Package: hurd
Version: 1:0.6.git20150704-3
Severity: wishlist
Control: forwarded -1 http://savannah.gnu.org/task/?7050
Control: block 796826 by -1
Hello,
I'm aware this is a known issue or limitation. This is just a bug for
tracking...
Thanks for your work on GNU.
Package: slapd
Version: 2.4.31-1
Severity: important
Control: block -1 by 190367
Control: block -1 by 748943
LMDB requires multiple features that are not yet implemented on Hurd.
Like BDB/HDB, it requires file region locks. These are used to detect
whether other readers are still alive.
LMDB
Control: reassign -1 slapd 2.4.31-1
Control: retitle -1 BDB/HDB backends do not work on Hurd
Hi,
The latest upload (2.4.42+dfsg-1) disabled building the BDB/HDB backends
on hurd-any, so now the failing tests are simply not run and the package
can be built without intervention.
I'll keep the
Hi,
On Sun, Aug 09, 2015 at 09:56:03AM +0200, Peter Marschall wrote:
++.\" Copyright 2015 The OpenLDAP Foundation All Rights Reserved.
I assume this is intentional, and is because the content is adapted from
the existing README?
++.SH SEE ALSO
++.BR slapd.conf (5),
++.BR ldappasswd (1),
++
Hi Peter,
Thanks for the patches!
On Sun, Aug 09, 2015 at 09:19:39AM +0200, Peter Marschall wrote:
* 0001-slapd.scripts-common-bring-together-comment-and-comm.patch
slapd.scripts-common: bring together comment and commented code
I don't think that comment actually applies to the code below i
Control: reassign -1 libpam-ldap/184-8.7+b1
Hi,
On Mon, Jul 20, 2015 at 03:36:42PM -0500, William Thomas wrote:
After various testing, I have determined the issue is with libldap.
If a wheezy system is upgraded to the backports version
2.4.31+really2.4.40+dfsg-1~bpo70+1 it starts to exhibit the
Control: tag -1 moreinfo
Hi Matthias,
On Thu, Feb 12, 2015 at 10:35:20AM +, Matthias Klose wrote:
Please keep the issue open until the package can be built in a
follow-up test rebuild.
This should be fixed now: openldap 2.4.40+dfsg-2 is in unstable and I
have built it successfully with G
Hi dkg,
On Wed, May 20, 2015 at 12:58:08PM -0400, Daniel Kahn Gillmor wrote:
https://bugs.debian.org/725153 suggests moving openldap's TLS backend in
debian from gnutls to nss.
The reasons given appear to be the older gnutls/gcrypt suid problem
(which is quite a serious concern, particularly fo
Package: nodm
Version: 0.11-1.3
Severity: minor
Dear Maintainer,
When a nodm session ends, I see in /var/log/auth.log:
May 18 10:35:51 kiwi dbus[435]: [system] Rejected send message, 2 matched
rules; type="method_call", sender=":1.65" (uid=1000 pid=2641
comm="/usr/sbin/nodm ") interface="org.f
Package: nodm
Version: 0.11-1.3
Severity: wishlist
Dear Maintainer,
When I shut down the computer, nodm does not quit when told to, but just
restarts my session, leading to a minor but annoying delay until systemd
times out and forcibly terminates it.
It seems that this is caused by systemd ki
Control: tag -1 confirmed
On Sun, May 03, 2015 at 11:39:05PM +0200, Christian Ospelkaus wrote:
The perl module Net::LDAP in jessie fails to talk to an slapd on jessie using
start_tls. Net::LDAP in jessie can, however, talk to an slapd running on
wheezy.
Thanks for the report. I confirm that be
On Fri, Apr 17, 2015 at 07:45:24AM +0300, Timo Aaltonen wrote:
Actually, I pushed a hacked up libldap to my openldap git on alioth
yesterday, but forgot to update this bug, oops
git://git.debian.org/git/users/tjaalton/openldap.git
it doesn't build anything other than libldap & ldap-utils, and i
ion.
