Add BigLDAP topology by thalman · Pull Request #251 · SSSD/sssd-test-framework

thalman · 2026-05-28T12:49:17Z

This patch expects that ldap container/vm has ldap backup 'largedata'. This backup is restored when BigLDAP topology is used.

Restore process is quite fast (~2s).

This patch expects that ldap container/vm has ldap backup 'largedata'. This backup is restored when BigLDAP topology is used. Restore process is quite fast (~2s).

gemini-code-assist

Code Review

This pull request introduces a new BigLDAPTopologyController and its corresponding topology mark BigLDAP to support LDAP topologies with large amounts of users and groups. The feedback points out several issues in the topology_setup implementation of BigLDAPTopologyController, including bypassing the self.provisioned check, hardcoding service management commands and instance names instead of using existing abstractions, and missing error handling decorators. A refactoring suggestion is provided to address these issues.

gemini-code-assist · 2026-05-28T12:50:02Z

+    def topology_setup(self, client: ClientHost, ldap: LDAPHost) -> None:
+        ldap.conn.run(
+            "systemctl stop dirsrv@localhost.service && "
+            "dsctl slapd-localhost bak2db largedata && "
+            "systemctl start dirsrv@localhost.service"
+        )
+        super().topology_setup()


There are several issues with the current implementation of topology_setup in BigLDAPTopologyController:

Bypassing self.provisioned: The setup commands are executed even if self.provisioned is True. This defeats the purpose of pre-provisioned topologies (which are meant to skip setup/provisioning steps to save time).

Hardcoded Service Management: Hardcoding systemctl stop dirsrv@localhost.service and systemctl start dirsrv@localhost.service bypasses the LDAPHost service management abstraction (ldap.stop() and ldap.start()), which respects the configured ldap_service_name.

Hardcoded Instance Name: Hardcoding slapd-localhost assumes the instance name is always localhost. We can dynamically extract the instance name from ldap._ldap_service_name.

Missing Error Handling Decorator: Other topology controllers use @BackupTopologyController.restore_vanilla_on_error to ensure the environment is restored to a clean state if setup fails.

We can address all of these by refactoring the method.

Suggested change

def topology_setup(self, client: ClientHost, ldap: LDAPHost) -> None:

ldap.conn.run(

"systemctl stop dirsrv@localhost.service && "

"dsctl slapd-localhost bak2db largedata && "

"systemctl start dirsrv@localhost.service"

)

super().topology_setup()

@BackupTopologyController.restore_vanilla_on_error

def topology_setup(self, client: ClientHost, ldap: LDAPHost) -> None:

if not self.provisioned:

instance = ldap._ldap_service_name.split("@")[-1].split(".")[0]

ldap.stop()

ldap.conn.run(f"dsctl {instance} bak2db largedata")

ldap.start()

super().topology_setup()

Add BigLDAP topology

dfbd056

This patch expects that ldap container/vm has ldap backup 'largedata'. This backup is restored when BigLDAP topology is used. Restore process is quite fast (~2s).

thalman requested a review from pbrezina May 28, 2026 12:49

gemini-code-assist Bot reviewed May 28, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add BigLDAP topology#251

Add BigLDAP topology#251
thalman wants to merge 1 commit into
SSSD:masterfrom
thalman:big_ldap

thalman commented May 28, 2026

Uh oh!

gemini-code-assist Bot left a comment

Uh oh!

gemini-code-assist Bot May 28, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

thalman commented May 28, 2026

Uh oh!

gemini-code-assist Bot left a comment

Choose a reason for hiding this comment

Code Review

Uh oh!

gemini-code-assist Bot May 28, 2026

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant