diff options
| author | Christian Heimes <cheimes@redhat.com> | 2017-03-20 11:34:17 +0100 |
|---|---|---|
| committer | Tomas Krizek <tkrizek@redhat.com> | 2017-03-22 13:42:04 +0100 |
| commit | 313ae46b573b4cac1075dc1b5bd7294424fabfdb (patch) | |
| tree | 66f9b88eaab16f74c91677cf4965806d0ec3d61e /ipatests/test_integration | |
| parent | 1406dbc8c223ac0894088146bfe2a8ef0688097a (diff) | |
| download | freeipa-313ae46b573b4cac1075dc1b5bd7294424fabfdb.tar.gz freeipa-313ae46b573b4cac1075dc1b5bd7294424fabfdb.tar.xz freeipa-313ae46b573b4cac1075dc1b5bd7294424fabfdb.zip | |
Move tasks module to ipatests.pytest_plugins.integration.tasks
https://pagure.io/freeipa/issue/6798
Signed-off-by: Christian Heimes <cheimes@redhat.com>
Reviewed-By: Milan Kubik <mkubik@redhat.com>
Diffstat (limited to 'ipatests/test_integration')
26 files changed, 28 insertions, 1275 deletions
diff --git a/ipatests/test_integration/base.py b/ipatests/test_integration/base.py index ee2716799..2ee3fa4f9 100644 --- a/ipatests/test_integration/base.py +++ b/ipatests/test_integration/base.py @@ -22,7 +22,7 @@ import pytest from ipapython.ipa_log_manager import log_mgr -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from pytest_sourceorder import ordered log = log_mgr.get_logger(__name__) diff --git a/ipatests/test_integration/tasks.py b/ipatests/test_integration/tasks.py deleted file mode 100644 index f92ab5e02..000000000 --- a/ipatests/test_integration/tasks.py +++ /dev/null @@ -1,1248 +0,0 @@ -# Authors: -# Petr Viktorin <pviktori@redhat.com> -# -# Copyright (C) 2013 Red Hat -# see file 'COPYING' for use and warranty information -# -# This program is free software; you can redistribute it and/or modify -# it under the terms of the GNU General Public License as published by -# the Free Software Foundation, either version 3 of the License, or -# (at your option) any later version. -# -# This program is distributed in the hope that it will be useful, -# but WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -# GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program. If not, see <http://www.gnu.org/licenses/>. - -"""Common tasks for FreeIPA integration tests""" - -import os -import textwrap -import re -import collections -import itertools -import tempfile -import time - -import dns -from ldif import LDIFWriter -from SSSDConfig import SSSDConfig -from six import StringIO - -from ipapython import ipautil -from ipaplatform.paths import paths -from ipapython.dn import DN -from ipapython.ipa_log_manager import log_mgr -from ipatests.test_integration import util -from ipatests.pytest_plugins.integration.env_config import env_to_script -from ipatests.test_integration.host import Host -from ipalib import errors -from ipalib.util import get_reverse_zone_default, verify_host_resolvable -from ipalib.constants import DOMAIN_SUFFIX_NAME -from ipalib.constants import DOMAIN_LEVEL_0 - -log = log_mgr.get_logger(__name__) - - -def setup_server_logs_collecting(host): - """ - This function setup logs to be collected on host. We should collect all - possible logs that may be helpful to debug IPA server - """ - # dirsrv logs - inst = host.domain.realm.replace('.', '-') - host.collect_log(paths.SLAPD_INSTANCE_ERROR_LOG_TEMPLATE % inst) - host.collect_log(paths.SLAPD_INSTANCE_ACCESS_LOG_TEMPLATE % inst) - - # IPA install logs - host.collect_log(paths.IPASERVER_INSTALL_LOG) - host.collect_log(paths.IPACLIENT_INSTALL_LOG) - host.collect_log(paths.IPAREPLICA_INSTALL_LOG) - host.collect_log(paths.IPAREPLICA_CONNCHECK_LOG) - host.collect_log(paths.IPAREPLICA_CA_INSTALL_LOG) - host.collect_log(paths.IPACLIENT_INSTALL_LOG) - host.collect_log(paths.IPASERVER_KRA_INSTALL_LOG) - host.collect_log(paths.IPA_CUSTODIA_AUDIT_LOG) - - # IPA uninstall logs - host.collect_log(paths.IPACLIENT_UNINSTALL_LOG) - - # IPA backup and restore logs - host.collect_log(paths.IPARESTORE_LOG) - host.collect_log(paths.IPABACKUP_LOG) - - # kerberos related logs - host.collect_log(paths.KADMIND_LOG) - - # httpd logs - host.collect_log(paths.VAR_LOG_HTTPD_ERROR) - - # dogtag logs - host.collect_log(os.path.join(paths.VAR_LOG_PKI_DIR)) - - # SSSD debugging must be set after client is installed (function - # setup_sssd_debugging) - - -def check_arguments_are(slice, instanceof): - """ - :param: slice - tuple of integers denoting the beginning and the end - of argument list to be checked - :param: instanceof - name of the class the checked arguments should be - instances of - Example: @check_arguments_are((1, 3), int) will check that the second - and third arguments are integers - """ - def wrapper(func): - def wrapped(*args, **kwargs): - for i in args[slice[0]:slice[1]]: - assert isinstance(i, instanceof), "Wrong type: %s: %s" % (i, type(i)) - return func(*args, **kwargs) - return wrapped - return wrapper - -def prepare_reverse_zone(host, ip): - zone = get_reverse_zone_default(ip) - result = host.run_command(["ipa", - "dnszone-add", - zone], raiseonerr=False) - if result.returncode > 0: - log.warning(result.stderr_text) - return zone, result.returncode - -def prepare_host(host): - if isinstance(host, Host): - env_filename = os.path.join(host.config.test_dir, 'env.sh') - - # First we try to run simple echo command to test the connection - host.run_command(['true'], set_env=False) - - host.collect_log(env_filename) - try: - host.transport.mkdir_recursive(host.config.test_dir) - except IOError: - # The folder already exists - pass - host.put_file_contents(env_filename, env_to_script(host.to_env())) - - -def allow_sync_ptr(host): - kinit_admin(host) - host.run_command(["ipa", "dnsconfig-mod", "--allow-sync-ptr=true"], - raiseonerr=False) - - -def apply_common_fixes(host): - prepare_host(host) - fix_hostname(host) - - -def backup_file(host, filename): - if host.transport.file_exists(filename): - backupname = os.path.join(host.config.test_dir, 'file_backup', - filename.lstrip('/')) - host.transport.mkdir_recursive(os.path.dirname(backupname)) - host.run_command(['cp', '-af', filename, backupname]) - return True - else: - rmname = os.path.join(host.config.test_dir, 'file_remove') - host.run_command('echo %s >> %s' % ( - ipautil.shell_quote(filename), - ipautil.shell_quote(rmname))) - host.transport.mkdir_recursive(os.path.dirname(rmname)) - return False - - -def fix_hostname(host): - backup_file(host, paths.ETC_HOSTNAME) - host.put_file_contents(paths.ETC_HOSTNAME, host.hostname + '\n') - host.run_command(['hostname', host.hostname]) - - backupname = os.path.join(host.config.test_dir, 'backup_hostname') - host.run_command('hostname > %s' % ipautil.shell_quote(backupname)) - - -def host_service_active(host, service): - res = host.run_command(['systemctl', 'is-active', '--quiet', service], - raiseonerr=False) - - return res.returncode == 0 - -def fix_apache_semaphores(master): - systemd_available = master.transport.file_exists(paths.SYSTEMCTL) - - if systemd_available: - master.run_command(['systemctl', 'stop', 'httpd'], raiseonerr=False) - else: - master.run_command([paths.SBIN_SERVICE, 'httpd', 'stop'], - raiseonerr=False) - - master.run_command('for line in `ipcs -s | grep apache | cut -d " " -f 2`; ' - 'do ipcrm -s $line; done', raiseonerr=False) - - -def unapply_fixes(host): - restore_files(host) - restore_hostname(host) - # Clean ccache to prevent issues like 5741 - host.run_command(['kdestroy', '-A'], raiseonerr=False) - - # Clean up the test directory - host.run_command(['rm', '-rvf', host.config.test_dir]) - - -def restore_files(host): - backupname = os.path.join(host.config.test_dir, 'file_backup') - rmname = os.path.join(host.config.test_dir, 'file_remove') - - # Prepare command for restoring context of the backed-up files - sed_remove_backupdir = 's/%s//g' % backupname.replace('/', '\/') - restorecon_command = ( - "find %s | " - "sed '%s' | " - "sed '/^$/d' | " - "xargs -d '\n' " - "/sbin/restorecon -v" % (backupname, sed_remove_backupdir)) - - # Prepare command for actual restoring of the backed up files - copyfiles_command = 'if [ -d %(dir)s/ ]; then cp -arvf %(dir)s/* /; fi' % { - 'dir': ipautil.shell_quote(backupname)} - - # Run both commands in one session. For more information, see: - # https://fedorahosted.org/freeipa/ticket/4133 - host.run_command('%s ; (%s ||:)' % (copyfiles_command, restorecon_command)) - - # Remove all the files that did not exist and were 'backed up' - host.run_command(['xargs', '-d', r'\n', '-a', rmname, 'rm', '-vf'], - raiseonerr=False) - host.run_command(['rm', '-rvf', backupname, rmname], raiseonerr=False) - - -def restore_hostname(host): - backupname = os.path.join(host.config.test_dir, 'backup_hostname') - try: - hostname = host.get_file_contents(backupname) - except IOError: - log.debug('No hostname backed up on %s' % host.hostname) - else: - host.run_command(['hostname', hostname.strip()]) - host.run_command(['rm', backupname]) - - -def enable_replication_debugging(host): - log.info('Enable LDAP replication logging') - logging_ldif = textwrap.dedent(""" - dn: cn=config - changetype: modify - replace: nsslapd-errorlog-level - nsslapd-errorlog-level: 8192 - """) - host.run_command(['ldapmodify', '-x', - '-D', str(host.config.dirman_dn), - '-w', host.config.dirman_password, - '-h', host.hostname], - stdin_text=logging_ldif) - - -def install_master(host, setup_dns=True, setup_kra=False, setup_adtrust=False, - extra_args=(), domain_level=None, unattended=True, - stdin_text=None, raiseonerr=True): - if domain_level is None: - domain_level = host.config.domain_level - setup_server_logs_collecting(host) - apply_common_fixes(host) - fix_apache_semaphores(host) - - args = [ - 'ipa-server-install', - '-n', host.domain.name, - '-r', host.domain.realm, - '-p', host.config.dirman_password, - '-a', host.config.admin_password, - "--domain-level=%i" % domain_level, - ] - if unattended: - args.append('-U') - - if setup_dns: - args.extend([ - '--setup-dns', - '--forwarder', host.config.dns_forwarder, - '--auto-reverse' - ]) - if setup_kra: - args.append('--setup-kra') - if setup_adtrust: - args.append('--setup-adtrust') - - args.extend(extra_args) - result = host.run_command(args, raiseonerr=raiseonerr, - stdin_text=stdin_text) - if result.returncode == 0: - enable_replication_debugging(host) - setup_sssd_debugging(host) - kinit_admin(host) - return result - - -def get_replica_filename(replica): - return os.path.join(replica.config.test_dir, 'replica-info.gpg') - - -def domainlevel(host): - """ - Dynamically determines the domainlevel on master. Needed for scenarios - when domainlevel is changed during the test execution. - - Sometimes the master is even not installed. Please refer to ca-less - tests, where we call tasks.uninstall_master after every test while a lot - of them make sure that the server installation fails. Therefore we need - to not raise on failures here. - """ - kinit_admin(host, raiseonerr=False) - result = host.run_command(['ipa', 'domainlevel-get'], raiseonerr=False) - level = 0 - domlevel_re = re.compile('.*(\d)') - if result.returncode == 0: - # "domainlevel-get" command doesn't exist on ipa versions prior to 4.3 - level = int(domlevel_re.findall(result.stdout_text)[0]) - return level - -def master_authoritative_for_client_domain(master, client): - zone = ".".join(client.hostname.split('.')[1:]) - result = master.run_command(["ipa", "dnszone-show", zone], - raiseonerr=False) - return result.returncode == 0 - -def replica_prepare(master, replica, extra_args=(), - raiseonerr=True, stdin_text=None): - fix_apache_semaphores(replica) - prepare_reverse_zone(master, replica.ip) - args = ['ipa-replica-prepare', - '-p', replica.config.dirman_password, - replica.hostname] - if master_authoritative_for_client_domain(master, replica): - args.extend(['--ip-address', replica.ip]) - args.extend(extra_args) - result = master.run_command(args, raiseonerr=raiseonerr, - stdin_text=stdin_text) - if result.returncode == 0: - replica_bundle = master.get_file_contents( - paths.REPLICA_INFO_GPG_TEMPLATE % replica.hostname) - replica_filename = get_replica_filename(replica) - replica.put_file_contents(replica_filename, replica_bundle) - return result - - -def