[Bug 1024475] Re: libnss-ldap causes boot hang on Ubuntu 12.04 Precise
At some point, this started working again after a dist-upgrade, so
nss_initgroups_ignoreusers is working for me.
The only thing I've done on top of that for house keeping purposes, is
to modify the init script to remove the ignoreusers line on system start
(the configs are controlled vi puppet, and the file will keep changing
otherwise).
For anyone else with a similar issue, I'm using this:
~~
#! /bin/sh -e
### BEGIN INIT INFO
# Provides: libnss-ldap
# Required-Start:
# Required-Stop: mountall.sh
# Default-Start: 2 3 4 5
# Default-Stop: 0 1 6
# Short-Description: Updates /etc/ldap.conf
# Description: Updates nss_initgroups_ignoreusers based on
#nss_initgroups_minimum_uid
### END INIT INFO
PATH="/sbin:/bin:/usr/sbin:/usr/bin"
. /lib/lsb/init-functions
case "$1" in
start)
log_action_begin_msg "Removing nssldap-update-ignoreusers
changes"
if sed -i "/^nss_initgroups_ignoreusers/d" /etc/ldap.conf ; then
log_action_end_msg 0
else
log_action_end_msg 1
exit 1
fi
;;
restart|force-reload|stop)
log_action_begin_msg "Running nssldap-update-ignoreusers"
if nssldap-update-ignoreusers ; then
log_action_end_msg 0
else
log_action_end_msg 1
exit 1
fi
;;
*)
echo "Usage: $0 {start|restart|force-reload|stop}"
exit 1
;;
esac
exit 0
~~
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libnss-ldap in Ubuntu.
https://bugs.launchpad.net/bugs/1024475
Title:
libnss-ldap causes boot hang on Ubuntu 12.04 Precise
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libnss-ldap/+bug/1024475/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1024475] Re: libnss-ldap causes boot hang on Ubuntu 12.04 Precise
This is still an issue on 14.04 LTS. This was fixed ages ago with this change: libnss-ldap (251-5.2) unstable; urgency=high * Change the init script policy. Instead of stopping libnss-ldap.init on clean shutdown (touching a file) and starting it after networking (rm-ing it), we touch the file in /lib/init/rw as soon as possible (right before udev is started, touching a file) and stop it after initial system bootup. This fixes both issues with /var being on a separate partition, and unclean shutdown where the file would not be created. (To make sure we don't get similar problems during shutdown, we create it in runlevels 0 and 6 as before, but we don't assume it's still there when we boot, since it's on a tmpfs now.) (Closes: #375077) ..but at some point got removed with this change: libnss-ldap (259-1) unstable; urgency=low * Remove old kluge /etc/init.d/libnss-ldap Not totally sure what was supposed to be replacing that "kluge", maybe it was the "nss_initgroups_ignoreusers" thing, but it's not working currently, that's for sure. Boot time is well over 2 mins atm, verses about 5 seconds with the ldap entry removed for groups in nsswitch.conf Someone must have some ideas for this. Cheers, jcat -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libnss-ldap in Ubuntu. https://bugs.launchpad.net/bugs/1024475 Title: libnss-ldap causes boot hang on Ubuntu 12.04 Precise To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libnss-ldap/+bug/1024475/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
