Re: (ITS#6789)
by sgallagh@redhat.com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Has there been any progress on this issue? It causes a lot of headaches
trying to debug connection issues in SSSD.
- --
Stephen Gallagher
RHCE 804006346421761
Delivering value year after year.
Red Hat ranks #1 in value among software vendors.
http://www.redhat.com/promo/vendor/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk2lsTIACgkQeiVVYja6o6Nh7wCdF5Sn/IsMpNH9gB8WA9A7tEgB
ctUAoKPTUIL1rfZPnArrNBmAxQ/VuEq7
=DxDR
-----END PGP SIGNATURE-----
11 years, 11 months
(ITS#6908) Query
by preeti@omnimessaging.com
Full_Name: Preeti
Version: 2.3.32
OS: Windows XP
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (114.143.122.119)
My OpenLdap Client file "ldapmodify" is missing.
Can you please provide me with the "openldap-client-2.3.32.tgz" file.
11 years, 11 months
(ITS#6907) openldap 2.4.25 segfaults when using apache directory studio to rename objects
by openldap@bromberger.com
Full_Name: Seth
Version: 2.4.25
OS: Linux (Ubuntu) 2.6.35.4
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (173.13.140.242)
Using Apache Directory Studio to interface with hdb-based openldap server via
TLS. Moving a DN from one ou to another crashes slapd. The move (the first one
if there are multiples) appears to work before slapd segfaults. An example in
the logfile:
Apr 12 17:17:52 ldap slapd[11278]: conn=1000 op=13 MODRDN
dn="uid=someuserid,ou=Organizations,dc=example,dc=org"
Apr 12 17:17:52 ldap kernel: [974579.184525] slapd[11281]: segfault at
7f0bdfab7ff8 ip 000000000049af05 sp 00007f0bdfab8000 error 6 in
slapd[400000+19e000]
This is 100% reproducible. Also affects 2.4.23-0ubuntu3.5 (ubuntu package) - I
upgraded from source to try to work around this bug.
11 years, 11 months
(ITS#6905) fix up intros to chapters 5 and 6
by Tim.Mooney@ndsu.edu
Full_Name: Tim Mooney
Version: 2.4.25
OS: Linux, Solaris
URL: ftp://ftp.openldap.org/incoming/TimMooney-110412-02.patch
Submission from: (NULL) (2001:4930:106:0:18bb:1140:fa3d:f713)
As I mentioned here
http://www.openldap.org/lists/openldap-technical/201104/msg00088.html
the LDAP admin guide is very good, but I think that the intros to chapters 5
(configuring slapd via slapd-config) and chapter 6 (configuring slapd via
slapd.conf) needed a bit of updating. Specifically
- it's not very explicit that slapd-config is now preferred and slapd.conf
should
only be used as a last resort.
- the Note that some backends don't support slapd-config was vague enough that
it
would prevent many people from choosing that route, because they wouldn't
know
whether a backend they needed would support the new-style config system. By
specifically listing which backends don't support slapd-config, hopefully
more people will be willing to begin with (or convert to) slapd-config.
I also tried to
- make it clear that chapters 5 and 6 were essentially explaining the same
thing,
but the slapd-config way is preferred.
- Although slapd-config stores its configuration in text files, they shouldn't
be
edited manually.
The patch against head has been uploaded. Any and all comments and feedback
welcome.
11 years, 11 months
Re: (ITS#6891)
by tgates81@gmail.com
Hi Quanah,
slapd does have access to the files because it re-created after I
deleted them on start.
root@directory-proxy2:/var/lib/ldap# ls -la
total 11752
drwxr-x--- 2 openldap openldap 4096 2011-04-12 16:01 .
drwxr-xr-x 44 root root 4096 2011-03-25 12:47 ..
-rw-r--r-- 1 openldap openldap 4096 2011-04-12 16:01 alock
-rw------- 1 openldap openldap 24576 2011-04-12 16:01 __db.001
-rw------- 1 openldap openldap 843776 2011-04-12 16:01 __db.002
-rw------- 1 openldap openldap 13115392 2011-04-12 16:01 __db.003
-rw------- 1 openldap openldap 2359296 2011-04-12 16:01 __db.004
-rw------- 1 openldap openldap 540672 2011-04-12 16:01 __db.005
-rw------- 1 openldap openldap 32768 2011-04-12 16:01 __db.006
-rw-r--r-- 1 openldap openldap 120 2011-04-12 14:29 DB_CONFIG
-rw------- 1 openldap openldap 8192 2011-04-12 14:29 dn2id.bdb
-rw------- 1 openldap openldap 32768 2011-04-12 14:29 id2entry.bdb
-rw------- 1 openldap openldap 10485760 2011-04-12 16:01 log.0000000001
root@directory-proxy2:/var/lib/ldap# ps aux |grep slapd
openldap 5519 0.0 0.6 56244 6316 ? Ssl 16:01 0:00
/usr/sbin/slapd -h ldap:/// ldapi:/// ldaps:/// -g openldap -u
openldap -F /etc/ldap/slapd.d
I've disabled apparmor as well..
