openldap-bugs November 2009

openldap-bugs@openldap.org

40 participants
183 discussions

Re: (ITS#6374) LDAP
by michael＠stroeder.com 12 Nov '09

12 Nov '09

atzig(a)mail2tim.com wrote: > Full_Name: Tim > Version: ? > OS: Win2003 > URL: ftp://ftp.openldap.org/incoming/ > Submission from: (NULL) (216.62.17.129) > > > "Error 10: Referral" > > Unable to perform LDAP search - Error 10: Referral > This error means that the user's record in Active Directory was located on some > other server. > A "referral" in LDAP is simply a pointer or redirection to some other location > (or server). The "Error 10: Referral" error is usually caused by a misconfigured > LDAPBaseDN setting > > > LDAP was working correctly...started to receive this error after upgrading from > win2003 AD to Win2008. Could you please elaborate on what's the issue is with OpenLDAP client libs and/or tools? Ciao, Michael.

1 0

(ITS#6374) LDAP
by atzig＠mail2tim.com 12 Nov '09

12 Nov '09

Full_Name: Tim Version: ? OS: Win2003 URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (216.62.17.129) "Error 10: Referral" Unable to perform LDAP search - Error 10: Referral This error means that the user's record in Active Directory was located on some other server. A "referral" in LDAP is simply a pointer or redirection to some other location (or server). The "Error 10: Referral" error is usually caused by a misconfigured LDAPBaseDN setting LDAP was working correctly...started to receive this error after upgrading from win2003 AD to Win2008.

1 0

Re: (ITS#6368) Bug in deleting entry in MirrorMode
by pitpalme＠gmail.com 12 Nov '09

12 Nov '09

--001636988beae98b80047830ba81 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable pitpalme(a)gmail.com wrote: > masarati(a)aero.polimi.it wrote: > > pitpalme(a)gmail.com wrote: >> >> I do see attributes reflecting state after "modify" (which changes >>> "sn" attribute). >>> Where exactly should I expect to see a note about "glue state"? >>> Is output from "-d Any" helpful to figure what's going on (or wrong)? >>> >> >> My understanding of your previous message was that you got a positive >> result from delete, but an "Already exists" from a subsequent add. >> > > That=92s korrekt. > > > I inferred that you checked about the existence of the object and you go= t >> a negative result. >> > > In my current test scenario I do not check. > I assume a non-error on =84delete=93 in fact =84deletes=93, so I just che= ck if > response > code success (in Perl: '$res->code =3D=3D Net::LDAP::LDAP_SUCCESS=91). > > > Apparently, my guess was wrong. In that case, you probably hit >> ITS#6097 <http://www.openldap.org/its?findid=3D6097>. >> > > *hmmm* Good idea, thanks. > But after reading ITS description I don=92t think it=92s what troubles m= e. > We don=92t actually neither have =84multi master mode=93, but =84mirror m= ode=93 and > writes are done only on exactly one server, so there should not be a prob= lem > with second server producing a concurrent write/modify. > I=92d expect the delete to be correctly propagated, but I can=92t check i= t is > is, simply because I have to little knowledge to read debug log correctly= . Follow up: I modified my test Perl script to do a 'ldapSearch' after deleting and it returns zero as number of found entries. Sadly I have no idea, how to emulate '-MM' when using 'Net::LDAP' and it's search function, so I can't check for 'glue' entries this way. --=20 Regards, Peter --001636988beae98b80047830ba81 Content-Type: text/html; charset=windows-1252 Content-Transfer-Encoding: quoted-printable <div class=3D"gmail_quote"><span dir=3D"ltr"><a href=3D"mailto:pitpalme@gma= il.com">pitpalme(a)gmail.com</a></span>=A0wrote:<br><blockquote class=3D"gmai= l_quote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left= :1ex;"><div class=3D"im"> <a href=3D"mailto:masarati@aero.polimi.it" target=3D"_blank">masarati(a)aero.= polimi.it</a> wrote:<br> <br> </div><div class=3D"im"><blockquote class=3D"gmail_quote" style=3D"margin:0= 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> <a href=3D"mailto:pitpalme@gmail.com" target=3D"_blank">pitpalme(a)gmail.com<= /a> wrote:<br> <br> <blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p= x #ccc solid;padding-left:1ex"> I do see attributes reflecting state after "modify" (which change= s<br> "sn" attribute).<br> Where exactly should I expect to see a note about "glue state"?<b= r> Is output from "-d Any" helpful to figure what's going on (or= wrong)?<br> </blockquote> <br> My understanding of your previous message was that you got a positive<br> result from delete, but an "Already exists" from a subsequent add= .<br> </blockquote> <br></div> That=92s korrekt.<div class=3D"im"><br> <br> <blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p= x #ccc solid;padding-left:1ex"> I inferred that you checked about the existence of the object and you got<b= r> a negative result.<br> </blockquote> <br></div> In my current test scenario I do not check.<br> I assume a non-error on =84delete=93 in fact =84deletes=93, so I just check= if response<br> code success (in Perl: '$res->code =3D=3D Net::LDAP::LDAP_SUCCESS=91= ).<div class=3D"im"><br> <br> <blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p= x #ccc solid;padding-left:1ex"> Apparently, my guess was wrong. =A0In that case, you probably hit<br> ITS#6097 <<a href=3D"http://www.openldap.org/its?findid=3D6097" target= =3D"_blank">http://www.openldap.org/its?findid=3D6097</a>>.<br> </blockquote> <br></div> *hmmm* Good idea, thanks.<br> But after reading ITS description I don=92t think it=92s =A0what troubles m= e.<br> We don=92t actually neither have =84multi master mode=93, but =84mirror mod= e=93 and writes are done only on exactly one server, so there should not be= a problem with second server producing a concurrent write/modify.<br> I=92d expect the delete to be correctly propagated, but I can=92t check it = is is, simply because I have to little knowledge to read debug log correctl= y.</blockquote></div><div><br></div>Follow up:<div><br></div><div>I modifie= d my test Perl script to do a 'ldapSearch' after deleting and it re= turns zero as number of found entries.</div> <div>Sadly I have no idea, how to emulate '-MM' when using 'Net= ::LDAP' and it's search function, so I can't check for 'glu= e' entries this way.</div><div>-- <br>Regards, <div>Peter</div></div> --001636988beae98b80047830ba81--

