Keystone v3 user/tenant lookup by name via OpenStack CLI client fails
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
High
|
Edmund Rhudy | ||
Kilo |
Fix Released
|
High
|
Dolph Mathews |
Bug Description
When using the openstack CLI client to look up users/tenants by name (e.g., openstack user show admin or openstack openstack project show AdminTenant), it fails with a 500 and the following traceback:
2015-05-12 09:27:22.483530 2015-05-12 09:27:22.483 31012 DEBUG keystone.
2015-05-12 09:27:22.483677 2015-05-12 09:27:22.483 31012 DEBUG keystone.
2015-05-12 09:27:22.485831 2015-05-12 09:27:22.483 31012 ERROR keystone.
2015-05-12 09:27:22.485874 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485881 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485885 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485897 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485901 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485904 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485908 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485911 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485915 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485919 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485922 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485926 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485930 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485933 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485937 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485941 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485944 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485948 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485951 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485964 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485968 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485972 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485975 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485979 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485983 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485986 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485995 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.485999 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486002 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486009 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486013 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486017 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486036 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486040 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486044 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486047 2015-05-12 09:27:22.483 31012 TRACE keystone.
2015-05-12 09:27:22.486050 2015-05-12 09:27:22.483 31012 TRACE keystone.
The LDAP filter string is being composed in a way that causes None to be substituted in at one point: (&(&None(
I traced it through the code and found that the problem method is keystone.
(I am waiting on internal permission to contribute code, so I haven't created a PR for this at this time.)
Changed in keystone: | |
assignee: | Edmund Rhudy (erhudy) → Guang Yee (guang-yee) |
Changed in keystone: | |
assignee: | Guang Yee (guang-yee) → Edmund Rhudy (erhudy) |
Changed in keystone: | |
assignee: | Edmund Rhudy (erhudy) → Brant Knudson (blk-u) |
Changed in keystone: | |
assignee: | Brant Knudson (blk-u) → Edmund Rhudy (erhudy) |
Changed in keystone: | |
milestone: | none → liberty-1 |
status: | Fix Committed → Fix Released |
Changed in keystone: | |
milestone: | liberty-1 → 8.0.0 |
Can you confirm which release you're seeing this in? If this is in a stable release, it definitely needs to be fixed.