install_replica(master, replica, setup_ca=True, setup_dns=False, - setup_kra=False, setup_adtrust=False, extra_args=(), - domain_level=None, unattended=True, stdin_text=None, - raiseonerr=True): - if domain_level is None: - domain_level = domainlevel(master) - apply_common_fixes(replica) - setup_server_logs_collecting(replica) - allow_sync_ptr(master) - # Otherwise ipa-client-install would not create a PTR - # and replica installation would fail - args = ['ipa-replica-install', - '-p', replica.config.dirman_password, - '-w', replica.config.admin_password] - if unattended: - args.append('-U') - if setup_ca: - args.append('--setup-ca') - if setup_kra: - assert setup_ca, "CA must be installed on replica with KRA" - args.append('--setup-kra') - if setup_dns: - args.extend([ - '--setup-dns', - '--forwarder', replica.config.dns_forwarder - ]) - if setup_adtrust: - args.append('--setup-adtrust') - if master_authoritative_for_client_domain(master, replica): - args.extend(['--ip-address', replica.ip]) - - args.extend(extra_args) - - if domain_level == DOMAIN_LEVEL_0: - # workaround #6274 - remove when fixed - time.sleep(30) # wait until dogtag wakes up - - # prepare the replica file on master and put it to replica, AKA "old way" - replica_prepare(master, replica) - replica_filename = get_replica_filename(replica) - args.append(replica_filename) - else: - # install client on a replica machine and then promote it to replica - install_client(master, replica) - fix_apache_semaphores(replica) - args.extend(['-r', replica.domain.realm]) - - result = replica.run_command(args, raiseonerr=raiseonerr, - stdin_text=stdin_text) - if result.returncode == 0: - enable_replication_debugging(replica) - setup_sssd_debugging(replica) - kinit_admin(replica) - return result - - -def install_client(master, client, extra_args=()): - client.collect_log(paths.IPACLIENT_INSTALL_LOG) - - apply_common_fixes(client) - allow_sync_ptr(master) - # Now, for the situations where a client resides in a different subnet from - # master, we need to explicitly tell master to create a reverse zone for - # the client and enable dynamic updates for this zone. - zone, error = prepare_reverse_zone(master, client.ip) - if not error: - master.run_command(["ipa", "dnszone-mod", zone, - "--dynamic-update=TRUE"]) - - client.run_command(['ipa-client-install', '-U', - '--domain', client.domain.name, - '--realm', client.domain.realm, - '-p', client.config.admin_name, - '-w', client.config.admin_password, - '--server', master.hostname] - + list(extra_args)) - - setup_sssd_debugging(client) - kinit_admin(client) - - -def install_adtrust(host): - """ - Runs ipa-adtrust-install on the client and generates SIDs for the entries. - Configures the compat tree for the legacy clients. - """ - - setup_server_logs_collecting(host) - - kinit_admin(host) - host.run_command(['ipa-adtrust-install', '-U', - '--enable-compat', - '--netbios-name', host.netbios, - '-a', host.config.admin_password, - '--add-sids']) - - # Restart named because it lost connection to dirsrv - # (Directory server restarts during the ipa-adtrust-install) - # we use two services named and named-pkcs11, - # if named is masked restart named-pkcs11 - result = host.run_command(['systemctl', 'is-enabled', 'named'], - raiseonerr=False) - if result.stdout_text.startswith("masked"): - host.run_command(['systemctl', 'restart', 'named-pkcs11']) - else: - host.run_command(['systemctl', 'restart', 'named']) - - # Check that named is running and has loaded the information from LDAP - dig_command = ['dig', 'SRV', '+short', '@localhost', - '_ldap._tcp.%s' % host.domain.name] - dig_output = '0 100 389 %s.' % host.hostname - dig_test = lambda x: re.search(re.escape(dig_output), x) - - util.run_repeatedly(host, dig_command, test=dig_test) - - -def configure_dns_for_trust(master, ad): - """ - This method is intentionally left empty. Originally it served for DNS - configuration on IPA master according to the relationship of the IPA's - and AD's domains. - """ - pass - - -def establish_trust_with_ad(master, ad_domain, extra_args=()): - """ - Establishes trust with Active Directory. Trust type is detected depending - on the presence of SfU (Services for Unix) support on the AD. - - Use extra arguments to pass extra arguments to the trust-add command, such - as --range-type="ipa-ad-trust" to enfroce a particular range type. - """ - - # Force KDC to reload MS-PAC info by trying to get TGT for HTTP - master.run_command(['kinit', '-kt', paths.HTTP_KEYTAB, - 'HTTP/%s' % master.hostname]) - master.run_command(['systemctl', 'restart', 'krb5kdc.service']) - master.run_command(['kdestroy', '-A']) - - kinit_admin(master) - master.run_command(['klist']) - master.run_command(['smbcontrol', 'all', 'debug', '100']) - - util.run_repeatedly(master, - ['ipa', 'trust-add', - '--type', 'ad', ad_domain, - '--admin', 'Administrator', - '--password'] + list(extra_args), - stdin_text=master.config.ad_admin_password) - master.run_command(['smbcontrol', 'all', 'debug', '1']) - clear_sssd_cache(master) - master.run_command(['systemctl', 'restart', 'krb5kdc.service']) - time.sleep(60) - - -def remove_trust_with_ad(master, ad_domain): - """ - Removes trust with Active Directory. Also removes the associated ID range. - """ - - kinit_admin(master) - - # Remove the trust - master.run_command(['ipa', 'trust-del', ad_domain]) - - # Remove the range - range_name = ad_domain.upper() + '_id_range' - master.run_command(['ipa', 'idrange-del', range_name]) - - remove_trust_info_from_ad(master, ad_domain) - - -def remove_trust_info_from_ad(master, ad_domain): - # Remove record about trust from AD - master.run_command(['rpcclient', ad_domain, - '-U\\Administrator%{}'.format( - master.config.ad_admin_password), - '-c', 'deletetrustdom {}'.format(master.domain.name)], - raiseonerr=False) - - -def configure_auth_to_local_rule(master, ad): - """ - Configures auth_to_local rule in /etc/krb5.conf - """ - - section_identifier = " %s = {" % master.domain.realm - line1 = (" auth_to_local = RULE:[1:$1@$0](^.