[Touch-packages] [Bug 1373598] Re: apt-get update fails, hash sum mismatches (trusty)

[ITec]

I am experiencing the same.

It must be a problem with the German ubuntu archives.
The Swiss archives work without a problem.

There must be something, that the Swiss do better?
Let's find it out! ;-)

# nslookup de.archive.ubuntu.com
Server: 127.0.0.1
Address:127.0.0.1#53

Non-authoritative answer:
de.archive.ubuntu.com   canonical name = ubuntu.mirror.tudos.de.
Name:   ubuntu.mirror.tudos.de
Address: 141.30.13.10
Name:   ubuntu.mirror.tudos.de
Address: 141.30.13.20
Name:   ubuntu.mirror.tudos.de
Address: 141.30.13.30

# cat /etc/apt/sources.list
deb http://de.archive.ubuntu.com/ubuntu/ trusty main restricted 
universe multiverse
deb-src http://de.archive.ubuntu.com/ubuntu/ trusty main restricted 
universe multiverse
deb http://de.archive.ubuntu.com/ubuntu/ trusty-updates main restricted 
universe multiverse
deb-src http://de.archive.ubuntu.com/ubuntu/ trusty-updates main 
restricted universe multiverse

deb http://security.ubuntu.com/ubuntu trusty-security main restricted 
universe multiverse
deb-src http://security.ubuntu.com/ubuntu trusty-security main 
restricted universe multiverse

# LANG=en_us apt-get update
Ign http://de.archive.ubuntu.com trusty InRelease
Ign http://security.ubuntu.com trusty-security InRelease
Ign http://de.archive.ubuntu.com trusty-updates InRelease
Hit http://security.ubuntu.com trusty-security Release.gpg
Hit http://de.archive.ubuntu.com trusty Release.gpg
Hit http://security.ubuntu.com trusty-security Release
Hit http://de.archive.ubuntu.com trusty-updates Release.gpg
Hit http://de.archive.ubuntu.com trusty Release
Hit http://security.ubuntu.com trusty-security/main Sources
Hit http://de.archive.ubuntu.com trusty-updates Release
Hit http://security.ubuntu.com trusty-security/restricted Sources
Hit http://de.archive.ubuntu.com trusty/main Sources
Hit http://security.ubuntu.com trusty-security/universe Sources
Hit http://de.archive.ubuntu.com trusty/restricted Sources
Hit http://security.ubuntu.com trusty-security/multiverse Sources
Hit http://de.archive.ubuntu.com trusty/universe Sources
Hit http://security.ubuntu.com trusty-security/main amd64 Packages
Hit http://de.archive.ubuntu.com trusty/multiverse Sources
Hit http://security.ubuntu.com trusty-security/restricted amd64 Packages
Hit http://de.archive.ubuntu.com trusty/main amd64 Packages
Hit http://security.ubuntu.com trusty-security/universe amd64 Packages
Hit http://security.ubuntu.com trusty-security/multiverse amd64 Packages
Hit http://de.archive.ubuntu.com trusty/restricted amd64 Packages
Hit http://security.ubuntu.com trusty-security/main i386 Packages
Hit http://de.archive.ubuntu.com trusty/universe amd64 Packages
Hit http://security.ubuntu.com trusty-security/restricted i386 Packages
Hit http://de.archive.ubuntu.com trusty/multiverse amd64 Packages
Hit http://security.ubuntu.com trusty-security/universe i386 Packages
Hit http://de.archive.ubuntu.com trusty/main i386 Packages
Hit http://security.ubuntu.com trusty-security/multiverse i386 Packages
Hit http://de.archive.ubuntu.com trusty/restricted i386 Packages
Hit http://security.ubuntu.com trusty-security/main Translation-en
Hit http://de.archive.ubuntu.com trusty/universe i386 Packages
Hit http://security.ubuntu.com trusty-security/multiverse Translation-en
Hit http://de.archive.ubuntu.com trusty/multiverse i386 Packages
Hit http://security.ubuntu.com trusty-security/restricted Translation-en
Hit http://security.ubuntu.com trusty-security/universe Translation-en
Hit http://de.archive.ubuntu.com trusty/main Translation-en
Hit http://de.archive.ubuntu.com trusty/main Translation-de
Hit http://de.archive.ubuntu.com trusty/multiverse Translation-en
Hit http://de.archive.ubuntu.com trusty/multiverse Translation-de
Hit http://de.archive.ubuntu.com trusty/restricted Translation-en
Hit http://de.archive.ubuntu.com trusty/restricted Translation-de
Hit http://de.archive.ubuntu.com trusty/universe Translation-en
Hit http://de.archive.ubuntu.com trusty/universe Translation-de
Hit http://de.archive.ubuntu.com trusty-updates/restricted Sources
Hit http://de.archive.ubuntu.com trusty-updates/universe Sources
Hit http://de.archive.ubuntu.com trusty-updates/multiverse Sources
Hit http://de.archive.ubuntu.com trusty-updates/main amd64 Packages
Hit http://de.archive.ubuntu.com trusty-updates/restricted amd64 
Packages
Hit http://de.archive.ubuntu.com trusty-updates/universe amd64 Packages
Hit http://de.archive.ubuntu.com 

[Touch-packages] [Bug 1393923] [NEW] postfix (2.11.0-1) does not LDAP table lookup since libp11-kit0 (0.20.2-2ubuntu2)

[ITec]

Public bug reported:

Versions:

Ubuntu  14.04.1 LTS
postfix:amd64   2.11.0-1
postfix-ldap:amd64  2.11.0-1
libldap-2.4-2:amd64 2.4.31-1+nmu2ubuntu8
libgnutls26:amd64   2.12.23-12ubuntu2.1

libp11-kit0:amd64   0.18.3-2ubuntu1 (works)
libp11-kit0:amd64   0.20.2-2ubuntu2 (does not work)


Problem:

When receiving email, postfix does not do LDAP lookup for transport
tables any more.


