ipatests: Add PTR record for IP SAN

If PTR record is missing for an IP address then cert request with SAN option throws an error. This fix is to add the PTR record so that cert request doesn't throw an error. Signed-off-by: Mohammad Rizwan <myusuf@redhat.com> Reviewed-By: Kaleemullah Siddiqui <ksiddiqu@redhat.com>
2025-02-25 18:55:28 -06:00 · 2020-08-19 12:38:41 +05:30
parent ffbbc30146
commit 32b1242549
1 changed files with 11 additions and 0 deletions
--- a/ipatests/test_integration/test_cert.py
+++ b/ipatests/test_integration/test_cert.py
@@ -99,6 +99,17 @@ class TestInstallMasterClient(IntegrationTest):
        certfile = '/etc/pki/tls/certs/test2.pem'

        tasks.kinit_admin(self.master)
+
+        zone = tasks.prepare_reverse_zone(self.master, self.clients[0].ip)[0]
+
+        # add PTR dns record for cert request with SAN extention
+        rec = str(self.clients[0].ip).split('.')[3]
+        result = self.master.run_command(
+            ['ipa', 'dnsrecord-add', zone, rec, '--ptr-rec', hostname]
+        )
+        assert 'Record name: {}'.format(rec) in result.stdout_text
+        assert 'PTR record: {}'.format(hostname) in result.stdout_text
+
        name, zone = hostname.split('.', 1)
        self.master.run_command(['ipa', 'dnsrecord-show', zone, name])
        tasks.kdestroy_all(self.master)