*@%s$)s/@%s/@%s/" - % (ad.domain.realm, ad.domain.realm, ad.domain.name)) - line2 = " auth_to_local = DEFAULT" - - krb5_conf_content = master.get_file_contents(paths.KRB5_CONF) - krb5_lines = [line.rstrip() for line in krb5_conf_content.split('\n')] - realm_section_index = krb5_lines.index(section_identifier) - - krb5_lines.insert(realm_section_index + 1, line1) - krb5_lines.insert(realm_section_index + 2, line2) - - krb5_conf_new_content = '\n'.join(krb5_lines) - master.put_file_contents(paths.KRB5_CONF, krb5_conf_new_content) - - master.run_command(['systemctl', 'restart', 'sssd']) - - -def setup_sssd_debugging(host): - """ - Sets debug level to 7 in each section of sssd.conf file. - """ - - # Set debug level in each section of sssd.conf file to 7 - # First, remove any previous occurences - host.run_command(['sed', '-i', - '/debug_level = 7/d', - paths.SSSD_CONF], - raiseonerr=False) - - # Add the debug directive to each section - host.run_command(['sed', '-i', - '/\[*\]/ a\debug_level = 7', - paths.SSSD_CONF], - raiseonerr=False) - - host.collect_log(os.path.join(paths.VAR_LOG_SSSD_DIR)) - - # Clear the cache and restart SSSD - clear_sssd_cache(host) - - -def modify_sssd_conf(host, domain, mod_dict, provider='ipa', - provider_subtype=None): - """ - modify options in a single domain section of host's sssd.conf - :param host: multihost.Host object - :param domain: domain section name to modify - :param mod_dict: dictionary of options which will be passed to - SSSDDomain.set_option(). To remove an option specify its value as - None - :param provider: provider backend to set. Defaults to ipa - :param provider_subtype: backend subtype (e.g. id or sudo), will be added - to the domain config if not present - """ - try: - temp_config_file = tempfile.mkstemp()[1] - current_config = host.transport.get_file_contents(paths.SSSD_CONF) - - with open(temp_config_file, 'wb') as f: - f.write(current_config) - - sssd_config = SSSDConfig() - sssd_config.import_config(temp_config_file) - sssd_domain = sssd_config.get_domain(domain) - - if provider_subtype is not None: - sssd_domain.add_provider(provider, provider_subtype) - - for m in mod_dict: - sssd_domain.set_option(m, mod_dict[m]) - - sssd_config.save_domain(sssd_domain) - - new_config = sssd_config.dump(sssd_config.opts).encode('utf-8') - host.transport.put_file_contents(paths.SSSD_CONF, new_config) - finally: - try: - os.remove(temp_config_file) - except OSError: - pass - - -def clear_sssd_cache(host): - """ - Clears SSSD cache by removing the cache files. Restarts SSSD. - """ - - systemd_available = host.transport.file_exists(paths.SYSTEMCTL) - - if systemd_available: - host.run_command(['systemctl', 'stop', 'sssd']) - else: - host.run_command([paths.SBIN_SERVICE, 'sssd', 'stop']) - - host.run_command("find /var/lib/sss/db -name '*.ldb' | " - "xargs rm -fv") - host.run_command(['rm', '-fv', paths.SSSD_MC_GROUP]) - host.run_command(['rm', '-fv', paths.SSSD_MC_PASSWD]) - - if systemd_available: - host.run_command(['systemctl', 'start', 'sssd']) - else: - host.run_command([paths.SBIN_SERVICE, 'sssd', 'start']) - - # To avoid false negatives due to SSSD not responding yet - time.sleep(10) - - -def sync_time(host, server): - """ - Syncs the time with the remote server. Please note that this function - leaves ntpd stopped. - """ - - host.run_command(['systemctl', 'stop', 'ntpd']) - host.run_command(['ntpdate', server.hostname]) - - -def connect_replica(master, replica, domain_level=None): - if domain_level is None: - domain_level = master.config.domain_level - if domain_level == DOMAIN_LEVEL_0: - replica.run_command(['ipa-replica-manage', 'connect', master.hostname]) - else: - kinit_admin(master) - master.run_command(["ipa", "topologysegment-add", DOMAIN_SUFFIX_NAME, - "%s-to-%s" % (master.hostname, replica.hostname), - "--leftnode=%s" % master.hostname, - "--rightnode=%s" % replica.hostname - ]) - - -def disconnect_replica(master, replica, domain_level=None): - if domain_level is None: - domain_level = master.config.domain_level - if domain_level == DOMAIN_LEVEL_0: - replica.run_command(['ipa-replica-manage', 'disconnect', master.hostname]) - else: - kinit_admin(master) - master.run_command(["ipa", "topologysegment-del", DOMAIN_SUFFIX_NAME, - "%s-to-%s" % (master.hostname, replica.hostname), - "--continue" - ]) - - -def kinit_admin(host, raiseonerr=True): - return host.run_command(['kinit', 'admin'], raiseonerr=raiseonerr, - stdin_text=host.config.admin_password) - - -def uninstall_master(host, ignore_topology_disconnect=True, - ignore_last_of_role=True, clean=True): - host.collect_log(paths.IPASERVER_UNINSTALL_LOG) - uninstall_cmd = ['ipa-server-install', '--uninstall', '-U'] - - host_domain_level = domainlevel(host) - - if ignore_topology_disconnect and host_domain_level != DOMAIN_LEVEL_0: - uninstall_cmd.append('--ignore-topology-disconnect') - - if ignore_last_of_role and host_domain_level != DOMAIN_LEVEL_0: - uninstall_cmd.append('--ignore-last-of-role') - - host.run_command(uninstall_cmd, raiseonerr=False) - host.run_command(['pkidestroy', '-s', 'CA', '-i', 'pki-tomcat'], - raiseonerr=False) - host.run_command(['rm', '-rf', - paths.TOMCAT_TOPLEVEL_DIR, - paths.SYSCONFIG_PKI_TOMCAT, - paths.SYSCONFIG_PKI_TOMCAT_PKI_TOMCAT_DIR, - paths.VAR_LIB_PKI_TOMCAT_DIR, - paths.PKI_TOMCAT, - paths.IPA_RENEWAL_LOCK, - paths.REPLICA_INFO_GPG_TEMPLATE % host.hostname], - raiseonerr=False) - host.run_command("find /var/lib/sss/keytabs -name '*.keytab' | " - "xargs rm -fv", raiseonerr=False) - host.run_command("find /run/ipa -name 'krb5*' | xargs rm -fv", - raiseonerr=False) - if clean: - unapply_fixes(host) - - -def uninstall_client(host): - host.collect_log(paths.IPACLIENT_UNINSTALL_LOG) - - host.run_command(['ipa-client-install', '--uninstall', '-U'], - raiseonerr=False) - unapply_fixes(host) - - -@check_arguments_are((0, 2), Host) -def clean_replication_agreement(master, replica, cleanup=False, - raiseonerr=True): - """ - Performs `ipa-replica-manage del replica_hostname --force`. - """ - args = ['ipa-replica-manage', 'del', replica.hostname, '--force'] - if cleanup: - args.append('--cleanup') - master.run_command(args, raiseonerr=raiseonerr) - - -@check_arguments_are((0, 