+- debian/patches/smbk5pwd-gnutls.patch: smbk5pwd hasn't been ported to
+ moznss. Keep building it with nettle.
+
+ -- Ryan Tandy Thu, 16 Apr 2015 13:28:15 -0700
+
openldap (2.4.40+dfsg-1) unstable; urgency=medium
* Remove inetorgperson.schema from the upstream source. Replace
Control: tags -1 - moreinfo
On Sun, Apr 12, 2015 at 10:38:11AM +0200, Niels Thykier wrote:
Ack, please upload this to unstable and let us know once it has been
accepted.
Thank you, it has just been accepted into unstable.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
Control: tag -1 fixed-upstream
Control: forwarded -1 http://www.openldap.org/its/?findid=7975
On Thu, Apr 09, 2015 at 05:20:34PM +0200, Côme BERNIGAUD wrote:
On 2015-04-09 17:18, Ryan Tandy wrote:
The changelog for (not yet released) 2.4.41 has ITS#7975 which sounds similar:
http
Control: tag -1 upstream
Hi,
Thank you for the report.
On Thu, Apr 09, 2015 at 04:25:00PM +0200, Côme BERNIGAUD wrote:
The same problem does not seem to happen when using HDB. So it might be inside
MDB.
The changelog for (not yet released) 2.4.41 has ITS#7975 which sounds
similar: http://w
Control: forwarded -1 http://www.openldap.org/its/?findid=8092
Control: tags -1 + upstream
On Wed, Mar 25, 2015 at 10:01:43AM -0700, Ryan Tandy wrote:
Meanwhile I reproduced the crash in jessie as well.
... and with pristine upstream git sources as well, therefore forwarded
to their tracker
Control: severity -1 normal
Control: found -1 2.4.40-4
Control: retitle -1 slapd: crash with SASL auxprop pwcheck_method and empty
suffix
On Wed, Mar 25, 2015 at 05:13:52PM +0100, Simon Bin wrote:
thanks for the quick response. Indeed it was a configuration mistake
(pwcheck_method not set in th
Control: severity -1 important
Control: tags -1 confirmed
Hi,
Thanks for the report.
You referred to saslauthd in your original message, but I noticed that
the crash only happens if pwcheck_method in /etc/ldap/sasl2/slapd.conf
is set to auxprop (or not set at all; auxprop is the default), whe
Dear debian-release,
I noticed that we still ship RFC excerpts in one of slapd's schema
files: #780283. Does that warrant uploading a repacked orig tarball at
this point? Note that the same file has been present since 1998 or so.
Sorry for bringing this up so late in the freeze. :/
thanks,
R
2
NAME 'inetOrgPerson'
DESC 'RFC2798: Internet Organizational Person'
diff -Nru openldap-2.4.40/debian/changelog openldap-2.4.40+dfsg/debian/changelog
--- openldap-2.4.40/debian/changelog 2015-03-11 22:49:14.0 +
+++ openldap-2.4.40+dfsg/debian/changelog 2015-03-1
Source: openldap
Version: 2.4.40-4
Severity: serious
Control: found -1 2.4.31-1+nmu2
Control: found -1 2.4.23-7.3
The comments in inetorgperson.schema are copied verbatim from RFC 2798.
http://sources.debian.net/src/openldap/2.4.40-4/servers/slapd/schema/inetorgperson.schema
https://www.ietf.or
On Thu, Feb 26, 2015 at 12:29:28PM +1100, Geoff Crompton wrote:
Given the fix for this went into -4, it seems likely
2.4.31+really2.4.40-3~bpo70+1 (the wheezy backport) is vulnerable.
Could someone confirm that?
It is, yes.
An updated backport has been uploaded, we're waiting for ftpmaster t
Hi,
Sorry, I don't know LMDB well enough to answer your question. I
recommend asking on the openldap-technical list. I guess they'll suggest
simply increasing the mapsize, but it would be interesting to know
whether this is expected and what causes it.