On Tue, Apr 12, 2011 at 3:42 PM, Quanah Gibson-Mount <quanah(a)zimbra.com> wrote:
> --On Tuesday, April 12, 2011 3:04 PM -0400 Tyler Gates <tgates81(a)gmail.com>
> wrote:
>
>> I can't get a back trace because it doesn't crash under gdb, slapd
>> only responds to queries with error:
>>
>> client:
>> result: 80 Other (e.g., implementation specific) error
>> text: internal error
>> server:
>> bdb(dc=example,dc=com): PANIC: fatal region error detected; run recovery
>>
>> Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup_one
>> (type=hdb, suffix="(null)"): bi_db_open failed! (-1)
>
> These all indicate permissions issues. It sounds like the slapd instance
> does not have permissions to access the database.
>
> --Quanah
>
>
> --
>
> Quanah Gibson-Mount
> Sr. Member of Technical Staff
> Zimbra, Inc
> A Division of VMware, Inc.
> --------------------
> Zimbra :: the leader in open source messaging and collaboration
>
11 years, 11 months
Re: (ITS#6891)
by quanah@zimbra.com
--On Tuesday, April 12, 2011 3:04 PM -0400 Tyler Gates <tgates81(a)gmail.com>
wrote:
> I can't get a back trace because it doesn't crash under gdb, slapd
> only responds to queries with error:
>
> client:
> result: 80 Other (e.g., implementation specific) error
> text: internal error
> server:
> bdb(dc=example,dc=com): PANIC: fatal region error detected; run recovery
>
> Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup_one
> (type=hdb, suffix="(null)"): bi_db_open failed! (-1)
These all indicate permissions issues. It sounds like the slapd instance
does not have permissions to access the database.
--Quanah
--
Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra :: the leader in open source messaging and collaboration
11 years, 11 months
Re: (ITS#6891)
by tgates81@gmail.com
I can't get a back trace because it doesn't crash under gdb, slapd
only responds to queries with error:
client:
result: 80 Other (e.g., implementation specific) error
text: internal error
server:
bdb(dc=example,dc=com): PANIC: fatal region error detected; run recovery
This happens after every restart, even after starting with fresh
database directory.
I've never had to specify a suffix dn inside of the database backend
to pcache before, so I'm a little confused as to why this needed. When
I had started slapd fresh from after upgrading 2.4.24 (when it was
working fine) to 2.4.25, I got these error messages about it not
having one:
Apr 12 14:25:34 directory-proxy2 slapd[2526]: slapd startup: initiated.
Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup:
warning, database 0 (hdb) has no suffix
Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup_one:
starting "(unknown)"
Apr 12 14:25:34 directory-proxy2 slapd[2526]: hdb_db_open: need suffix.
Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup_one
(type=hdb, suffix="(null)"): bi_db_open failed! (-1)
Apr 12 14:25:34 directory-proxy2 slapd[2526]: slapd shutdown: initiated
Apr 12 14:25:34 directory-proxy2 slapd[2526]: ====> bdb_cache_release_all
Apr 12 14:25:34 directory-proxy2 slapd[2526]: ====> bdb_cache_release_all
Apr 12 14:25:34 directory-proxy2 slapd[2526]: slapd destroy: freeing
system resources.
Apr 12 14:25:34 directory-proxy2 slapd[2526]: slapd stopped.
I have output from strace and I can provide it if needed but it is
very lengthy and doesn't seem to provide any useful information.
On Mon, Apr 11, 2011 at 1:43 PM, Quanah Gibson-Mount <quanah(a)zimbra.com> wrote:
> --On Monday, April 11, 2011 3:32 PM +0000 tgates81(a)gmail.com wrote:
>
>> Can someone confirm whether or not this is a bug or just a
>> misconfiguration error on my part? I am at a complete loss.
>>
>
> None of what you provided as output from gdb was output from gdb. Get a
> valid backtrace.
>
> --Quanah
>
>
>
> --
>
> Quanah Gibson-Mount
> Sr. Member of Technical Staff
> Zimbra, Inc
> A Division of VMware, Inc.
> --------------------
> Zimbra :: the leader in open source messaging and collaboration
>
11 years, 11 months