[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapd dies sliently



Hi Jürgen
I had a similar problem (i.e. slapd died silently) when i used uncoherent libraries for sasl: i had compiled openldad 2.x.x. with the sasl 1 library but tried to use it with the sasl 2 library. then slapd just died silently..
i recommend to check the library-level you used for compilation and for application, they must be the same.


i even submitted this as a bug to the openldap project, but no answer.

suomi

Jürgen Magin wrote:

Hi list

I'm using openldap 2.1.12-44 (SuSE Linux 8.2) and most time it works
fine, but sometimes i don't know what happens.

When i try to set the password for a user with

ldappasswd -x -D "cn=Manager, o=rfsystems, c=de" -w secret2 -s secret2 root

the slapd dies silently. The last messages in the logfile are:

daemon: read activity on 17
connection_get(17)
connection_get(17): got connid=24
connection_read(17): checking for input on id=24
ber_get_next on fd 17 failed errno=0 (Success)
connection_read(17): input error=-2 id=24, closing.
connection_closing: readying conn=24 sd=17 for close
connection_close: conn=24 sd=17
daemon: removing 17
conn=24 fd=17 closed
daemon: select: listen=6 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: select: listen=6 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: new connection on 7
conn=26 fd=7 ACCEPT from IP=192.168.120.103:1225 (IP=:: 389)
daemon: added 7r
daemon: activity on:

daemon: select: listen=6 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: activity on:
 7r

daemon: read activity on 7
connection_get(7)
connection_get(7): got connid=26
connection_read(7): checking for input on id=26
ber_get_next on fd 7 failed errno=11 (Resource temporarily unavailable)
daemon: select: listen=6 active_threads=1 tvp=NULL
do_bind
>>> dnPrettyNormal: <cn=Manager, o=rfsystems, c=de>
<<< dnPrettyNormal: <cn=Manager,o=rfsystems,c=de>, <cn=manager,o=rfsystems,c=de>
do_bind: version=3 dn="cn=Manager,o=rfsystems,c=de" method=128
conn=26 op=0 BIND dn="cn=Manager,o=rfsystems,c=de" method=128
==> ldbm_back_bind: dn: cn=Manager,o=rfsystems,c=de
dn2entry_r: dn: "cn=manager,o=rfsystems,c=de"
=> dn2id( "cn=manager,o=rfsystems,c=de" )
====> cache_find_entry_dn2id("cn=manager,o=rfsystems,c=de"): 8 (1 tries)
<= dn2id 8 (in cache)
=> id2entry_r( 8 )
====> cache_find_entry_id( 8 ) "cn=Manager,o=rfsystems,c=de" (found) (1 tries)
<= id2entry_r( 8 ) 0x81a1710 (cache)
====> cache_return_entry_r( 8 ): returned (0)
conn=26 op=0 AUTHZ dn="cn=Manager,o=rfsystems,c=de" mech=simple ssf=0
do_bind: v3 bind: "cn=Manager, o=rfsystems, c=de" to "cn=Manager,o=rfsystems,c=de"
send_ldap_result: conn=26 op=0 p=3
send_ldap_result: err=0 matched="" text=""
send_ldap_response: msgid=1 tag=97 err=0
conn=26 op=0 RESULT tag=97 err=0 text=
daemon: activity on 1 descriptors
daemon: activity on:
7r


daemon: read activity on 7
connection_get(7)
connection_get(7): got connid=26
connection_read(7): checking for input on id=26
ber_get_next on fd 7 failed errno=11 (Resource temporarily unavailable)
daemon: select: listen=6 active_threads=1 tvp=NULL
do_extended
do_extended: oid=1.3.6.1.4.1.4203.1.11.1
==> ldbm_back_exop_passwd: "root"
passwd: "root" (proxy)
>>> dnNormalize: <root>

The user root is a "simple" user without administration permissions to the LDAP directory. The acl's in
slapd.conf are:


access to dn="cn=Manager,o=rfsystems,c=de"
   by * none
access to dn="cn=Gott,o=rfsystems,c=de"  # that's uid = root
   by self write
   by * none
access to attr=userpassword
   by self write
   by dn="cn=Manager,o=rfsystems,c=de" write
   by * none
access to attr=telephoneNumber
   by self write
   by dn="cn=Manager,o=rfsystems,c=de" write
   by * read
access to *
   by self write
   by * read

Any help would be greatly appreciated.