Bug 34877 - replace ldapsearch with "pagedResults" ldapsearch in the listener
replace ldapsearch with "pagedResults" ldapsearch in the listener
Status: NEW
Product: UCS
Classification: Unclassified
Component: Listener (univention-directory-listener)
UCS 4.2
Other Linux
: P5 enhancement (vote)
: ---
Assigned To: UCS maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2014-05-20 13:04 CEST by Felix Botner
Modified: 2018-04-14 14:01 CEST (History)
5 users (show)

See Also:
What kind of report is it?: Development Internal
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?: Yes
School Customer affected?:
ISV affected?:
Waiting Support:
Ticket number:
Bug group (optional): Roadmap discussion (moved)
Max CVSS v3 score:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Felix Botner univentionstaff 2014-05-20 13:04:32 CEST
Currently the listener's ldapsearch is limited to "ldap/sizelimit" (from the master) results (default 400000). The listener can't handle setups with more than 400000 ldap objects (i guess).

We need to: 

(1)
configure limits for "pagedResults" ldapsearch in slapd.conf (e.g. add "size.pr=5000 size.prtotal=unlimited" to limits in slapd.conf, max 5000 results per page, unlimited pagedResults search), see bug #34873 

(2)
replace normale ldapsearch in the listener with "pagedResults" ldapsearch
Comment 1 Felix Botner univentionstaff 2014-06-13 13:53:53 CEST
It is possible to define multiple limits in slapd.conf and to overwrite the default sizelimit for special dns/groups with e.g. "unlimited". So maybe it is enough to add the special limit "size.soft=unlimited size.hard=unlimited" for cn=admin and slave hosts.
Comment 2 Felix Botner univentionstaff 2014-06-13 15:19:37 CEST
(In reply to Felix Botner from comment #1)
> It is possible to define multiple limits in slapd.conf and to overwrite the
> default sizelimit for special dns/groups with e.g. "unlimited". So maybe it
> is enough to add the special limit "size.soft=unlimited size.hard=unlimited"
> for cn=admin and slave hosts.


sizelimit               4000
limits group/posixGroup/uniqueMember="cn=DC Backup Hosts,cn=groups,dc=fff,dc=ggg" size=unlimited time.soft=-1 time.hard=-1
limits dn="cn=admin,dc=fff,dc=ggg" size=unlimited time.soft=-1 time.hard=-1
limits users time.soft=-1 time.hard=-1

=> sizelimit 4000 for everybody except cn=admin and members of DC Backup Hosts
Comment 3 Philipp Hahn univentionstaff 2015-12-11 16:49:35 CET
*** Bug 40230 has been marked as a duplicate of this bug. ***
Comment 4 Florian Best univentionstaff 2017-06-28 14:52:26 CEST
There is a Customer ID set so I set the flag "Enterprise Customer affected".