Thread

Commits

  1. For Kerberos testing, disable reverse DNS lookup

  1. Disable rdns for Kerberos tests

    Stephen Frost <sfrost@snowman.net> — 2023-02-20T23:35:55Z

    Greetings,
    
    The name canonicalization support for Kerberos is doing us more harm
    than good in the regression tests, so I propose we disable it.  Patch
    attached.
    
    Thoughts?
    
    Thanks,
    
    Stephen
    
  2. Re: Disable rdns for Kerberos tests

    Heikki Linnakangas <hlinnaka@iki.fi> — 2023-02-22T10:57:16Z

    On 21/02/2023 01:35, Stephen Frost wrote:
    > Greetings,
    > 
    > The name canonicalization support for Kerberos is doing us more harm
    > than good in the regression tests, so I propose we disable it.  Patch
    > attached.
    > 
    > Thoughts?
    
    Makes sense. A brief comment in 001_auth.pl itself to mention why we 
    disable rdns would be nice.
    
    - Heikki
    
    
    
    
    
  3. Re: Disable rdns for Kerberos tests

    Stephen Frost <sfrost@snowman.net> — 2023-02-24T22:50:30Z

    Greetings,
    
    * Heikki Linnakangas (hlinnaka@iki.fi) wrote:
    > On 21/02/2023 01:35, Stephen Frost wrote:
    > > The name canonicalization support for Kerberos is doing us more harm
    > > than good in the regression tests, so I propose we disable it.  Patch
    > > attached.
    > > 
    > > Thoughts?
    > 
    > Makes sense. A brief comment in 001_auth.pl itself to mention why we disable
    > rdns would be nice.
    
    Thanks for reviewing!  Comments added and updated the commit message.
    
    Unless there's anything else, I'll push this early next week.
    
    Thanks again!
    
    Stephen
    
  4. Re: Disable rdns for Kerberos tests

    Heikki Linnakangas <hlinnaka@iki.fi> — 2023-02-25T10:36:26Z

    On 25 February 2023 00:50:30 EET, Stephen Frost <sfrost@snowman.net> wrote:
    >Thanks for reviewing!  Comments added and updated the commit message.
    >
    >Unless there's anything else, I'll push this early next week.
    
    s/capture portal/captive portal/. Other than that, looks good to me.
    
    - Heikki
    
    
    
    
  5. Re: Disable rdns for Kerberos tests

    Stephen Frost <sfrost@snowman.net> — 2023-03-09T15:35:02Z

    Greetings,
    
    * Heikki Linnakangas (hlinnaka@iki.fi) wrote:
    > On 25 February 2023 00:50:30 EET, Stephen Frost <sfrost@snowman.net> wrote:
    > >Thanks for reviewing!  Comments added and updated the commit message.
    > >
    > >Unless there's anything else, I'll push this early next week.
    > 
    > s/capture portal/captive portal/. Other than that, looks good to me.
    
    Push, thanks again!
    
    Stephen
    
  6. Re: Disable rdns for Kerberos tests

    Tom Lane <tgl@sss.pgh.pa.us> — 2023-03-09T16:10:32Z

    Stephen Frost <sfrost@snowman.net> writes:
    > Push, thanks again!
    
    Why'd you only change HEAD?  Isn't the test equally fragile in the
    back branches?
    
    			regards, tom lane
    
    
    
    
  7. Re: Disable rdns for Kerberos tests

    Stephen Frost <sfrost@snowman.net> — 2023-03-09T19:48:09Z

    Greetings,
    
    * Tom Lane (tgl@sss.pgh.pa.us) wrote:
    > Stephen Frost <sfrost@snowman.net> writes:
    > > Push, thanks again!
    > 
    > Why'd you only change HEAD?  Isn't the test equally fragile in the
    > back branches?
    
    We hadn't had any complaints about it and so I wasn't sure if it was
    useful to back-patch it.  I'm happy to do so though.
    
    Thanks,
    
    Stephen
    
  8. Re: Disable rdns for Kerberos tests

    Stephen Frost <sfrost@snowman.net> — 2023-04-05T16:10:00Z

    Greetings,
    
    * Tom Lane (tgl@sss.pgh.pa.us) wrote:
    > Stephen Frost <sfrost@snowman.net> writes:
    > > Push, thanks again!
    > 
    > Why'd you only change HEAD?  Isn't the test equally fragile in the
    > back branches?
    
    Following on from this after some additional cross-platform testing,
    turns out there's other options we should be disabling in these tests to
    avoid depending on DNS for the test.
    
    Attached is another patch which, for me at least, seems to prevent the
    tests from causing any DNS requests to happen.  This also means that the
    tests run in a reasonable time even in cases where DNS is entirely
    broken (the resolver set in /etc/resolv.conf doesn't respond).
    
    Barring objections, my plan is to commit this change soon and to
    back-patch both patches to supported branches.
    
    Thanks!
    
    Stephen
    
  9. Re: Disable rdns for Kerberos tests

    Stephen Frost <sfrost@snowman.net> — 2023-04-07T23:41:11Z

    Greetings,
    
    * Tom Lane (tgl@sss.pgh.pa.us) wrote:
    > Stephen Frost <sfrost@snowman.net> writes:
    > > Push, thanks again!
    > 
    > Why'd you only change HEAD?  Isn't the test equally fragile in the
    > back branches?
    
    Back-patched.
    
    Thanks!
    
    Stephen
    
  10. Re: Disable rdns for Kerberos tests

    Stephen Frost <sfrost@snowman.net> — 2023-04-07T23:41:48Z

    Greetings,
    
    * Stephen Frost (sfrost@snowman.net) wrote:
    > * Tom Lane (tgl@sss.pgh.pa.us) wrote:
    > > Stephen Frost <sfrost@snowman.net> writes:
    > > > Push, thanks again!
    > > 
    > > Why'd you only change HEAD?  Isn't the test equally fragile in the
    > > back branches?
    > 
    > Following on from this after some additional cross-platform testing,
    > turns out there's other options we should be disabling in these tests to
    > avoid depending on DNS for the test.
    > 
    > Attached is another patch which, for me at least, seems to prevent the
    > tests from causing any DNS requests to happen.  This also means that the
    > tests run in a reasonable time even in cases where DNS is entirely
    > broken (the resolver set in /etc/resolv.conf doesn't respond).
    > 
    > Barring objections, my plan is to commit this change soon and to
    > back-patch both patches to supported branches.
    
    Done.
    
    Thanks!
    
    Stephen