Hi All,
I'm just testing bdb encryption and it works as expected out of the box.
But I'm trying to decrypt it using the bdb tools:
[ghenry@suretec openldap-data]$ /usr/local/BerkeleyDB.4.7/bin/db_verify objectClass.bdb db_verify: Encrypted environment: no encryption key supplied Segmentation fault
So it segfaults, but it's the same with the key:
[ghenry@suretec openldap-data]$ /usr/local/BerkeleyDB.4.7/bin/db_verify -P "testing" objectClass.bdb db_verify: Invalid password Segmentation fault
testing is set in slapd.conf via "cryptfile" and has the word "testing" in it:
(gdb) run -P testing objectClass.bdb Starting program: /usr/local/BerkeleyDB.4.7/bin/db_verify -P testing objectClass.bdb db_verify: Invalid password [New Thread 0xb7fd86c0 (LWP 17626)]
Program received signal SIGSEGV, Segmentation fault. 0x0021f82d in __memp_resize () from /usr/local/BerkeleyDB.4.7/lib/libdb-4.7.so Missing separate debuginfos, use: debuginfo-install glibc-2.9-2.i686 (gdb) bt #0 0x0021f82d in __memp_resize () from /usr/local/BerkeleyDB.4.7/lib/libdb-4.7.so #1 0x0021bac9 in __memp_set_cachesize () from /usr/local/BerkeleyDB.4.7/lib/libdb-4.7.so #2 0x08048cfd in __db_rpath () #3 0x0804b018 in ?? () #4 0x00000000 in ?? () (gdb) q
Any ideas?
Thanks.
ghenry@OpenLDAP.org wrote:
Hi All,
I'm just testing bdb encryption and it works as expected out of the box.
But I'm trying to decrypt it using the bdb tools:
[ghenry@suretec openldap-data]$ /usr/local/BerkeleyDB.4.7/bin/db_verify objectClass.bdb db_verify: Encrypted environment: no encryption key supplied Segmentation fault
Interesting. It shouldn't segfault, perhaps you should report that as a bug to Oracle.
So it segfaults, but it's the same with the key:
[ghenry@suretec openldap-data]$ /usr/local/BerkeleyDB.4.7/bin/db_verify -P "testing" objectClass.bdb db_verify: Invalid password Segmentation fault
testing is set in slapd.conf via "cryptfile" and has the word "testing" in it:
How did you create the file? If you simply created it as a plain text file, then it probably has a trailing NewLine as well. In which case, the NewLine is part of the password...
openldap-technical@openldap.org