Bug 41917 - UCS 4.1-3 installation stalled at 05univention-bind - cannot contact ldap server
UCS 4.1-3 installation stalled at 05univention-bind - cannot contact ldap server
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: General
UCS 4.1
Other Linux
: P2 major (vote)
: UCS 4.1-3
Assigned To: Philipp Hahn
Arvid Requate
:
Depends on:
Blocks: 41885
  Show dependency treegraph
 
Reported: 2016-08-04 21:17 CEST by Arvid Requate
Modified: 2016-09-21 20:57 CEST (History)
3 users (show)

See Also:
What kind of report is it?: Bug Report
What type of bug is this?: 6: Setup Problem: Issue for the setup process
Who will be affected by this bug?: 4: Will affect most installed domains
How will those affected feel about the bug?: 5: Blocking further progress on the daily work
User Pain: 0.686
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional): Troubleshooting
Max CVSS v3 score:


Attachments
logs_etc.tgz (1.01 MB, application/x-gtar)
2016-08-04 21:17 CEST, Arvid Requate
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Arvid Requate univentionstaff 2016-08-04 21:17:39 CEST
Created attachment 7856 [details]
logs_etc.tgz

A quick basic installation of a plain UCS master from ucs_4.1-3-20160804-100104-dvd-amd64.iso failed, the graphical installer hangs at 05uinvention-bind and setup.log shows a lot of univention-dnsedit messages "timeout while trying to contact LDAP server ucs6675.foo90.intranet".

The attached archive containes all logs and /etc as well as /root/slapcat.log, which only shows two entries, the ldap/base and cn=admin,dc=unassigned-domain.
The /etc/ldap.secret is world readable and the password isn't accepted by the running slapd process.
Comment 1 Stefan Gohmann univentionstaff 2016-08-06 20:48:17 CEST
From var/log/univention/setup.log:

__MSG__:Einrichten von 01univention-ldap-server-init
__STEP__:1
Configure /usr/lib/univention-install/01univention-ldap-server-init.inst
2016-08-04 20:38:18.478191632+02:00 (in joinscript_init)
ldap/server/type not set


This happens if univention-server-master is not installed:
$ rgrep 'ldap/server/type' univention-server/debian/univention-server-master.postinst 
ldap/server/type=master
$ 

From var/log/univention/setup.log:

__MSG__:Aufruf des Nach-Installations-Triggers install-info
__STEP__:35.8065
__MSG__:Aufruf des Nach-Installations-Triggers mime-support
__STEP__:35.8065
__ERR__:univention-server-master: Failed to install
__STEP__:0

Unfortunately, the error isn't logged.
Comment 2 Stefan Gohmann univentionstaff 2016-08-06 21:43:19 CEST
After some more debugging. It works if I install the old univention-ssl package. 

With the new univention-ssl package the preinst aborts:

Unpacking univention-server-master (from .../univention-server-master_11.0.1-8.230.201510141128_all.deb) ...
no certificate for unassigned-hostname.unassigned-domain registered
/var/lib/dpkg/tmp.ci/preinst: 78: local: argument:: bad variable name
dpkg: error processing /media/cdrom///all/univention-server-master_11.0.1-8.230.201510141128_all.deb (--unpack):
 subprocess new pre-installation script returned error exit status 2
Errors were encountered while processing:
 /media/cdrom///all/univention-server-master_11.0.1-8.230.201510141128_all.deb
E: Sub-process /usr/bin/dpkg returned an error code (1)
root@unassigned-hostname:~#

If I add 'set -x' in preinst, I get:

+ echo no certificate for unassigned-hostname.unassigned-domain registered
no certificate for unassigned-hostname.unassigned-domain registered
+ return 2
+ [ 2 -eq 2 ]
+ install -m 700 -d /etc/univention/ssl/unassigned-hostname.unassigned-domain
+ [ 37 -gt 64 ]
+ mk_config /etc/univention/ssl/unassigned-hostname.unassigned-domain/openssl.cnf  1825 unassigned-hostname.unassigned-domain unassigned-hostname.unassigned-domain unassigned-hostname
+ local outfile=/etc/univention/ssl/unassigned-hostname.unassigned-domain/openssl.cnf
+ local password=?Missing argument: password
/var/lib/dpkg/tmp.ci/preinst: 78: local: argument:: bad variable name
dpkg: error processing x.deb (--install):
 subprocess new pre-installation script returned error exit status 2
Errors were encountered while processing:
 x.deb
root@unassigned-hostname:~#

Philipp, please have a look.
Comment 3 Philipp Hahn univentionstaff 2016-08-08 12:12:49 CEST
r71441 | Bug #41917 SSL: Allow empty passwords
r71443 | Bug #41917 SSL: Fix dash local variable quoting
r71444 | Bug #41917 SSL: Changelog entry

Package: univention-ssl
Version: 10.0.0-16.173.201608080903
Branch: ucs_4.1-0
Scope: ucs4.1-3

ucs_4.1-3-20160808-113834-dvd-amd64.iso
Comment 4 Arvid Requate univentionstaff 2016-08-08 14:02:51 CEST
Code review Ok and installation works fine. Changelog is present too.
Comment 5 Stefan Gohmann univentionstaff 2016-08-09 15:26:06 CEST
UCS 4.1-3 has been released:
 https://docs.software-univention.de/release-notes-4.1-3-en.html
 https://docs.software-univention.de/release-notes-4.1-3-de.html

If this error occurs again, please use "Clone This Bug".