Univention Bugzilla – Bug 33992
68univention-admingrp-user-passwordreset-protected-groups breaks the LDAP server
Last modified: 2014-04-16 16:16:44 CEST
It happens on S3 master only: ------------------------------------------------------------------------------- *** BEGIN *** ['/bin/bash', '68univention-admingrp-user-passwordreset-protected-groups'] *** E: Object exists: cn=autotest090.local,cn=domain,cn=mail,dc=autotest090,dc=local info 2014-01-24 19:05:05 create user k704j4ok Object created: uid=k704j4ok,cn=users,dc=autotest090,dc=local Object modified: cn=User Password Admins,cn=groups,dc=autotest090,dc=local info 2014-01-24 19:05:06 create group lixucryo with Mailaddress 6qsp677a3unf8sszbarx Object created: cn=lixucryo,cn=groups,dc=autotest090,dc=local info 2014-01-24 19:05:07 create user d8goq5kb Object created: uid=d8goq5kb,cn=users,dc=autotest090,dc=local Object modified: cn=lixucryo,cn=groups,dc=autotest090,dc=local info 2014-01-24 19:05:08 create user da1üy6cö Object created: uid=da1üy6cö,cn=users,dc=autotest090,dc=local Object modified: uid=da1üy6cö,cn=users,dc=autotest090,dc=local info 2014-01-24 19:05:09 create user r3gmu7bh Object created: uid=r3gmu7bh,cn=users,dc=autotest090,dc=local Waiting for replication: OK: replication complete (nid=4112 lid=4112) Done: replication complete. Waiting for postrun Setting ldap/acl/user/passwordreset/protected/gid Script: /etc/univention/templates/scripts/admingrp-user-passwordreset Create ldap/acl/user/passwordreset/internal/groupmemberlist/lixucryo Multifile: /etc/ldap/slapd.conf Multifile: /etc/ldap/slapd.conf Initiating graceful reload of ldap server(s). Sending HUP to ldap server(s): slapd ...done. Check database: ...Could not determine BDB version of /var/lib/univention-ldap/ldap. Skipping /usr/bin/db4.8_recover to avoid damage. Starting ldap server(s): slapd ...failed. 52e2ffd1 OVER: Loading Translog Overlay 52e2ffd1 OVER: db_init 52e2ffd1 OVER: Configuring Translog Overlay 52e2ffd1 OVER: Configured Translog Overlay to use file "/var/lib/univention-ldap/listener/listener" 52e2ffd1 OVER: db_close 52e2ffd1 OVER: db_destroy. Multifile: /etc/ldap/slapd.conf Traceback (most recent call last): File "/usr/share/univention-directory-manager-tools/univention-cli-server", line 222, in doit output = univention.admincli.admin.doit(arglist) File "/usr/lib/pymodules/python2.6/univention/admincli/admin.py", line 393, in doit out=_doit(arglist) File "/usr/lib/pymodules/python2.6/univention/admincli/admin.py", line 540, in _doit co=univention.admin.config.config(configRegistry['ldap/master']) File "/usr/lib/pymodules/python2.6/univention/admin/config.py", line 38, in __init__ base=univention.admin.uldap.getBaseDN(host) File "/usr/lib/pymodules/python2.6/univention/admin/uldap.py", line 62, in getBaseDN return result[0][1]['namingContexts'][0] KeyError: 'namingContexts' ------------------------------------------------------------------------------- From this point all LDAP operations fail. The slapd can not be stopped through the init script: root@master090:~# pidof slapd 17993 root@master090:~# /etc/init.d/slapd stop Stopping ldap server(s): slapd ...done. root@master090:~# pidof slapd 17993 root@master090:~# cat /var/run/slapd/slapd.pid cat: /var/run/slapd/slapd.pid: No such file or directory root@master090:~# The LDAP server is restarted very often in the LDAP test.
Created attachment 5753 [details] syslog.gz
Created attachment 5754 [details] ucs-test.log.gz
It seems to be stable now.
OK: cant find any problem with this test anymore.
Released as an errata update to unmaintained.