Re: (ITS#6789)
by sgallagh@redhat.com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Has there been any progress on this issue? It causes a lot of headaches
trying to debug connection issues in SSSD.
- --
Stephen Gallagher
RHCE 804006346421761
Delivering value year after year.
Red Hat ranks #1 in value among software vendors.
http://www.redhat.com/promo/vendor/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk2lsTIACgkQeiVVYja6o6Nh7wCdF5Sn/IsMpNH9gB8WA9A7tEgB
ctUAoKPTUIL1rfZPnArrNBmAxQ/VuEq7
=DxDR
-----END PGP SIGNATURE-----
12 years, 7 months
(ITS#6908) Query
by preeti@omnimessaging.com
Full_Name: Preeti
Version: 2.3.32
OS: Windows XP
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (114.143.122.119)
My OpenLdap Client file "ldapmodify" is missing.
Can you please provide me with the "openldap-client-2.3.32.tgz" file.
12 years, 7 months
(ITS#6907) openldap 2.4.25 segfaults when using apache directory studio to rename objects
by openldap@bromberger.com
Full_Name: Seth
Version: 2.4.25
OS: Linux (Ubuntu) 2.6.35.4
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (173.13.140.242)
Using Apache Directory Studio to interface with hdb-based openldap server via
TLS. Moving a DN from one ou to another crashes slapd. The move (the first one
if there are multiples) appears to work before slapd segfaults. An example in
the logfile:
Apr 12 17:17:52 ldap slapd[11278]: conn=1000 op=13 MODRDN
dn="uid=someuserid,ou=Organizations,dc=example,dc=org"
Apr 12 17:17:52 ldap kernel: [974579.184525] slapd[11281]: segfault at
7f0bdfab7ff8 ip 000000000049af05 sp 00007f0bdfab8000 error 6 in
slapd[400000+19e000]
This is 100% reproducible. Also affects 2.4.23-0ubuntu3.5 (ubuntu package) - I
upgraded from source to try to work around this bug.
12 years, 7 months
(ITS#6905) fix up intros to chapters 5 and 6
by Tim.Mooney@ndsu.edu
Full_Name: Tim Mooney
Version: 2.4.25
OS: Linux, Solaris
URL: ftp://ftp.openldap.org/incoming/TimMooney-110412-02.patch
Submission from: (NULL) (2001:4930:106:0:18bb:1140:fa3d:f713)
As I mentioned here
http://www.openldap.org/lists/openldap-technical/201104/msg00088.html
the LDAP admin guide is very good, but I think that the intros to chapters 5
(configuring slapd via slapd-config) and chapter 6 (configuring slapd via
slapd.conf) needed a bit of updating. Specifically
- it's not very explicit that slapd-config is now preferred and slapd.conf
should
only be used as a last resort.
- the Note that some backends don't support slapd-config was vague enough that
it
would prevent many people from choosing that route, because they wouldn't
know
whether a backend they needed would support the new-style config system. By
specifically listing which backends don't support slapd-config, hopefully
more people will be willing to begin with (or convert to) slapd-config.
I also tried to
- make it clear that chapters 5 and 6 were essentially explaining the same
thing,
but the slapd-config way is preferred.
- Although slapd-config stores its configuration in text files, they shouldn't
be
edited manually.
The patch against head has been uploaded. Any and all comments and feedback
welcome.
12 years, 7 months
Re: (ITS#6891)
by tgates81@gmail.com
Hi Quanah,
slapd does have access to the files because it re-created after I
deleted them on start.
root@directory-proxy2:/var/lib/ldap# ls -la
total 11752
drwxr-x--- 2 openldap openldap 4096 2011-04-12 16:01 .
drwxr-xr-x 44 root root 4096 2011-03-25 12:47 ..
-rw-r--r-- 1 openldap openldap 4096 2011-04-12 16:01 alock
-rw------- 1 openldap openldap 24576 2011-04-12 16:01 __db.001
-rw------- 1 openldap openldap 843776 2011-04-12 16:01 __db.002
-rw------- 1 openldap openldap 13115392 2011-04-12 16:01 __db.003
-rw------- 1 openldap openldap 2359296 2011-04-12 16:01 __db.004
-rw------- 1 openldap openldap 540672 2011-04-12 16:01 __db.005
-rw------- 1 openldap openldap 32768 2011-04-12 16:01 __db.006
-rw-r--r-- 1 openldap openldap 120 2011-04-12 14:29 DB_CONFIG
-rw------- 1 openldap openldap 8192 2011-04-12 14:29 dn2id.bdb
-rw------- 1 openldap openldap 32768 2011-04-12 14:29 id2entry.bdb
-rw------- 1 openldap openldap 10485760 2011-04-12 16:01 log.0000000001
root@directory-proxy2:/var/lib/ldap# ps aux |grep slapd
openldap 5519 0.0 0.6 56244 6316 ? Ssl 16:01 0:00
/usr/sbin/slapd -h ldap:/// ldapi:/// ldaps:/// -g openldap -u
openldap -F /etc/ldap/slapd.d
I've disabled apparmor as well..