3), Host) -def create_segment(master, leftnode, rightnode, suffix=DOMAIN_SUFFIX_NAME): - """ - creates a topology segment. The first argument is a node to run the command - :returns: a hash object containing segment's name, leftnode, rightnode - information and an error string. - """ - kinit_admin(master) - lefthost = leftnode.hostname - righthost = rightnode.hostname - segment_name = "%s-to-%s" % (lefthost, righthost) - result = master.run_command(["ipa", "topologysegment-add", suffix, - segment_name, - "--leftnode=%s" % lefthost, - "--rightnode=%s" % righthost], raiseonerr=False) - if result.returncode == 0: - return {'leftnode': lefthost, - 'rightnode': righthost, - 'name': segment_name}, "" - else: - return {}, result.stderr_text - - -def destroy_segment(master, segment_name, suffix=DOMAIN_SUFFIX_NAME): - """ - Destroys topology segment. - :param master: reference to master object of class Host - :param segment_name: name of the segment to be created - """ - assert isinstance(master, Host), "master should be an instance of Host" - kinit_admin(master) - command = ["ipa", - "topologysegment-del", - suffix, - segment_name] - result = master.run_command(command, raiseonerr=False) - return result.returncode, result.stderr_text - - -def get_topo(name_or_func): - """Get a topology function by name - - A topology function receives a master and list of replicas, and yields - (parent, child) pairs, where "child" should be installed from "parent" - (or just connected if already installed) - - If a callable is given instead of name, it is returned directly - """ - if callable(name_or_func): - return name_or_func - return topologies[name_or_func] - - -def _topo(name): - """Decorator that registers a function in topologies under a given name""" - def add_topo(func): - topologies[name] = func - return func - return add_topo -topologies = collections.OrderedDict() - - -@_topo('star') -def star_topo(master, replicas): - r"""All replicas are connected to the master - - Rn R1 R2 - \ | / - R7-- M -- R3 - / | \ - R6 R5 R4 - """ - for replica in replicas: - yield master, replica - - -@_topo('line') -def line_topo(master, replicas): - r"""Line topology - - M - \ - R1 - \ - R2 - \ - R3 - \ - ... - """ - for replica in replicas: - yield master, replica - master = replica - - -@_topo('complete') -def complete_topo(master, replicas): - r"""Each host connected to each other host - - M--R1 - |\/| - |/\| - R2-R3 - """ - for replica in replicas: - yield master, replica - for replica1, replica2 in itertools.combinations(replicas, 2): - yield replica1, replica2 - - -@_topo('tree') -def tree_topo(master, replicas): - r"""Binary tree topology - - M - / \ - / \ - R1 R2 - / \ / \ - R3 R4 R5 R6 - / - R7 ... - - """ - replicas = list(replicas) - - def _masters(): - for host in [master] + replicas: - yield host - yield host - - for parent, child in zip(_masters(), replicas): - yield parent, child - - -@_topo('tree2') -def tree2_topo(master, replicas): - r"""First replica connected directly to master, the rest in a line - - M - / \ - R1 R2 - \ - R3 - \ - R4 - \ - ... - - """ - if replicas: - yield master, replicas[0] - for replica in replicas[1:]: - yield master, replica - master = replica - - -@_topo('2-connected') -def two_connected_topo(master, replicas): - r"""No replica has more than 4 agreements and at least two - replicas must fail to disconnect the topology. - - . . . . - . . . . - . . . . - ... R --- R R --- R ... - \ / \ / \ / - \ / \ / \ / - ... R R R ... - \ / \ / - \ / \ / - M0 -- R2 - | | - | | - R1 -- R3 - . \ / . - . \ / . - . R . - . . - . . - . . - """ - grow = [] - pool = [master] + replicas - - try: - v0 = pool.pop(0) - v1 = pool.pop(0) - yield v0, v1 - - v2 = pool.pop(0) - yield v0, v2 - grow.append((v0, v2)) - - v3 = pool.pop(0) - yield v2, v3 - yield v1, v3 - grow.append((v1, v3)) - - for (r, s) in grow: - t = pool.pop(0) - - for (u, v) in [(r, t), (s, t)]: - yield u, v - w = pool.pop(0) - yield u, w - x = pool.pop(0) - yield v, x - yield w, x - grow.append((w, x)) - - except IndexError: - return - - -@_topo('double-circle') -def double_circle_topo(master, replicas, site_size=6): - """ - R--R - |\/| - |/\| - R--R - / \ - M -- R - /| |\ - / | | \ - R - R - R--|----|--R - R - R - | X | | | | | | X | - R - R - R -|----|--R - R - R - \ | | / - \| |/ - R -- R - \ / - R--R - |\/| - |/\| - R--R - """ - # to provide redundancy there must be at least two replicas per site - assert site_size >= 2 - # do not handle master other than the rest of the servers - servers = [master] + replicas - - # split servers into sites - it = [iter(servers)] * site_size - sites = [(x[0], x[1], x[2:]) for x in zip(*it)] - num_sites = len(sites) - - for i in range(num_sites): - (a, b, _ignore) = sites[i] - # create agreement inside the site - yield a, b - - # create agreement to one server in two next sites - for c, _d, _ignore in [sites[(i+n) % num_sites] for n in [1, 2]]: - yield b, c - - if site_size > 2: - # deploy servers inside the site - for site in sites: - site_servers = list(site[2]) - yield site[0], site_servers[0] - for edge in complete_topo(site_servers[0], site_servers[1:]): - yield edge - yield site[1], site_servers[-1] - - -def install_topo(topo, master, replicas, clients, domain_level=None, - skip_master=False, setup_replica_cas=True, - setup_replica_kras=False): - """Install IPA servers and clients in the given topology""" - if setup_replica_kras and not setup_replica_cas: - raise ValueError("Option 'setup_replica_kras' requires " - "'setup_replica_cas' set to True") - replicas = list(replicas) - installed = {master} - if not skip_master: - install_master( - master, - domain_level=domain_level, - setup_kra=setup_replica_kras - ) - - add_a_records_for_hosts_in_master_domain(master) - - for parent, child in get_topo(topo)(master, replicas): - if child in installed: - log.info('Connecting replica %s to %s' % (parent, child)) - connect_replica(parent, child) - else: - log.info('Installing replica %s from %s' % (parent, child)) - install_replica( - parent, child, - setup_ca=setup_replica_cas, - setup_kra=setup_replica_kras - ) - installed.add(child) - install_clients([master] + replicas, clients) - - -def install_clients(servers, clients): - """Install IPA clients, distributing them among the given servers""" - izip = getattr(itertools, 'izip', zip) - for server, client in izip(itertools.cycle(servers), clients): - log.info('Installing client %s on %s' % (server, client)) - install_client(server, client) - - -def _entries_to_ldif(entries): - """Format LDAP entries as LDIF""" - io = StringIO() - writer = LDIFWriter(io) - for entry in entries: - writer.unparse(str(entry.dn), dict(entry)) - return io.getvalue() - - -def wait_for_replication(ldap, timeout=30): - """Wait until updates on all replication agreements are done (or failed) - - :param ldap: LDAP client - autenticated with necessary rights to read the mapping tree - :param timeout: Maximum time to wait, in seconds - - Note that this waits for updates originating on this host, not those - coming from other hosts. - """ - log.debug('Waiting for replication to finish') - for i in range(timeout): - time.sleep(1) - status_attr = 'nsds5replicaLastUpdateStatus' - progress_attr = 'nsds5replicaUpdateInProgress' - entries = ldap.get_entries( - DN(('cn', 'mapping tree'), ('cn', 'config')), - filter='(objectclass=nsds5replicationagreement)', - attrs_list=[status_attr, progress_attr]) - log.debug('Replication agreements: \n%s', _entries_to_ldif(entries)) - if any( - not ( - # older DS format - e.single_value[status_attr].startswith('0 ') or - # newer DS format - e.single_value[status_attr].startswith('Error (0) ') - ) - for e in entries - ): - log.error('Replication error') - continue - if any(e.single_value[progress_attr] == 'TRUE' for e in entries): - log.debug('Replication in progress (waited %s/%ss)', - i, timeout) - else: - log.debug('Replication finished') - break - else: - log.error('Giving up wait for replication to finish') - - -def add_a_records_for_hosts_in_master_domain(master): - for host in master.domain.hosts: - # We don't need to take care of the zone creation since it is master - # domain - try: - verify_host_resolvable(host.hostname) - log.debug("The host (%s) is resolvable." % host.domain.name) - except errors.DNSNotARecordError: - log.debug("Hostname (%s) does not have A/AAAA record. Adding new one.", - master.hostname) - add_a_record(master, host) - - -def add_a_record(master, host): - # Find out if the record is already there - cmd = master.run_command(['ipa', - 'dnsrecord-show', - master.domain.name, - host.hostname + "."], - raiseonerr=False) - - # If not, add it - if cmd.returncode != 0: - master.run_command(['ipa', - 'dnsrecord-add', - master.domain.name, - host.hostname + ".", - '--a-rec', host.ip]) - - -def resolve_record(nameserver, query, rtype="SOA", retry=True, timeout=100): - """Resolve DNS record - :retry: if resolution failed try again until timeout is reached - :timeout: max period of time while method will try to resolve query - (requires retry=True) - """ - res = dns.resolver.Resolver() - res.nameservers = [nameserver] - res.lifetime = 10 # wait max 10 seconds for reply - - wait_until = time.time() + timeout - - while time.time() < wait_until: - try: - ans = res.query(query, rtype) - return ans - except dns.exception.DNSException: - if not retry: - raise - time.sleep(1) - - -def ipa_backup(master): - result = master.run_command(["ipa-backup"]) - path_re = re.compile("^Backed up to (?P<backup>.*)$", re.MULTILINE) - matched = path_re.search(result.stdout_text + result.stderr_text) - return matched.group("backup") - - -def ipa_restore(master, backup_path): - master.run_command(["ipa-restore", "-U", - "-p", master.config.dirman_password, - backup_path]) - - -def install_kra(host, domain_level=None, first_instance=False, raiseonerr=True): - if domain_level is None: - domain_level = domainlevel(host) - command = ["ipa-kra-install", "-U", "-p", host.config.dirman_password] - if domain_level == DOMAIN_LEVEL_0 and not first_instance: - replica_file = get_replica_filename(host) - command.append(replica_file) - return host.run_command(command, raiseonerr=raiseonerr) - - -def install_ca(host, domain_level=None, first_instance=False, raiseonerr=True): - if domain_level is None: - domain_level = domainlevel(host) - command = ["ipa-ca-install", "-U", "-p", host.config.dirman_password, - "-P", 'admin', "-w", host.config.admin_password] - if domain_level == DOMAIN_LEVEL_0 and not first_instance: - replica_file = get_replica_filename(host) - command.append(replica_file) - return host.run_command(command, raiseonerr=raiseonerr) - - -def install_dns(host, raiseonerr=True): - args = [ - "ipa-dns-install", - "--forwarder", host.config.dns_forwarder, - "-U", - ] - return host.run_command(args, raiseonerr=raiseonerr) - - -def uninstall_replica(master, replica): - master.run_command(["ipa-replica-manage", "del", "--force", - "-p", master.config.dirman_password, - replica.hostname], raiseonerr=False) - uninstall_master(replica) - - -def replicas_cleanup(func): - """ - replicas_cleanup decorator, applied to any test method in integration tests - uninstalls all replicas in the topology leaving only master - configured - """ - def wrapped(*args): - func(*args) - for host in args[0].replicas: - uninstall_replica(args[0].master, host) - uninstall_client(host) - result = args[0].master.run_command( - ["ipa", "host-del", "--updatedns", host.hostname], - raiseonerr=False) - # Workaround for 5627 - if "host not found" in result.stderr_text: - args[0].master.run_command(["ipa", - "host-del", - host.hostname], raiseonerr=False) - return wrapped - - -def run_server_del(host, server_to_delete, force=False, - ignore_topology_disconnect=False, - ignore_last_of_role=False): - kinit_admin(host) - args = ['ipa', 'server-del', server_to_delete] - if force: - args.append('--force') - if ignore_topology_disconnect: - args.append('--ignore-topology-disconnect') - if ignore_last_of_role: - args.append('--ignore-last-of-role') - - return host.run_command(args, raiseonerr=False) - - -def run_certutil(host, args, reqdir, stdin=None, raiseonerr=True): - new_args = [paths.CERTUTIL, "-d", reqdir] - new_args = " ".join(new_args + args) - return host.run_command(new_args, raiseonerr=raiseonerr, - stdin_text=stdin) - - -def assert_error(result, stderr_text, returncode=None): - "Assert that `result` command failed and its stderr contains `stderr_text`" - assert stderr_text in result.stderr_text, result.stderr_text - if returncode is not None: - assert result.returncode == returncode - else: - assert result.returncode > 0 - - -def restart_named(*args): - time.sleep(20) # give a time to DNSSEC daemons to provide keys for named - for host in args: - host.run_command(["systemctl", "restart", "named-pkcs11.service"]) - time.sleep(20) # give a time to named to be ready (zone loading) diff --git a/ipatests/test_integration/test_advise.py b/ipatests/test_integration/test_advise.py index 82d6d84cf..8537fb938 100644 --- a/ipatests/test_integration/test_advise.py +++ b/ipatests/test_integration/test_advise.py @@ -21,7 +21,7 @@ # pylint: disable=no-member import re -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipatests.test_integration.base import IntegrationTest diff --git a/ipatests/test_integration/test_backup_and_restore.py b/ipatests/test_integration/test_backup_and_restore.py index ffd086bae..833baed36 100644 --- a/ipatests/test_integration/test_backup_and_restore.py +++ b/ipatests/test_integration/test_backup_and_restore.py @@ -27,7 +27,7 @@ from ipaplatform.constants import constants from ipapython.ipa_log_manager import log_mgr from ipapython.dn import DN from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipatests.test_integration.test_dnssec import wait_until_record_is_signed from ipatests.util import assert_deepequal diff --git a/ipatests/test_integration/test_caless.py b/ipatests/test_integration/test_caless.py index c0f4080a9..d7692ecbb 100644 --- a/ipatests/test_integration/test_caless.py +++ b/ipatests/test_integration/test_caless.py @@ -31,7 +31,7 @@ from ipapython import ipautil from ipaplatform.paths import paths from ipapython.dn import DN from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipalib.constants import DOMAIN_LEVEL_0 _DEFAULT = object() diff --git a/ipatests/test_integration/test_customized_ds_config_install.py b/ipatests/test_integration/test_customized_ds_config_install.py index b0ee8f73e..125f81160 100644 --- a/ipatests/test_integration/test_customized_ds_config_install.py +++ b/ipatests/test_integration/test_customized_ds_config_install.py @@ -1,6 +1,6 @@ from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks DIRSRV_CONFIG_MODS = """ # https://fedorahosted.org/freeipa/ticket/4949 diff --git a/ipatests/test_integration/test_dns_locations.py b/ipatests/test_integration/test_dns_locations.py index 9bd075cfa..47a0e8567 100644 --- a/ipatests/test_integration/test_dns_locations.py +++ b/ipatests/test_integration/test_dns_locations.py @@ -8,7 +8,7 @@ import dns.rdatatype import dns.rdataclass from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipapython.dnsutil import DNSName IPA_DEFAULT_MASTER_SRV_REC = ( diff --git a/ipatests/test_integration/test_dnssec.py b/ipatests/test_integration/test_dnssec.py index 1ffa26870..0ce7071d9 100644 --- a/ipatests/test_integration/test_dnssec.py +++ b/ipatests/test_integration/test_dnssec.py @@ -8,7 +8,7 @@ import dns.name import time from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipaplatform.paths import paths test_zone = "dnssec.test." diff --git a/ipatests/test_integration/test_external_ca.py b/ipatests/test_integration/test_external_ca.py index 1228c9d65..38b4840b5 100644 --- a/ipatests/test_integration/test_external_ca.py +++ b/ipatests/test_integration/test_external_ca.py @@ -18,7 +18,7 @@ # along with this program. If not, see <http://www.gnu.org/licenses/>. import os -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipatests.test_integration.base import IntegrationTest diff --git a/ipatests/test_integration/test_forced_client_reenrollment.py b/ipatests/test_integration/test_forced_client_reenrollment.py index d430a98e7..9058e8094 100644 --- a/ipatests/test_integration/test_forced_client_reenrollment.py +++ b/ipatests/test_integration/test_forced_client_reenrollment.py @@ -22,7 +22,7 @@ from ipaplatform.paths import paths import pytest from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks CLIENT_KEYTAB = paths.KRB5_KEYTAB diff --git a/ipatests/test_integration/test_http_kdc_proxy.py b/ipatests/test_integration/test_http_kdc_proxy.py index a5eb5db91..c81a86a85 100644 --- a/ipatests/test_integration/test_http_kdc_proxy.py +++ b/ipatests/test_integration/test_http_kdc_proxy.py @@ -3,7 +3,7 @@ # import six -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipatests.test_integration.base import IntegrationTest from ipaplatform.paths import paths diff --git a/ipatests/test_integration/test_idviews.py b/ipatests/test_integration/test_idviews.py index 8482ff0c6..b4934e2ce 100644 --- a/ipatests/test_integration/test_idviews.py +++ b/ipatests/test_integration/test_idviews.py @@ -5,7 +5,7 @@ import os import re import string -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipatests.test_integration.base import IntegrationTest from ipatests.pytest_plugins.integration.env_config import get_global_config from ipaplatform.paths import paths diff --git a/ipatests/test_integration/test_installation.py b/ipatests/test_integration/test_installation.py index 954355be1..b13c9996b 100644 --- a/ipatests/test_integration/test_installation.py +++ b/ipatests/test_integration/test_installation.py @@ -11,7 +11,7 @@ import pytest from ipalib.constants import DOMAIN_LEVEL_0 from ipatests.pytest_plugins.integration.env_config import get_global_config from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks config = get_global_config() diff --git a/ipatests/test_integration/test_kerberos_flags.py b/ipatests/test_integration/test_kerberos_flags.py index a7de02952..10720bb18 100644 --- a/ipatests/test_integration/test_kerberos_flags.py +++ b/ipatests/test_integration/test_kerberos_flags.py @@ -18,7 +18,7 @@ # along with this program. If