With libp11-kit0 0.18.3-2ubuntu1 everything works fine. At a certain point 
postfix starts LDAP lookup and continues until it finds the needed LDAP item.

snippet from /var/log/mail.log:

...
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_lookup: In 
dict_ldap_lookup
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_lookup: No 
existing connection for LDAP source /etc/postfix/ldap-mda.cf, reopening
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_connect: 
Connecting to server ldaps://db.itec.int ldaps://db1.itec.int 
ldaps://db2.itec.int
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_connect: Actual 
Protocol version used is 3.
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_connect: Binding 
to server ldaps://db.itec.int ldaps://db1.itec.int ldaps://db2.itec.int with dn 
uid=mta,ou=computers,dc=itec,dc=int
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_connect: 
Successful bind to server ldaps://db.itec.int ldaps://db1.itec.int 
ldaps://db2.itec.int with dn uid=mta,ou=computers,dc=itec,dc=int
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_connect: Cached 
connection handle for LDAP source /etc/postfix/ldap-mda.cf
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_lookup: 
/etc/postfix/ldap-mda.cf: Searching with filter 
((objectClass=inetLocalMailRecipient)((mailRoutingAddress=\2A)(mailHost=mta.itec.int)))
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_get_values[1]: 
Search found 0 match(es)
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_get_values[1]: 
Leaving dict_ldap_get_values
Nov 18 17:27:47 mta postfix/trivial-rewrite[8879]: dict_ldap_lookup: Search 
returned nothing
...


With libp11-kit0 0.20.2-2ubuntu2 postfix does not start LDAP lookup. Instead it 
gets killed by signal.

snippet from /var/log/mail.log:

...
Nov 18 19:07:11 mta postfix/trivial-rewrite[12032]: dict_ldap_lookup: In 
dict_ldap_lookup
Nov 18 19:07:11 mta postfix/trivial-rewrite[12032]: dict_ldap_lookup: No 
existing connection for LDAP source /etc/postfix/ldap-mda.cf, reopening
Nov 18 19:07:11 mta postfix/trivial-rewrite[12032]: dict_ldap_connect: 
Connecting to server ldaps://db.itec.int ldaps://db1.itec.int 
ldaps://db2.itec.int
Nov 18 19:07:11 mta postfix/trivial-rewrite[12032]: dict_ldap_connect: Actual 
Protocol version used is 3.
Nov 18 19:07:11 mta postfix/master[11997]: warning: process 
/usr/lib/postfix/trivial-rewrite pid 12032 killed by signal 11
Nov 18 19:07:11 mta postfix/master[11997]: warning: 
/usr/lib/postfix/trivial-rewrite: bad command startup -- throttling
Nov 18 19:07:42 mta postfix/pickup[12000]: trigger_server_accept_local: trigger 
arrived
Nov 18 19:07:42 mta postfix/pickup[12000]: master_notify: status 0
Nov 18 19:07:42 mta postfix/pickup[12000]: master_notify: status 1
...

-- I am not able to upgrade to the current (trusty) version of
libp11-kit0. Instead I have to run an outdated (saucy) version of
libp11-kit0.

What can I do to get the current version running?

** Affects: gnutls26 (Ubuntu)
 Importance: Undecided
 Status: New

** Affects: openldap (Ubuntu)
 Importance: Undecided
 Status: New

** Affects: p11-kit (Ubuntu)
 Importance: Undecided
 Status: New

** Affects: postfix (Ubuntu)
 Importance: Undecided
 Status: New

** Also affects: p11-kit (Ubuntu)
   Importance: Undecided
   Status: New

** Also affects: openldap (Ubuntu)
   Importance: Undecided
   Status: New

** Also affects: gnutls26 (Ubuntu)
   Importance: Undecided
   Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to p11-kit in Ubuntu.
https://bugs.launchpad.net/bugs/1393923

Title:
  postfix (2.11.0-1) does not LDAP table lookup since libp11-kit0
  (0.20.2-2ubuntu2)

Status in “gnutls26” package in Ubuntu:
  New
Status in “openldap” package in Ubuntu:
  New
Status in “p11-kit” package in Ubuntu:
  New
Status in “postfix” package in Ubuntu:
  New

Bug description:
  Versions:

  Ubuntu14.04.1 LTS
  postfix:amd64 2.11.0-1
  postfix-ldap:amd642.11.0-1
  libldap-2.4-2:amd64   2.4.31-1+nmu2ubuntu8
  libgnutls26:amd64 2.12.23-12ubuntu2.1

  libp11-kit0:amd64 0.18.3-2ubuntu1 (works)
  libp11-kit0:amd64 0.20.2-2ubuntu2 (does not work)

  
  Problem:

  When receiving email, postfix does not do LDAP lookup for transport
  tables any more.

  
  With libp11-kit0 0.18.3-2ubuntu1 everything works fine