On Tue, Apr 12, 2011 at 3:42 PM, Quanah Gibson-Mount <quanah(a)zimbra.com> wrote:
> --On Tuesday, April 12, 2011 3:04 PM -0400 Tyler Gates <tgates81(a)gmail.com>
> wrote:
>
>> I can't get a back trace because it doesn't crash under gdb, slapd
>> only responds to queries with error:
>>
>> client:
>> result: 80 Other (e.g., implementation specific) error
>> text: internal error
>> server:
>> bdb(dc=example,dc=com): PANIC: fatal region error detected; run recovery
>>
>> Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup_one
>> (type=hdb, suffix="(null)"): bi_db_open failed! (-1)
>
> These all indicate permissions issues. It sounds like the slapd instance
> does not have permissions to access the database.
>
> --Quanah
>
>
> --
>
> Quanah Gibson-Mount
> Sr. Member of Technical Staff
> Zimbra, Inc
> A Division of VMware, Inc.
> --------------------
> Zimbra :: the leader in open source messaging and collaboration
>
12 years, 7 months
Re: (ITS#6891)
by quanah@zimbra.com
--On Tuesday, April 12, 2011 3:04 PM -0400 Tyler Gates <tgates81(a)gmail.com>
wrote:
> I can't get a back trace because it doesn't crash under gdb, slapd
> only responds to queries with error:
>
> client:
> result: 80 Other (e.g., implementation specific) error
> text: internal error
> server:
> bdb(dc=example,dc=com): PANIC: fatal region error detected; run recovery
>
> Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup_one
> (type=hdb, suffix="(null)"): bi_db_open failed! (-1)
These all indicate permissions issues. It sounds like the slapd instance
does not have permissions to access the database.
--Quanah
--
Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra :: the leader in open source messaging and collaboration
12 years, 7 months
Re: (ITS#6891)
by tgates81@gmail.com
I can't get a back trace because it doesn't crash under gdb, slapd
only responds to queries with error:
client:
result: 80 Other (e.g., implementation specific) error
text: internal error
server:
bdb(dc=example,dc=com): PANIC: fatal region error detected; run recovery
This happens after every restart, even after starting with fresh
database directory.
I've never had to specify a suffix dn inside of the database backend
to pcache before, so I'm a little confused as to why this needed. When
I had started slapd fresh from after upgrading 2.4.24 (when it was
working fine) to 2.4.25, I got these error messages about it not
having one:
Apr 12 14:25:34 directory-proxy2 slapd[2526]: slapd startup: initiated.
Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup:
warning, database 0 (hdb) has no suffix
Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup_one:
starting "(unknown)"
Apr 12 14:25:34 directory-proxy2 slapd[2526]: hdb_db_open: need suffix.
Apr 12 14:25:34 directory-proxy2 slapd[2526]: backend_startup_one
(type=hdb, suffix="(null)"): bi_db_open failed! (-1)
Apr 12 14:25:34 directory-proxy2 slapd[2526]: slapd shutdown: initiated
Apr 12 14:25:34 directory-proxy2 slapd[2526]: ====> bdb_cache_release_all
Apr 12 14:25:34 directory-proxy2 slapd[2526]: ====> bdb_cache_release_all
Apr 12 14:25:34 directory-proxy2 slapd[2526]: slapd destroy: freeing
system resources.
Apr 12 14:25:34 directory-proxy2 slapd[2526]: slapd stopped.
I have output from strace and I can provide it if needed but it is
very lengthy and doesn't seem to provide any useful information.
On Mon, Apr 11, 2011 at 1:43 PM, Quanah Gibson-Mount <quanah(a)zimbra.com> wrote:
> --On Monday, April 11, 2011 3:32 PM +0000 tgates81(a)gmail.com wrote:
>
>> Can someone confirm whether or not this is a bug or just a
>> misconfiguration error on my part? I am at a complete loss.
>>
>
> None of what you provided as output from gdb was output from gdb. Get a
> valid backtrace.
>
> --Quanah
>
>
>
> --
>
> Quanah Gibson-Mount
> Sr. Member of Technical Staff
> Zimbra, Inc
> A Division of VMware, Inc.
> --------------------
> Zimbra :: the leader in open source messaging and collaboration
>
12 years, 7 months