not, see <http://www.gnu.org/licenses/>. from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks class TestKerberosFlags(IntegrationTest): diff --git a/ipatests/test_integration/test_legacy_clients.py b/ipatests/test_integration/test_legacy_clients.py index 3f33ac0ea..087337ea1 100644 --- a/ipatests/test_integration/test_legacy_clients.py +++ b/ipatests/test_integration/test_legacy_clients.py @@ -26,7 +26,7 @@ import re import nose from ipaplatform.paths import paths -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks # importing test_trust under different name to avoid nose executing the test # base class imported from this module diff --git a/ipatests/test_integration/test_netgroup.py b/ipatests/test_integration/test_netgroup.py index 45f2f3f15..f78bfbeb3 100644 --- a/ipatests/test_integration/test_netgroup.py +++ b/ipatests/test_integration/test_netgroup.py @@ -5,7 +5,7 @@ import pytest from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration.tasks import clear_sssd_cache +from ipatests.pytest_plugins.integration.tasks import clear_sssd_cache test_data = [] diff --git a/ipatests/test_integration/test_replica_promotion.py b/ipatests/test_integration/test_replica_promotion.py index e75f4fcea..bc52566f1 100644 --- a/ipatests/test_integration/test_replica_promotion.py +++ b/ipatests/test_integration/test_replica_promotion.py @@ -5,12 +5,12 @@ import time import pytest from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks -from ipatests.test_integration.tasks import assert_error +from ipatests.pytest_plugins.integration import tasks +from ipatests.pytest_plugins.integration.tasks import ( + assert_error, replicas_cleanup) from ipalib.constants import DOMAIN_LEVEL_0 from ipalib.constants import DOMAIN_LEVEL_1 from ipalib.constants import DOMAIN_SUFFIX_NAME -from ipatests.test_integration.tasks import replicas_cleanup class ReplicaPromotionBase(IntegrationTest): diff --git a/ipatests/test_integration/test_replication_layouts.py b/ipatests/test_integration/test_replication_layouts.py index f50e98fac..f1408453b 100644 --- a/ipatests/test_integration/test_replication_layouts.py +++ b/ipatests/test_integration/test_replication_layouts.py @@ -7,7 +7,7 @@ import pytest from ipalib.constants import DOMAIN_LEVEL_0 from ipatests.pytest_plugins.integration.env_config import get_global_config from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks config = get_global_config() diff --git a/ipatests/test_integration/test_server_del.py b/ipatests/test_integration/test_server_del.py index 026a2286b..f5738a3a5 100644 --- a/ipatests/test_integration/test_server_del.py +++ b/ipatests/test_integration/test_server_del.py @@ -5,7 +5,7 @@ from itertools import permutations from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipalib.constants import DOMAIN_LEVEL_1, DOMAIN_SUFFIX_NAME, CA_SUFFIX_NAME REMOVAL_ERR_TEMPLATE = ("Removal of '{hostname}' leads to disconnected " diff --git a/ipatests/test_integration/test_service_permissions.py b/ipatests/test_integration/test_service_permissions.py index 59f469713..2ac70687f 100644 --- a/ipatests/test_integration/test_service_permissions.py +++ b/ipatests/test_integration/test_service_permissions.py @@ -20,7 +20,7 @@ import os from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks class TestServicePermissions(IntegrationTest): diff --git a/ipatests/test_integration/test_simple_replication.py b/ipatests/test_integration/test_simple_replication.py index e2866869a..fa21d75e6 100644 --- a/ipatests/test_integration/test_simple_replication.py +++ b/ipatests/test_integration/test_simple_replication.py @@ -23,7 +23,7 @@ import pytest from ipapython.dn import DN from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks @pytest.mark.ds_acceptance diff --git a/ipatests/test_integration/test_sudo.py b/ipatests/test_integration/test_sudo.py index 1fbdee3f6..37d0df8ae 100644 --- a/ipatests/test_integration/test_sudo.py +++ b/ipatests/test_integration/test_sudo.py @@ -20,7 +20,8 @@ import pytest from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration.tasks import clear_sssd_cache, modify_sssd_conf +from ipatests.pytest_plugins.integration.tasks import ( + clear_sssd_cache, modify_sssd_conf) from ipatests.test_integration import util diff --git a/ipatests/test_integration/test_topologies.py b/ipatests/test_integration/test_topologies.py index 4618b44fe..b19e9e775 100644 --- a/ipatests/test_integration/test_topologies.py +++ b/ipatests/test_integration/test_topologies.py @@ -17,7 +17,7 @@ # You should have received a copy of the GNU General Public License # along with this program. If not, see <http://www.gnu.org/licenses/>. -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks def test_topology_star(): diff --git a/ipatests/test_integration/test_topology.py b/ipatests/test_integration/test_topology.py index 8cf81656e..fb7047e32 100644 --- a/ipatests/test_integration/test_topology.py +++ b/ipatests/test_integration/test_topology.py @@ -7,7 +7,7 @@ import re import pytest from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipatests.pytest_plugins.integration.env_config import get_global_config from ipalib.constants import DOMAIN_SUFFIX_NAME from ipatests.util import assert_deepequal diff --git a/ipatests/test_integration/test_trust.py b/ipatests/test_integration/test_trust.py index b32e0ab97..94fde4d94 100644 --- a/ipatests/test_integration/test_trust.py +++ b/ipatests/test_integration/test_trust.py @@ -21,7 +21,7 @@ import nose import re from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks from ipatests.test_integration import util from ipaplatform.paths import paths diff --git a/ipatests/test_integration/test_vault.py b/ipatests/test_integration/test_vault.py index fb282bbfb..aca608fa6 100644 --- a/ipatests/test_integration/test_vault.py +++ b/ipatests/test_integration/test_vault.py @@ -5,7 +5,7 @@ import time from ipatests.test_integration.base import IntegrationTest -from ipatests.test_integration import tasks +from ipatests.pytest_plugins.integration import tasks WAIT_AFTER_ARCHIVE = 30 # give some time to replication |