I had two freeipa replica servers up and running in our german DC for
nearly 2 months and this morning out of the blue they stopped working.

Looking at ipactl status, both servers are reporting that their directory
service is stopped. Trying to restart ipa only works from 2 minutes to an

Looking at the /var/log/dirsrv/slapd-DOMAIN-COM/errors there's no errors
that show up before it crash.

However, looking at /var/log/messages, this lovely segfault show up:

XXXXXX kernel: ns-slapd[17507]: segfault at 8 ip 00007fb99e56149f sp
00007fb96bee83c0 error 4 in libslapd.s

Out of despair to get production back up and running quickly, I reinstalled
one replica...it worked for an hour and came back with the same issue.

We have 6 other freeipa replica running accross 3 different site with zero

We're running CentOS 7.4 with the latest packages, ipa-server-4.5.0-21 &

Any clues why ?


Alexandre Pitre