You may want to try building the OPENLD
On Mon, Feb 09, 2015 at 02:52:37PM +0100, Julien Cristau wrote:
May we upload with these changes?
Please do.
Uploaded, accepted, and built (almost) everywhere.
Thanks for your work,
Ryan
signature.asc
Description: Digital signature
46-fix-vrFilter_free-crash.patch: Import upstream
+patch to fix a double free triggered by certain search queries using the
+Matched Values control. (ITS#8046) (CVE-2015-1546, Closes: #776991)
+
+ -- Ryan Tandy Sun, 08 Feb 2015 20:19:11 +
+
openldap (2.4.40-3) unstable; urgency=m
Control: tags -1 + fixed-upstream
This is fixed upstream in git master now.
http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commitdiff;h=2f1a2dd329b91afe561cd06b872d09630d4edb6a
Test case: ldapsearch -E 'mv=(cn={*)(sn=*)'
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.de
Hi,
On Tue, Feb 03, 2015 at 10:37:24PM +0100, Luca BRUNO wrote:
Is it something that we introduced with our patching?
No. I have reproduced it in upstream git master and 2.4 branches, as
well as in 2.4.40-3 in sid.
Where did he get a beta release of 2.4.40?
I believe he means a git snaps
Package: slapd
Version: 2.4.40-3
Severity: important
Tags: upstream
Control: forwarded -1 http://www.openldap.org/its/?findid=8046
Bill MacAllister discovered that certain queries cause slapd to crash
while freeing operation controls. Details to follow.
This is a 2.4.40 regression. Earlier rel
Package: slapd
Version: 2.4.40-3
Severity: important
Tags: upstream fixed-upstream
Control: found -1 2.4.31-1+nmu2
Control: found -1 2.4.23-7.3
Control: forwarded -1 http://www.openldap.org/its/?findid=8027
With the deref overlay enabled, ldapsearch with '-E deref=member:'
causes slapd to crash.
Package: slapd
Version: 2.4.40-3
Severity: wishlist
Files in /etc/ldap/schema are updated during upgrades, per the conffile
rules, but currently we don't do anything about schemas imported into
config databases. It would be nice if we notified users that their
schemas were out of date, and eve
Control: forcemerge 546368 774316
Hi,
On Wed, Dec 31, 2014 at 09:27:22AM -0800, Ryan Tandy wrote:
At first glance this sounds like an invalid configuration. Assuming
the messages are accurate, slapadd is correct in refusing to add
entries that are outside of the configured suffix. Basically I
Hi,
This might not be needed any more. AFAICT chromium (even in stable) now
includes the pdf plugin.
thanks
Ryan
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Hi Niels,
On Wed, Jan 07, 2015 at 09:55:36PM +0100, Niels Thykier wrote:
I am considering to apply the attached patch as a solution to this bug.
Comments / review / tests welcome.
Thanks for working on this! From the openldap side, I'm happy with the
concept.
The dh_makeshlibs changes are n
Control: tag -1 moreinfo
Hi,
Thanks for the report.
On Tue, Dec 30, 2014 at 06:08:40PM -0500, Antoine Beaupré wrote:
This package cannot be upgaded to jessie:
Paramétrage de slapd (2.4.40-3) ...
Backing up /etc/ldap/slapd.d in /var/backups/slapd-2.4.31-1+nmu2... done.
Moving old database di
On Thu, Dec 04, 2014 at 12:06:35AM +0100, Ferenc Wagner wrote:
During a wheezy -> jessie upgrade test with slapd/dump_database: never,
it correctly skipped loading of my (MDB) database. But slapd did not
start:
mdb_db_open: database "...": DN index needs upgrade, run "slapindex entryDN"
http:/
On Wed, Dec 03, 2014 at 06:29:20PM -0800, Ryan Tandy wrote:
Ironically, since #759597 isn't fixed yet this should not be an issue
for the jessie upgrade; but if we try again at backporting to wheezy
we should make sure it's accounted for (maybe just reverting my change
to avoid the d
On Thu, Dec 04, 2014 at 12:06:35AM +0100, Ferenc Wagner wrote:
During a wheezy -> jessie upgrade test with slapd/dump_database: never,
it correctly skipped loading of my (MDB) database. But slapd did not
start:
mdb_db_open: database "...": DN index needs upgrade, run "slapindex entryDN"
http:/
On Wed, Dec 03, 2014 at 11:40:24PM +0100, Ferenc Wagner wrote:
I got pre-approval on #771962: the upload will be unblocked, provided
it's in unstable by Monday the 8th of December. People with upload
rights, if you can spare a minute please review the above change and
consider sponsoring the upl
[dropping #770827 from Cc, keeping #614569, changing subject]
On Tue, Dec 02, 2014 at 07:45:26PM +0100, Ferenc Wagner wrote:
I'm inclined to simply add that -s option. If the database was schema-
correct, it will stay so, and it it wasn't, then upgrade isn't the best
time to point that out. Th
Control: clone 770827 -2
Control: retitle -2 slapd: tries to reload on upgrade even with dumping disabled
Control: severity 614569 important
On Tue, Dec 02, 2014 at 11:27:47AM +0100, Ferenc Wagner wrote:
Now, do you plan to do anything about these for jessie? As I understand
it, anybody running
Control: tags -1 confirmed
On Mon, Nov 24, 2014 at 02:11:19PM +0100, Ferenc Wágner wrote:
I wanted to manually set dumping to "never" before upgrading, because restoring
the dump breaks on partial replicas (#614569). However, dpkg-reconfigure slapd
only asks if I want to "omit OpenLDAP server c
Control: tags -1 - moreinfo
On Mon, Nov 24, 2014 at 09:04:56AM +, Adam D. Barratt wrote:
Please go ahead, and remove the "moreinfo" tag once the package has
been accepted.
Accepted, built (the hurd failure is long-term), and installed in
unstable.
thanks,
Ryan
signature.asc
Descriptio
Package: src:openldap
Version: 2.4.40-2
Tags: moreinfo
In the last two uploads, test064-constraint has failed the first time on
one arch and succeeded on the second try:
https://buildd.debian.org/status/fetch.php?pkg=openldap&arch=mipsel&ver=2.4.40-2&stamp=1413961782
Starting test064-constra
Control: tags -1 + upstream moreinfo
Control: forwarded -1 http://www.openldap.org/its/index.cgi/Incoming?id=7249
Hi Florian,
Thank you for taking the time to report this bug.
On Sun, Nov 23, 2014 at 01:37:27PM +0100, Florian Mutter wrote:
The upstream bug seems to be
http://www.openldap.org/
Control: reassign -1 dpkg
Control: forcemerge 768599 -1
Hi,
On Sun, Nov 09, 2014 at 08:11:53PM +0100, Christian Hofstaedtler wrote:
Unpacking libaudit1:amd64 (1:2.4-1) ...
E: Sub-process /usr/bin/dpkg returned an error code (1)
I encountered the same thing. With -D777, dpkg says:
dpkg: cycle
Control: tags -1 pending
On Sat, Nov 01, 2014 at 09:29:16PM +0100, Helge Kreutzmann wrote:
Please find the updated German debconf translation for openldap
attached.
Please place this file in debian/po/ as de.po for your next upload.
Thanks, committed to git.
--
To UNSUBSCRIBE, email to debi
Control: tag -1 pending
On Sat, Nov 01, 2014 at 04:25:38PM +0100, Christian Perrier wrote:
Thanks for taking care of warning translators before uploading a new
version with string changes. It's highly appreciated.
To be honest, I have to disappoint you again: the changes already
entered unsta
On 14-10-23 08:55 AM, Alister Winfield wrote:
You sure this isn’t just the process not stopping normally due to a
client holding a socket open or a long query thus the process eventually
gets kill -KILL ‘d. It certainly use to be the case that the stop script
was undesirable under some conditions
Hi everyone,
On 14-08-23 10:39 PM, Ryan Tandy wrote:
On 03/08/14 03:29 PM, Simon McVittie wrote:
As far as I understand it, this became simpler in recent months:
* gnutls28 links against gmp, which was relicensed to "LGPL-3+ or
GPL-2+",
making it possible to link GPL-2 (onl
Control: reopen -1
On 16/09/14 11:48 AM, Dietrich Clauss wrote:
> Please, add a big fat warning in slapd-config(5).
Done; but keeping the bug open to track the fact that this is not really
resolved upstream.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject o
On 19/10/14 12:10 PM, Luca Bruno wrote:
> I know very little about openldap, but git log seems ok and I see other
> people
> testing and reviewing your RFS, so if nobody steps up before, I'm willing to
> sponsor this in the coming week.
That would be fantastic, thank you very much for offering!
Control: reopen -1
On 19/10/14 03:22 PM, Debian Bug Tracking System wrote:
> This means that you claim that the problem has been dealt with.
Only halfway. Still need to deal with fixing existing installs on
upgrade. Almost there...
signature.asc
Description: OpenPGP digital signature
On 19/10/14 08:39 AM, Jonathan Wiltshire wrote:
> Would sponsorship help to get this on the way?
Very much. Please see #765747.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
On 18/10/14 02:30 PM, Ferenc Wagner wrote:
> Beyond the unnecessary (and failing:) dump/reload, I also got a gratis
> DB_CONFIG file during upgrade from wheezy to 2.4.40-1.
Thanks; confirmed.
The comment in the maintainer script says:
# If there is an old DB_CONFIG file, restore it before
# runn
Hi Ferenc, thank you very much for your comments!
On 18/10/14 02:26 AM, Ferenc Wagner wrote:
> Ryan Tandy writes:
>
>> - Invoke find, chmod, and chown with -H in case /var/lib/ldap is a
>>symlink. (Closes: #742862)
>
> You mean chgrp, not chmod.
Right.
r errors. I would be happy to discuss the
Lintian issues with a reviewer.
Changes since the last upload:
[ Ryan Tandy ]
* New upstream release.
- fixed ldap_get_dn(3) ldap_ava definition (ITS#7860) (Closes:
#465024)
- fixed slapcat with external schema (ITS#7895) (Closes: #5992
On 14-10-08 06:06 AM, Petter Reinholdtsen wrote:
I managed to get a workaround in place, while we wait. The ISO available from
ftp://ftp.skolelinux.org/pub/test/debian-edu-amd64-i386-NETINST-testing.iso
>
(or http or rsync) was built 2014-10-02, when the ISO was still
working, and avoid the ker
On 14-10-07 03:14 PM, Wolfgang Schweer wrote:
Debian Edu uses GOsa² to manage user accounts, systems and groups.
Adding a system via GOsa² to the (BDB) LDAP database succeeds, using
ldapvi one can see the entries in LDAP. Rebooting the system just
afterwards results in loss of the added data. Sam
On 14-10-07 03:46 AM, Wolfgang Schweer wrote:
On Tue, Oct 07, 2014 at 10:34:06AM +0200, GALAMBOS Daniel wrote:
Do you have olcDbNoSync (or some equivalent setting in the bdb config
if you use that) set to true? If olcDbNoSync is set, then it could
result in dataloss, else the commited data shoul
Hi,
On 05/10/14 09:22 AM, Jonathan Wiltshire wrote:
> This bug has been allegedly pending since July, and it's holding up two
> transitions. Is there any plan for an upload?
Sorry, this is my fault. I said I wanted to get a more complete fix for
#761406 in the next upload, and then totally failed
Dear debian-l10n-english,
Bug #761406 reported a rule included in Debian's default slapd
configuration that granted users more permissions than one might assume,
with possible security consequences. I removed that rule for new
installations, but I don't want to try automatically changing existing
Hi pkg-openldap-devel readers,
On 13/09/14 12:05 PM, Ryan Tandy wrote:
On 13/09/14 08:41 AM, Dietrich Clauss wrote:
When the LDAP is used to authenticate users (e.g. in conjunction with
libnss-ldapd and libpam-ldapd), the rule "olcAccess: to * by self
write" allows
the user to
On 11/09/14 02:52 AM, Ian Campbell wrote:
The new networking related bits seem to be marvell.ko and mvmdio.ko.
marvell.ko was already packaged in the right place and I added
mvmdio.ko yesterday. I remain hopeful that will have solved your
issue.
Looks like it. The 20140915 daily boots fine and
Control: tags -1 + pending
On 13/09/14 08:41 AM, Dietrich Clauss wrote:
When the LDAP is used to authenticate users (e.g. in conjunction with
libnss-ldapd and libpam-ldapd), the rule "olcAccess: to * by self write" allows
the user to change her uidNumber and impersonate another user.
IMO the de
Control: found -1 2.4.39-1
Control: forwarded -1 http://www.openldap.org/its/?findid=6035
Control: tags -1 upstream
Hi Dietrich,
Thanks for the report. This is ITS#6035 upstream. In that report the
developer wrote:
This is a known limitation in authz regexp support. There are no
plans to cha
On 10/09/14 10:28 AM, Ian Campbell wrote:
In the meantime if you could collect the lsmod with a Wheezy kernel for
comparison we can check if there is anything else there which ought to
be exposed to the installer.
Attaching dmesg and report-hw from wheezy and jessie for completeness.
Differenc
On 10/09/14 02:17 AM, Ian Campbell wrote:
I'm suspicious of mvmdio which is a new module needed for networking
on some platforms. I can see it in the kirkwood udebs (installer pkg)
but not the orion5xs one which could explain you issue. I've enabled it
in the kernel package svn repo just now, but
Control: tags -1 - upstream
On 08/09/14 03:42 PM, Ryan Tandy wrote:
In wheezy and later, this became more severe: such filenames cause
slapd/slaptest to read uninitialized memory and probably crash.
The crash has been fixed upstream for 2.4.40, it now prints an error
about "invalid s
Package: installation-reports
Severity: normal
Dear debian-boot,
When I TFTP-boot my Linkstation Pro using a Jessie D-I image, it appears
to boot, but it never requests a DHCP address nor responds on the usual
default (for this box) IP of 192.168.11.150. (Does D-I use a different
fallback IP,
On 15/11/10 12:25 AM, Frederik Himpe wrote:
Migrating slapd.conf file (/etc/ldap/slapd.conf) to slapd.d failed with the
following
error while running slaptest:
config_build_entry: build "cn={10}gosa+samba3" failed: "(null)"
backend_startup_one (type=config, suffix="cn=config"): bi_db_o
Control: tags -1 - moreinfo + confirmed
On 08/09/14 01:20 PM, Andreas Barth wrote:
* Ryan Tandy (r...@nardis.ca) [140908 19:03]:
The patch you provided (thanks for that!) needs some updating to apply
to the current code. However it looks like it should be easy to fix up,
and I'd be hap
Control: tags -1 + moreinfo
Hi Bastian,
I'm sorry no one has answered this report in so long.
On 08/09/03 09:46 AM, Bastian Blank wrote:
ldap-utils should support password input via filedescriptor like gnupg
or losetup.
I'm willing to forward this feature request upstream on your behalf.
Be
Control: severity -1 wishlist
Control: tags -1 + moreinfo
Hi Andreas,
I'm sorry no one has followed up on this report in so long.
On 07/03/04 03:27 AM, Roland Bauerschmidt wrote:
Andreas Barth wrote:
please add a filtering capability to the shell-backend (like the
perl-backend currently has).
Control: tags -1 + confirmed
On 05/09/14 03:36 AM, Thorsten Glaser wrote:
Currently, src:openldap cannot be rebuilt in the archive because
it uses several virtual and nōn-virtual Build-Depends which are
not coïnstallable:
openldap build-depends on:
- libgcrypt-dev | --virtual-libgcrypt-dev
open
Control: tags -1 + pending
On 28/08/14 01:27 PM, Ryan Tandy wrote:
I also think that ideally we should use -nN instead of -b $suffix, to
remove the ambiguity in this case.
I still want to look into that later, but for now I've committed a small
change, based on Peder's analysis, t
Package: nss-pam-ldapd
Version: 0.9.4-2
Severity: minor
Hi Arthur,
With two providers of nslcd-2 and no preferred one declared, apt-get (at
least on two systems of mine) chooses pynslcd instead of nslcd.
Please consider changing the nslcd-2 dependency to 'nslcd | nslcd-2', at
least while pyn
Hi Bob, all,
I also encountered this with the new GnuTLS upload a few days ago. I
believe it's caused by #702711. The patch from that bug makes it work
again for me.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listma
Package: slapd
Version: 2.4.39-1
Severity: minor
The conditions where mdb and hdb/bdb need dumping/reloading are usually
going to be different. It would be nice if we would avoid dumping and
reloading databases that don't actually need it.
A proper fix for #759596 will probably get us most of
Package: slapd
Version: 2.4.39-1
Peder Stray reported in LP: #1362481 that the upgrade fails on his
system, which is set up as per the Syncrepl Proxy pattern from the admin
guide [1]; that is, it has a disk backend and an ldap backend, both
hosting the same suffix, and the latter is hidden.
This bug affects the new version of gnutls28, where initialization is
now done in a constructor when the library is loaded; setting up the
random subsystem fails because open("/dev/urandom") returns EFAULT.
I don't fully understand the patch suggested by Roland, but applying it
did fix the sym
Hi Ruud,
On 26/08/14 12:28 PM, Ruud Baart wrote:
I assume that I was wrong. According to your explanation I made the
mistake by copying the configuration from other LDAP servers and editing
files. If it is correct that it is an internal schema that comes
available with the appropriate ldapadd, I
Control: tags -1 + moreinfo unreproducible
Hi Ruud,
On Tue, Aug 26, 2014 at 11:01 AM, Ruud Baart wrote:
> While configuring the syncprov overlay I discovered the the objectClass
> olcSyncProvConfig was missing.
Can you please provide an example of a configuration that reproduces
this? Starting
[odd: I didn't see your message on pkg-openldap-devel, nor can I find it
in the archive. I wonder if it's stuck in a mod queue somewhere...]
On 03/08/14 03:29 PM, Simon McVittie wrote:
On Tue, 05 Nov 2013 at 15:45:07 +0100, Carlos Alberto Lopez Perez wrote:
On 24/04/12 17:25, Thorsten Glaser w
tags 742841 - moreinfo + confirmed
thanks
Looked at this again. I think it's the same as #676168.
The dh sequence includes:
debian/rules override_dh_makeshlibs
dh_shlibdeps
debian/rules override_dh_installdeb
We exclude libldap-2.4-2 from dh_makeshlibs and instead provide
debian/libl
Hello Luca,
On Tue, Aug 19, 2014 at 9:19 AM, Luca Bruno wrote:
> It is my understanding that those file were once provided by
> a libslapd2.3-dev package, which doesn’t exist anymore. However,
> git history[0] didn’t tell me the reason behind its removal,
> and a bug is currently open to have it
Control: tags -1 + moreinfo unreproducible
Hello Dean,
I'm sorry no one has answered your report until now.
On 03/05/11 01:50 PM, Dean Rantala wrote:
Passing the -y option (read password from file) causes failure to bind.
Example:
ldapadd -x -D 'cn=admin,dc=example,dc=com' -y /etc/pam_ldap.s
Control: tags -1 + moreinfo
Hello Jamie,
On 18/01/07 08:19 PM, Jamie ffolliott wrote:
After one week, the smbd process for a busy client grows to 260MB of ram,
and near that point it begins to fail serving files, refuses new
connections, and eventually fails completely. Other less busy windows
forcemerge 541256 648056
thanks
Hi Christophe,
On 08/11/11 09:12 AM, Christophe Ségui wrote:
Package: slapd
Version: 2.4.23-7.2
Openldap refuses to use cipher TLS_RSA_3DES_EDE_CBC_SHA1 when the cipher
is available to the system.
Starting from version 2.4.14 the meaning of the TLSCipherSuite
tags 421649 + moreinfo
thanks
Hi Jérôme,
On 30/04/07 12:48 PM, Jérôme Oufella wrote:
This version of libldap2 uses gnutls (libgnutls13) for secure
communications.
Using Debian's libnss-ldap (Version 251-7.5) and an authenticated secure
channel towards a Microsoft Active Directory LDAP server, c
Package: slapd
Version: 2.4.23-7.2
Severity: minor
Control: found -1 2.4.39-1
Hi Alessandro,
On 30/01/13 04:00 AM, Alessandro Dentella wrote:
Same problem here,
In my case dpkg-reconfigure worked yesterday but today ends with:
Stopping OpenLDAP: slapd.
Moving old database directory to /var
Control: tags -1 + moreinfo unreproducible
Hi Aniruddha,
I'm sorry this bug has gone so long without an answer.
On 09/10/10 02:11 AM, Aniruddha wrote:
Changes made with 'dpkg-reconfigure slapd' such as DNS domain name,
Organization name and Administrator password are not applied to
slapd. This
On 31/05/14 12:34 PM, Ryan Tandy wrote:
The LMDB backend is now considered stable, and in 2.4.40 upstream will
start to recommend it over hdb as the default backend. For jessie I'd
like for it to at least be included as an option in the debconf menus.
Trivial example of how that might
tags 731795 + moreinfo
thanks
Hi John,
I've tried a couple of times now to reproduce this bug in wheezy, with
no luck. I've tried forking many ldapsearch instances like you
suggested, as well as the slapd-mtread tool from the test suite, and the
only failures I get are when slapd hits the ope
Hi,
According to the changelog this bug was fixed in version 47-7. From a
brief test the behaviour looks correct in squeeze, so this can probably
be closed, right? Not sure why the upload didn't automatically close it...
thanks,
Ryan
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@list
Package: liblemonldap-ng-conf-perl
Version: 1.2.5-1
Severity: minor
On initial installation, the config script is called without a second
argument. The call to dpkg --compare-versions needs a guard around it,
like the corresponding call in postinst already has.
Minor severity, the script does sti
Hi Rainer,
on Tue, 22 Feb 2011 you wrote:
>
> Note that the main slapd TLS settings are not used by the syncrepl
> engine; by default the TLS parameters from a ldap.conf(5) configuration
> file will be used. TLS settings may be specified here, in which case any
> ldap.conf(5) settings will be com
tags 584133 + moreinfo
thanks
Hi Peter,
On 15/09/10 01:32 PM, Peter McGill wrote:
I also found the following configure option:
"SLAPD (Standalone LDAP Daemon) Options:
--enable-rlookupsenable reverse lookups of client hostnames [no]"
The Debian package already enables that option, bu
retitle 599235 slapcat fails with olcRootDSE using external schema
tags 599235 + confirmed upstream
found 599235 2.4.39-1
thanks
Hi,
On 28/10/10 01:33 AM, Mathieu Parent wrote:
>> str2entry: invalid value for attributeType objectClass #0 (syntax
>> 1.3.6.1.4.1.1466.115.121.1.38)
>> root_dse_read_
tags 689025 + moreinfo
thanks
Hi Dominik,
On 28/09/12 01:27 PM, Dominik George wrote:
A full GDB backtrace of all threads would be useful for examining this issue
any further.
kI will have to build a test case for that. Obviously, I cannot break
production deliberately for that ;).
Did you
401 - 500 of 606 matches
Mail list logo
