Hello,
I've installed OpenSuse 11 on a 64bit Intel Xeon. I configured one OpenLDAP as sync provider and the second one as consumer (RefeshOnly).
But every time, a change is made in the provider and the consumer try to sync, the Provider crashs with segfault. I configured a own filter in syslog so that the slapd is logging in an exra logfile. The loglevel is -1. In the logfile are no related information. In the syslog I found following line:
Feb 18 13:30:35 ldap-11 kernel: slapd[6151]: segfault at 8 ip 7f18d3a7b695 sp 40a60400 error 4 in libc-2.8.so[7f18d3a04000+14f000]
To debug this, I turned corefiles on:
sysctl -w kernel.core_pattern=/core sysctl -w kernel.core_uses_pid = 1 ulimit -c unlimited
but no corefiles are created ...
Can anyone help me?
Thanx !!!
Here my configuration Master/Provider:
include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/rfc2307bis.schema include /etc/openldap/schema/yast.schema include /etc/openldap/schema/my.schema include /etc/openldap/schema/freeRadius.schema pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args modulepath /usr/lib/openldap/modules
sizelimit -1 disallow bind_anon
access to dn.base="" by * read
access to dn.base="cn=Subschema" by * read
access to attrs=userPassword by self auth by anonymous auth by dn="uid=replica,ou=specialusers,ou=_management,dc= mydom,dc=local" read by * none
access to dn.subtree="ou=freeRadius,ou=systeme,ou=PDB,dc=myd om,dc=local" by dn="uid=replica,ou=specialusers,ou=_management,dc= mydom,dc=local" read by * none
loglevel -1 TLSCertificateFile /etc/openldap/certs/ldapmcrt.pem TLSCACertificateFile /etc/openldap/certs/cacert.pem TLSCertificateKeyFile /etc/openldap/certs/ldapmkey.pem database bdb monitoring off suffix "dc=mydom,dc=local" checkpoint 1024 5 rootdn "uid=administrator,dc=mydom,dc=local" rootpw "{SSHA}xxxxxxxxxxxx" directory /var/lib/ldap index objectClass,entryUUID,entryCSN,uid,cn eq
overlay syncprov syncprov-checkpoint 100 10 syncprov-sessionlog 100
Here my configuration Slave/Consumer:
include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/rfc2307bis.schema include /etc/openldap/schema/yast.schema include /etc/openldap/schema/my.schema include /etc/openldap/schema/freeRadius.schema
pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args modulepath /usr/lib/openldap/modules sizelimit -1 disallow bind_anon
access to dn.base="" by * read access to dn.base="cn=Subschema" by * read access to dn.base="" by * read access to dn.base="cn=Subschema" by * read access to attrs=userPassword by self auth by anonymous auth by dn="uid=replica,ou=specialusers,ou=_management,dc= mydom,dc=local" read by * none access to dn.subtree="ou=freeRadius,ou=systeme,ou=PDB,dc=myd om,dc=local" by dn="uid=replica,ou=specialusers,ou=_management,dc= mydom,dc=local" read by * none
loglevel -1 TLSCertificateFile /etc/openldap/certs/ldapscrt.pem TLSCACertificateFile /etc/openldap/certs/cacert.pem TLSCertificateKeyFile /etc/openldap/certs/ldapskey.pem database bdb monitoring off suffix "dc=mydom,dc=local" checkpoint 1024 5 rootdn "uid=administrator,dc=mydom,dc=local" rootpw "{SSHA}xxxxxxxxxxxxxxxxxxxxxxxxxxxxx" directory /var/lib/ldap index objectClass,entryUUID,entryCSN,uid,cn eq
syncrepl rid=124 provider=ldap://ldapm:389 binddn=uid="fradius_replica,ou=specialusers,ou=_ma nagement,dc=mydom,dc=local" credentials="secretpass" type=refreshOnly interval=00:00:00:30 retry="60 10 300 3" searchbase="ou=freeRadius,ou=systeme,ou=PDB,dc=myd om,dc=local" filter="(objectClass=*)" scope=sub attrs="*" schemachecking=off bindmethod=simple starttls=critical
--On Thursday, February 19, 2009 10:36 AM +0100 Tim Stone tmstn68@googlemail.com wrote:
Hello,
I've installed OpenSuse 11 on a 64bit Intel Xeon. I configured one OpenLDAP as sync provider and the second one as consumer (RefeshOnly).
But every time, a change is made in the provider and the consumer try to sync, the Provider crashs with segfault. I configured a own filter in syslog so that the slapd is logging in an exra logfile. The loglevel is -1. In the logfile are no related information. In the syslog I found following line:
Feb 18 13:30:35 ldap-11 kernel: slapd[6151]: segfault at 8 ip 7f18d3a7b695 sp 40a60400 error 4 in libc-2.8.so[7f18d3a04000+14f000]
To debug this, I turned corefiles on:
sysctl -w kernel.core_pattern=/core sysctl -w kernel.core_uses_pid = 1 ulimit -c unlimited
but no corefiles are created ...
Can anyone help me?
What openldap release are you using? Also, in general, you probably have to set one of {kernel,fs}.suid_dumpable (the name of it depends on the kernel version) to 2 and you may need to modify /etc/profile to allow subprocesses to get ulimit -c unlimited.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
-
Quanah Gibson-Mount -
Tim Stone