1 0

Re: (ITS#6368) Bug in deleting entry in MirrorMode
by pitpalme＠gmail.com 12 Nov '09

12 Nov '09

masarati(a)aero.polimi.it wrote: > pitpalme(a)gmail.com wrote: > >> I do see attributes reflecting state after "modify" (which changes >> "sn" attribute). >> Where exactly should I expect to see a note about "glue state"? >> Is output from "-d Any" helpful to figure what's going on (or wrong)? > > My understanding of your previous message was that you got a positive > result from delete, but an "Already exists" from a subsequent add. That=92s korrekt. > I inferred that you checked about the existence of the object and =20 > you got > a negative result. In my current test scenario I do not check. I assume a non-error on =84delete=93 in fact =84deletes=93, so I just = check if =20 response code success (in Perl: '$res->code =3D=3D Net::LDAP::LDAP_SUCCESS=91). > Apparently, my guess was wrong. In that case, you probably hit > ITS#6097 <http://www.openldap.org/its?findid=3D6097>. *hmmm* Good idea, thanks. But after reading ITS description I don=92t think it=92s what troubles = me. We don=92t actually neither have =84multi master mode=93, but =84mirror = mode=93 =20 and writes are done only on exactly one server, so there should not be =20= a problem with second server producing a concurrent write/modify. I=92d expect the delete to be correctly propagated, but I can=92t check = it =20 is is, simply because I have to little knowledge to read debug log =20 correctly. =97 Regards, Peter

1 0

Re: (ITS#6368) Bug in deleting entry in MirrorMode
by masarati＠aero.polimi.it 12 Nov '09

12 Nov '09

pitpalme(a)gmail.com wrote: > I do see attributes reflecting state after "modify" (which changes > "sn" attribute). > Where exactly should I expect to see a note about "glue state"? > Is output from "-d Any" helpful to figure what's going on (or wrong)? My understanding of your previous message was that you got a positive result from delete, but an "Already exists" from a subsequent add. I inferred that you checked about the existence of the object and you got a negative result. Apparently, my guess was wrong. In that case, you probably hit ITS#6097 <http://www.openldap.org/its?findid=6097>. p.

1 0

Re: (ITS#6368) Bug in deleting entry in MirrorMode
by pitpalme＠gmail.com 11 Nov '09

11 Nov '09

masarati(a)aero.polimi.it wrote: > pitpalme+openldap(a)gmail.com wrote: >> [...] >> When adding, modifying and deleting an entry it can happend I do >> get a positive >> return from delete, but a subsequent "add" fails with "code=68: >> Already >> exists". > > Can you check whether the entry actually exist, although in "glue" > state? You can do this by searching (e.g. with ldapsearch) as the > rootdn, to bypass access checking, and using the manageDSAit control > (-MM). I modified my test perl script to exit if adding the entry failed, albeit a preceding delete should have removed it. Then I manually ran ldapsearch -D "rootdn" ... -b "TestBaseDN" -MM "cn=TestEntry" I got ==== 8>< ========================== [...] # with manageDSAit critical control [...] dn: cn=TestEntry,TestBaseDN objectClass: inetOrgPerson description: oldValue [...] # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 ==== 8>< ========================== I do see attributes reflecting state after "modify" (which changes "sn" attribute). Where exactly should I expect to see a note about "glue state"? Is output from "-d Any" helpful to figure what's going on (or wrong)? -- Regards, Peter

1 0

Re: (ITS#6300) Add kqueue support to slapd
by bduncan＠apple.com 11 Nov '09

11 Nov '09

On Nov 11, 2009, at 9:45 AM, Quanah Gibson-Mount wrote: > --On Wednesday, November 11, 2009 9:36 AM -0800 Bryan Duncan = <bduncan(a)apple.com> wrote: >=20 >>=20 >> On Nov 11, 2009, at 9:04 AM, Quanah Gibson-Mount wrote: >>=20 >>> --On Tuesday, September 22, 2009 2:40 PM -0700 Bryan Duncan >>> <bduncan(a)apple.com> wrote: >>>=20 >>>=20 >>>> It was tested on OS X 10.6. Should work on all BSDs; nothing >>>> OSX-specific about the kqueue usage in the patch. As far as kqueue >>>> support in OS X 10.5, from what I see, most everything is there. >>>> Certainly all of the kqueue features in this patch are supported in = OS X >>>> 10.5. >>>=20 >>> Hi Bryan, >>>=20 >>> The URL to the patch you submitted with this ITS doesn't work. Can = you >>> please put the patch somewhere accessible and let us know where it = is? >>>=20 >>> Thanks, >>> Quanah >>=20 >> Hi Quanah, >>=20 >> My apologies for the bad URL. >>=20 >> The new URL is: >> http://public.me.com/bryan.duncan/bryan-duncan.kqueue.090922.patch If = you >> use a web browser to get it, there are extra steps: select the file >> "bryan-duncan.kqueue.090922.patch" and click download. ftp & curl = can >> pull it down directly with no extra steps. >=20 > Hi Bryan, >=20 > Thanks for the quick response. Hopefully we can get this incorporated = for OpenLDAP 2.5 series, and I'm interested in playing with it against = 2.4 to see how things change when used with Mac. >=20 > Thanks! >=20 > --Quanah Awesome! I look forward to seeing it OpenLDAP. If there's anything I = can do to help, please let me know. Thanks.=20 -- Bryan

1 0

Re: (ITS#6300) Add kqueue support to slapd
by quanah＠zimbra.com 11 Nov '09

11 Nov '09

--On Wednesday, November 11, 2009 9:36 AM -0800 Bryan Duncan <bduncan(a)apple.com> wrote: > > On Nov 11, 2009, at 9:04 AM, Quanah Gibson-Mount wrote: > >> --On Tuesday, September 22, 2009 2:40 PM -0700 Bryan Duncan >> <bduncan(a)apple.com> wrote: >> >> >>> It was tested on OS X 10.6. Should work on all BSDs; nothing >>> OSX-specific about the kqueue usage in the patch. As far as kqueue >>> support in OS X 10.5, from what I see, most everything is there. >>> Certainly all of the kqueue features in this patch are supported in OS X >>> 10.5. >> >> Hi Bryan, >> >> The URL to the patch you submitted with this ITS doesn't work. Can you >> please put the patch somewhere accessible and let us know where it is? >> >> Thanks, >> Quanah > > Hi Quanah, > > My apologies for the bad URL. > > The new URL is: > http://public.me.com/bryan.duncan/bryan-duncan.kqueue.090922.patch If you > use a web browser to get it, there are extra steps: select the file > "bryan-duncan.kqueue.090922.patch" and click download. ftp & curl can > pull it down directly with no extra steps. Hi Bryan, Thanks for the quick response. Hopefully we can get this incorporated for OpenLDAP 2.5 series, and I'm interested in playing with it against 2.4 to see how things change when used with Mac. Thanks! --Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration

1 0

Re: (ITS#6300) Add kqueue support to slapd
by bduncan＠apple.com 11 Nov '09

11 Nov '09

On Nov 11, 2009, at 9:04 AM, Quanah Gibson-Mount wrote: > --On Tuesday, September 22, 2009 2:40 PM -0700 Bryan Duncan = <bduncan(a)apple.com> wrote: >=20 >=20 >> It was tested on OS X 10.6. Should work on all BSDs; nothing >> OSX-specific about the kqueue usage in the patch. As far as kqueue >> support in OS X 10.5, from what I see, most everything is there. >> Certainly all of the kqueue features in this patch are supported in = OS X >> 10.5. >=20 > Hi Bryan, >=20 > The URL to the patch you submitted with this ITS doesn't work. Can = you please put the patch somewhere accessible and let us know where it = is? >=20 > Thanks, > Quanah Hi Quanah, My apologies for the bad URL. The new URL is: = http://public.me.com/bryan.duncan/bryan-duncan.kqueue.090922.patch If you use a web browser to get it, there are extra steps: select the = file "bryan-duncan.kqueue.090922.patch" and click download. ftp & curl = can pull it down directly with no extra steps. -- Bryan=

1 0

Re: (ITS#6300) Add kqueue support to slapd
by quanah＠zimbra.com 11 Nov '09

11 Nov '09

--On Tuesday, September 22, 2009 2:40 PM -0700 Bryan Duncan <bduncan(a)apple.com> wrote: > It was tested on OS X 10.6. Should work on all BSDs; nothing > OSX-specific about the kqueue usage in the patch. As far as kqueue > support in OS X 10.5, from what I see, most everything is there. > Certainly all of the kqueue features in this patch are supported in OS X > 10.5. Hi Bryan, The URL to the patch you submitted with this ITS doesn't work. Can you please put the patch somewhere accessible and let us know where it is? Thanks, Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration

1 0

← Newer
1
...
12
13
14
15
16
17
18
19
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-bugs November 2009