scc-priv -z ldap --role-namespace e2e-test-ldap-group-sync-wtwnc'
      role.rbac.authorization.k8s.io/scc-priv added: "ldap"
      Sep  8 12:38:56.317: INFO: pod "runonce-ldapsearch-pod" errored trying to run the command: ldap_start_tls: Can't contact LDAP server (-1)
      ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
      

      4.12 failures:
      https://sippy.dptools.openshift.org/sippy-ng/jobs/4.12/runs?filters=%7B%22items%22%3A%5B%7B%22columnField%22%3A%22failed_test_names%22%2C%22operatorValue%22%3A%22contains%22%2C%22value%22%3A%22%5Bsig-auth%5D%5BFeature%3ALDAP%5D%5BSerial%5D%20ldap%20group%20sync%20can%20sync%20groups%20from%20ldap%20%5BSuite%3Aopenshift%2Fconformance%2Fserial%5D%22%7D%2C%7B%22columnField%22%3A%22variants%22%2C%22not%22%3Atrue%2C%22operatorValue%22%3A%22contains%22%2C%22value%22%3A%22never-stable%22%7D%5D%2C%22linkOperator%22%3A%22and%22%7D&sortField=timestamp&sort=desc

      Presubmit failures:
      https://sippy.dptools.openshift.org/sippy-ng/jobs/Presubmits/runs?filters=%7B%22items%22%3A%5B%7B%22columnField%22%3A%22failed_test_names%22%2C%22operatorValue%22%3A%22contains%22%2C%22value%22%3A%22%5Bsig-auth%5D%5BFeature%3ALDAP%5D%5BSerial%5D%20ldap%20group%20sync%20can%20sync%20groups%20from%20ldap%20%5BSuite%3Aopenshift%2Fconformance%2Fserial%5D%22%7D%2C%7B%22columnField%22%3A%22variants%22%2C%22not%22%3Atrue%2C%22operatorValue%22%3A%22contains%22%2C%22value%22%3A%22never-stable%22%7D%5D%2C%22linkOperator%22%3A%22and%22%7D&sortField=timestamp&sort=desc

              rh-ee-fbabcock Forrest Babcock
              stbenjam Stephen Benjamin
              None
              None
              None
              None
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated: