[Date Prev][Date Next] [Chronological] [Thread] [Top]
(ITS#4593) pcache proxyattrset/proxytemplate asterisk interpretation problem

To: openldap-its@OpenLDAP.org
Subject: (ITS#4593) pcache proxyattrset/proxytemplate asterisk interpretation problem
From: fredme@gmail.com
Date: Fri, 16 Jun 2006 16:02:32 GMT
Full_Name: Eugenio Grytsenko
Version: 2.3.24
OS: Linux
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (200.5.92.164)


I am using openldap 2.3.24, my distro is Linux, and I configured the
openldap server as metadirectory with pcache overlay and I have problems
with the return of data when I specified "proxyattrset 4 *" with
"proxytemplate". See three definitions of "proxytemplate" with index 4
in my configuration file...

The results are different when I do ldapsearch against localhost
(metadirectory openldap) and the remote server (AAA.BBB.CCC.DDD):

# BAD RESULT: METADIRECTORY (pcache)
#
# ldapsearch -x -LLL -h localhost -b c=argentina,o=myorg cn=fred
=== CUT HERE ===
dn: cn=fred,ou=people,c=argentina,o=myorg
cn: FRED
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: OXUserObject
objectClass: extensibleObject

=== CUT HERE ===

# GOOD RESULT: REMOTE (AAA.BBB.CCC.DDD)
#
# ldapsearch -x -LLL -h AAA.BBB.CCC.DDD -b c=argentina,o=myorg cn=fred
=== CUT HERE ===
dn: cn=fred,ou=people,c=argentina,o=myorg
lnetmailaccess: TRUE
usercountry: Argentina
maildomain: mail.myorg
cn: FRED
writeglobaladdressbook: TRUE
objectclass: top
objectclass: person
objectclass: organizationalPerson
objectclass: inetOrgPerson
objectclass: posixAccount
objectclass: OXUserObject
objectclass: extensibleObject
loginshell: /bin/bash
oxtimezone: America/Buenos_Aires
homedirectory: /home/FRED
oxappointmentdays: 5
oxtaskdays: 5
oxgroupid: 500
preferredlanguage: AR
gidnumber: 500
sn: SMITH
givenname: FRED
uidnumber: 1000
mail: fred@mail.myorg
mailenabled: ok
uid: FRED

=== CUT HERE ===


Here is my config file:


=== CUT HERE ===
include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/misc.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/openldap.schema
include         /etc/openldap/schema/ppolicy.schema

include         /etc/openldap/schema/openxchange.schema
include         /etc/openldap/schema/samba3.schema

loglevel        256
sizelimit       unlimited
idletimeout     360

pidfile         /var/run/slapd/run/slapd.pid
argsfile        /var/run/slapd/run/slapd.args

modulepath      /usr/libexec/openldap
moduleload      back_ldap.la
moduleload      pcache.la
moduleload      ppolicy.la

#######################################################################
# back_ldap database definitions
#######################################################################
database        ldap
suffix          c=argentina,o=myorg
rootdn          c=argentina,o=myorg
uri             ldap://AAA.BBB.CCC.DDD:389
idle-timeout    360

#######################################################################
# pcache overlay
#######################################################################
overlay         pcache
proxycache      bdb 67108864 5 8192 21600

proxyattrset    0 cn userPassword uidNumber gidNumber cn homeDirectory
loginShell gecos description objectClass
proxyattrset    1 cn userPassword memberUid uniqueMember gidNumber
proxyattrset    2 objectClass uid uidNumber shadowLastChange shadowMin shadowMax
shadowWarning shadowInactive shadowExpire shadowFlag
proxyattrset    3 cn userPassword shadowLastChange shadowMax shadowMin
shadowWarning shadowInactive shadowExpire shadowFlag
proxyattrset    4 *

proxytemplate   (&(objectClass=)(uidNumber=))                           0 21600
proxytemplate   (&(objectClass=)(cn=))                                  0 21600
proxytemplate   (objectClass=)                                          0 21600
proxytemplate   (&(objectClass=)(gidNumber=))                           1 21600
proxytemplate   (&(objectClass=)(memberUid=))                           1 21600
proxytemplate   (&(objectClass=))                                       1 21600
proxytemplate   (&(objectClass=)(|(memberUid=)(uniqueMember=)))         1 21600
proxytemplate   (&(objectClass=)(cn=))                                  1 21600
proxytemplate   (cn=)                                                   2 21600
proxytemplate   (&(objectClass=)(cn=))                                  3 21600

### rule to cache entire "getent passwd" and entire "ldapsearch -x" ###
proxytemplate   (objectClass=*)                                         4 21600
proxytemplate   (objectClass=)                                          4 21600

### test with ldapsearch:
proxytemplate   (cn=)                                                   4 21600


index           objectClass eq
index           uid eq
index           uidNumber eq
index           gidNumber eq
index           memberUid eq
index           queryid eq
index           cn pres,eq,sub
index           entryUUID eq

cachesize       16384
directory       /var/cache/slapd-pcache
=== CUT HERE ===


When I tried to disable rule 4, all works fine, but I couldn't
cache entire "getent passwd" (proxytemplate (objectClass=*) 4 21600), for
example.
I need something like "cache all data with filter (objectClass=*) without using
any attributes".

Any ideas?
Thanks.
Prev by Date: Re: (ITS#4589) syncrepl DELs sometimes don't propagate
Next by Date: Re: (ITS#4593) pcache proxyattrset/proxytemplate asterisk interpretation problem
Index(es):
- Chronological
- Thread