Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#25401 - [openldap] fails to start after fresh install
Attached to Project:
Arch Linux
Opened by Thomas S Hatch (thatch45) - Thursday, 04 August 2011, 17:44 GMT
Last edited by Eric Belanger (Snowman) - Tuesday, 03 January 2012, 20:41 GMT
Opened by Thomas S Hatch (thatch45) - Thursday, 04 August 2011, 17:44 GMT
Last edited by Eric Belanger (Snowman) - Tuesday, 03 January 2012, 20:41 GMT
|
DetailsAfter installing openldap on a fresh virtual machine the slapd daemon fails to start. There were some missing libs found when we ran ldd on slapd as well, but the slapd daemon still fails to start after adding the libs.
I have attached the strace output from running slapd. This can be reproduced by installing openldap on a bare Arch install and trying to start it 
out
(32.4 KiB)
|
This task depends upon
Closed by Eric Belanger (Snowman)
Tuesday, 03 January 2012, 20:41 GMT
Reason for closing: No response
Additional comments about closing: seems to be fixed
Tuesday, 03 January 2012, 20:41 GMT
Reason for closing: No response
Additional comments about closing: seems to be fixed
$ ldd /usr/sbin/slapd
linux-vdso.so.1 => (0x00007fffd7dff000)
libldap_r-2.4.so.2 => /usr/lib/libldap_r-2.4.so.2 (0x00007f9ddeb0f000)
liblber-2.4.so.2 => /usr/lib/liblber-2.4.so.2 (0x00007f9dde901000)
libltdl.so.7 => /usr/lib/libltdl.so.7 (0x00007f9dde6f8000)
libuuid.so.1 => /lib/libuuid.so.1 (0x00007f9dde4f4000)
libdb-5.2.so => /usr/lib/libdb-5.2.so (0x00007f9dde14d000)
libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x00007f9dddf33000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0x00007f9dddcfc000)
libpthread.so.0 => /lib/libpthread.so.0 (0x00007f9dddadf000)
libc.so.6 => /lib/libc.so.6 (0x00007f9ddd77e000)
libresolv.so.2 => /lib/libresolv.so.2 (0x00007f9ddd567000)
libfetch.so => /usr/lib/libfetch.so (0x00007f9ddd357000)
libcom_err.so.2 => /lib/libcom_err.so.2 (0x00007f9ddd154000)
libssl.so.1.0.0 => /usr/lib/libssl.so.1.0.0 (0x00007f9ddcef8000)
libcrypto.so.1.0.0 => /usr/lib/libcrypto.so.1.0.0 (0x00007f9ddcb3c000)
libdl.so.2 => /lib/libdl.so.2 (0x00007f9ddc938000)
/lib/ld-linux-x86-64.so.2 (0x00007f9dded5f000)
libz.so.1 => /usr/lib/libz.so.1 (0x00007f9ddc720000)
libsasl2.so.2
libuuid.so.1
Is what my engineer is telling me, and yes, I logged in and out, and rebooted, but it will still not start. When I installed to help him test the issue on another vm the ldd was clean.
/usr/lib/libdb-5.2.so is owned by db 5.2.28-1
/usr/lib/libsasl2.so.2 is owned by libsasl 2.1.23-7
/lib/libuuid.so.1 is owned by util-linux 2.19.1-2
libsasl is a depends for libldap which is a depends for openldap. The other are base package or depends of base package. I don't know why they were missing. Is the system up-to-date? Was the installation successful? Maybe try reinstalling the base group.
What error message do you get when running slapd from the command line? You'll need to use the "-u ldap -g ldap" options so it runs as ldap user/group.
We have been working on this but we had to stall that project for a few weeks. But what fixed it was a rebuild of the package. We also made some changes to the PKGBUILD, I would say that a rebuild fixed it, and once my engineer is back on the project we will send the PKGBUILD we are using to see if the changes in the build are good idea.
That should be another ticket, until then, a rebuild fixes the issues we were experiencing.
[root@server ~]# /usr/sbin/slapd -u ldap -g ldap -h "ldap://127.0.0.1:389/ ldaps:///";
@(#) $OpenLDAP: slapd 2.4.26 (Jul 24 2011 21:58:26) $
nobody@ovide:/build/src/openldap-2.4.26/servers/slapd
ldap_pvt_gethostbyname_a: host=server, r=0
daemon_init: ldap://127.0.0.1:389/ ldaps:///
daemon_init: listen on ldap://127.0.0.1:389/
daemon_init: listen on ldaps:///
daemon_init: 2 listeners to open...
ldap_url_parse_ext(ldap://127.0.0.1:389/)
daemon: listener initialized ldap://127.0.0.1:389/
ldap_url_parse_ext(ldaps:///)
daemon: listener initialized ldaps:///
daemon_init: 3 listeners opened
ldap_create
ldap_url_parse_ext(ldap://127.0.0.1/)
ldap_create
ldap_url_parse_ext(ldap://127.0.0.1/)
ldap_create
ldap_url_parse_ext(ldap://127.0.0.1/)
ldap_simple_bind
ldap_sasl_bind
ldap_send_initial_request
ldap_new_connection 1 1 0
ldap_int_open_connection
ldap_connect_to_host: TCP 127.0.0.1:389
ldap_new_socket: 10
ldap_prepare_socket: 10
ldap_connect_to_host: Trying 127.0.0.1:389
ldap_pvt_connect: fd: 10 tm: 30 async: 0
ldap_ndelay_on: 10
ldap_int_poll: fd: 10 tm: 30
ldap_is_sock_ready: 10
ldap_is_socket_ready: error on socket 10: errno: 111 (Connection refused)
ldap_pvt_connect: -1
ldap_close_socket: 10
ldap_err2string
ldap_unbind
...
ls -l /run/
ls -l /var/lib/
sudo ls -lR /var/lib/openldap/
sudo ls -lR /etc/openldap/
I want to make sure that you have the correct permissions.
Also, if you do a:
sudo chown root:ldap /etc/openldap/schema/*
does it fix your problem? Maybe I need to also change the perm of these files.
[root@server lib]# ls -l /run/
insgesamt 0
drwxr-xr-x 2 root root 400 5. Sep 08:45 daemons
drwxrwxrwt 2 root root 40 4. Sep 23:11 lock
drwxr-xr-x 2 ldap ldap 40 5. Sep 08:44 openldap
drwxr-xr-x 7 root root 160 7. Sep 13:00 udev
[root@server lib]# ls -l /var/lib/
insgesamt 116
drwxr-xr-x 4 root root 4096 23. Mai 22:11 AccountsService
drwxr-xr-x 2 root root 4096 19. Jul 00:46 arpd
drwxr-xr-x 2 root root 4096 20. Jul 2010 blockcontrol
drwxr-xr-x 2 root root 4096 1. Aug 12:20 bluetooth
drwxr-xr-x 2 root root 4096 25. Mai 2010 dbus
drwxr-xr-x 2 root root 4096 4. Sep 23:11 dhcpcd
drwxrwxrwt 2 root root 4096 6. Apr 14:27 ex
drwxr-xr-x 2 root root 4096 25. Mai 2010 hwclock
drwxr-xr-x 2 root root 4096 27. Jul 17:32 iptables
drwxr-xr-x 2 root root 4096 30. Apr 10:08 iptraf
drwxr-xr-x 2 root root 4096 30. Jul 09:10 krb5kdc
-rw-r--r-- 1 root root 588 26. Mai 2010 logrotate.status
drwxr-xr-x 2 root root 4096 5. Jul 08:47 mediatomb
drwxr-xr-x 2 root root 4096 4. Sep 23:10 misc
drwx------ 3 89 89 4096 8. Feb 2011 mysql
drwxr-xr-x 3 root root 4096 17. Sep 2010 neatx
drwxr-xr-x 6 root root 4096 4. Sep 21:37 nfs
drwxr-xr-x 2 root root 4096 3. Apr 19:50 ntp
drwx------ 5 ldap ldap 4096 4. Sep 22:30 openldap
drwxr-xr-x 4 root root 4096 5. Sep 08:29 pacman
drwx------ 3 root root 4096 31. Aug 16:27 polkit-1
drwxr-xr-x 2 root root 4096 3. Mai 12:28 postgres
drwxr-xr-x 2 root root 4096 12. Sep 2008 rarian
drwxr-xr-x 4 root root 4096 8. Sep 08:36 samba
drwx------ 3 root root 4096 6. Sep 2010 sudo
drwxr-xr-x 2 root root 4096 4. Sep 23:11 syslog-ng
drwx------ 2 root root 4096 26. Aug 18:47 udisks
drwxr-xr-x 2 root root 4096 8. Jul 10:16 upower
drwxr-xr-x 2 root root 4096 8. Aug 10:25 xkb
[root@server lib]# sudo ls -lR /var/lib/openldap/
/var/lib/openldap/:
insgesamt 748
drwxr-xr-x 2 ldap ldap 4096 4. Sep 22:43 backup
-rw-r--r-- 1 ldap ldap 751173 4. Sep 22:10 ldap-data.tar.gz
drwxr-xr-x 2 ldap ldap 4096 8. Sep 08:35 openldap-data
drwxr-xr-x 2 ldap ldap 4096 4. Sep 21:37 run
/var/lib/openldap/backup:
insgesamt 16
-rw-r--r-- 1 ldap ldap 12965 28. Jun 10:58 backup.ldif
/var/lib/openldap/openldap-data:
insgesamt 29404
-rw-r--r-- 1 ldap ldap 4096 8. Sep 08:35 alock
-rw------- 1 ldap ldap 2351104 8. Sep 08:38 __db.001
-rw------- 1 ldap ldap 17457152 8. Sep 08:38 __db.002
-rw------- 1 ldap ldap 3761704 8. Sep 08:38 __db.003
-rw------- 1 ldap ldap 921 5. Mai 11:35 DB_CONFIG
-rw------- 1 ldap ldap 845 25. Jul 00:25 DB_CONFIG.example
-rw------- 1 ldap ldap 8192 4. Sep 22:45 dn2id.bdb
-rw------- 1 ldap ldap 65536 4. Sep 22:45 id2entry.bdb
-rw------- 1 ldap ldap 10485760 8. Sep 08:35 log.0000000001
-rw------- 1 ldap ldap 8192 4. Sep 22:45 objectClass.bdb
/var/lib/openldap/run:
insgesamt 0
[root@server lib]# sudo ls -lR /etc/openldap/
/etc/openldap/:
insgesamt 36
-rw-r----- 1 root ldap 845 25. Jul 00:25 DB_CONFIG.example
-rw-r--r-- 1 root root 322 25. Mär 11:34 ldap.conf
drwxr-xr-x 2 root root 4096 4. Sep 22:30 schema
-rw-r----- 1 root ldap 2762 4. Sep 22:47 slapd.conf
-rw------- 1 root root 2762 4. Sep 22:26 slapd.conf.and
-rw-r----- 1 root ldap 2102 25. Jul 00:25 slapd.conf.pacnew
-rw------- 1 root root 2762 28. Jun 10:54 slapd.conf.pacsave
drwx------ 2 ldap ldap 4096 25. Jul 00:25 slapd.d
drwxr-xr-x 2 root root 4096 21. Mär 10:28 ssl
/etc/openldap/schema:
insgesamt 300
-r--r--r-- 1 root root 6190 25. Jul 00:25 collective.schema
-r--r--r-- 1 root root 8063 25. Jul 00:25 corba.schema
-r--r--r-- 1 root root 20612 25. Jul 00:25 core.ldif
-r--r--r-- 1 root root 20499 25. Jul 00:25 core.schema
-r--r--r-- 1 root root 12006 25. Jul 00:25 cosine.ldif
-r--r--r-- 1 root root 73994 25. Jul 00:25 cosine.schema
-r--r--r-- 1 root root 10388 25. Jul 00:25 duaconf.schema
-r--r--r-- 1 root root 3330 25. Jul 00:25 dyngroup.ldif
-r--r--r-- 1 root root 3289 25. Jul 00:25 dyngroup.schema
-r--r--r-- 1 root root 3481 25. Jul 00:25 inetorgperson.ldif
-r--r--r-- 1 root root 6267 25. Jul 00:25 inetorgperson.schema
-r--r--r-- 1 root root 13901 25. Jul 00:25 java.schema
-r--r--r-- 1 root root 2387 25. Jul 00:25 misc.schema
-r--r--r-- 1 root root 6809 25. Jul 00:25 nis.ldif
-r--r--r-- 1 root root 7640 25. Jul 00:25 nis.schema
-r--r--r-- 1 root root 3308 25. Jul 00:25 openldap.ldif
-r--r--r-- 1 root root 1514 25. Jul 00:25 openldap.schema
-r--r--r-- 1 root root 20467 25. Jul 00:25 pmi.schema
-r--r--r-- 1 root root 19603 25. Jul 00:25 ppolicy.schema
-r--r--r-- 1 root root 3512 25. Jul 00:25 README
-rw-r--r-- 1 root root 20221 28. Mär 11:56 samba.schema
-rw-r--r-- 1 root root 5301 19. Dez 2007 thunderbird.schema
/etc/openldap/slapd.d:
insgesamt 0
/etc/openldap/ssl:
insgesamt 8
-r--r--r-- 1 root root 944 21. Mär 10:28 slapdcert.pem
-r--r--r-- 1 root root 916 21. Mär 10:28 slapdkey.pem