Bug#685504: nslcd: error writing to client: Broken pipe

Arturo Borrero Tue, 21 Aug 2012 04:21:16 -0700

Package: nslcd
Version: 0.8.10-1
Severity: normal

I'm getting amounts of error messages in syslog:


[...]
Aug 21 13:05:08 cf01 nslcd[3169]: [7a3ca9] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:13 cf01 nslcd[3169]: [17c6d2] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:18 cf01 nslcd[3169]: [e73288] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:23 cf01 nslcd[3169]: [ef03ee] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:28 cf01 nslcd[3169]: [364984] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:33 cf01 nslcd[3169]: [ce41e7] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:38 cf01 nslcd[3169]: [5c691e] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:43 cf01 nslcd[3169]: [3d2417] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:48 cf01 nslcd[3169]: [87c113] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:53 cf01 nslcd[3169]: [9e9872] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:05:59 cf01 nslcd[3169]: [1e9fe1] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:04 cf01 nslcd[3169]: [7b5d55] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:09 cf01 nslcd[3169]: [6c71db] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:14 cf01 nslcd[3169]: [b261c0] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:19 cf01 nslcd[3169]: [7eb873] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:24 cf01 nslcd[3169]: [fb9a78] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:29 cf01 nslcd[3169]: [0d3857] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:34 cf01 nslcd[3169]: [ec2a78] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:39 cf01 nslcd[3169]: [c73358] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:44 cf01 nslcd[3169]: [dd434e] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:50 cf01 nslcd[3169]: [8d8982] <passwd=3816> error writing to 
client: Broken pipe
Aug 21 13:06:55 cf01 nslcd[3169]: [52ee99] <passwd=3816> error writing to 
client: Broken pipe
[...]

With an aparently fine config:

root@cf01:~# cat /etc/nslcd.conf 
uid             nslcd
gid             nslcd
uri             ldaps://ldap.example.es/
uri             ldaps://ldap1.example.es/
uri             ldaps://ldap2.example.es/
uri             ldaps://ldap3.example.es/
base            ou=example,ou=users,ou=cuentas,dc=example,dc=es
binddn          uid=example,ou=cuentas,dc=example,dc=es
bindpw          ****
ssl             on
tls_reqcert     demand
tls_cacertfile  /etc/ssl/cacert/ca_terena.pem

I exluded debconf information as it seems redundant.

Here is a debug information:

root@cf01:/etc/openvpn# /etc/init.d/nslcd stop
[ ok ] Stopping LDAP connection daemon: nslcd.
root@cf01:/etc/openvpn# nslcd -d
nslcd: DEBUG: add_uri(ldaps://ldap.example.es/)
nslcd: DEBUG: add_uri(ldaps://ldap1.example.es/)
nslcd: DEBUG: add_uri(ldaps://ldap2.example.es/)
nslcd: DEBUG: add_uri(ldaps://ldap3.example.es/)
nslcd: DEBUG: ldap_set_option(LDAP_OPT_X_TLS_REQUIRE_CERT,2)
nslcd: DEBUG: 
ldap_set_option(LDAP_OPT_X_TLS_CACERTFILE,"/etc/ssl/cacert/ca_terena.pem")
nslcd: version 0.8.10 starting
nslcd: DEBUG: unlink() of /var/run/nslcd/socket failed (ignored): No such file 
or directory
nslcd: DEBUG: setgroups(0,NULL) done
nslcd: DEBUG: setgid(106) done
nslcd: DEBUG: setuid(104) done
nslcd: accepting connections
nslcd: [8b4567] DEBUG: connection from pid=18419 uid=0 gid=0
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: [8b4567] <passwd=3816> DEBUG: 
myldap_search(base="ou=example,ou=users,ou=cuentas,dc=example,dc=es", 
filter="(&(objectClass=posixAccount)(uidNumber=3816))")
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_initialize(ldaps://ldap.example.es/)
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_set_rebind_proc()
nslcd: [8b4567] <passwd=3816> DEBUG: 
ldap_set_option(LDAP_OPT_PROTOCOL_VERSION,3)
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_set_option(LDAP_OPT_DEREF,0)
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_set_option(LDAP_OPT_TIMELIMIT,0)
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_set_option(LDAP_OPT_TIMEOUT,0)
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_set_option(LDAP_OPT_NETWORK_TIMEOUT,0)
nslcd: [8b4567] <passwd=3816> DEBUG: 
ldap_set_option(LDAP_OPT_REFERRALS,LDAP_OPT_ON)
nslcd: [8b4567] <passwd=3816> DEBUG: 
ldap_set_option(LDAP_OPT_RESTART,LDAP_OPT_ON)
nslcd: [8b4567] <passwd=3816> DEBUG: 
ldap_set_option(LDAP_OPT_X_TLS,LDAP_OPT_X_TLS_HARD)
nslcd: [8b4567] <passwd=3816> DEBUG: 
ldap_simple_bind_s("uid=example,ou=cuentas,dc=example,dc=es","***") 
(uri="ldaps://ldap.example.es/")
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_result(): 
uid=mmoreda,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [8b4567] <passwd=3816> (re)loading /etc/nsswitch.conf
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_result(): 
uid=saul.dominguez,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [8b4567] <passwd=3816> DEBUG: ldap_result(): 
uid=jesus.maria,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [8b4567] <passwd=3816> error writing to client: Broken pipe
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: [7b23c6] DEBUG: connection from pid=18438 uid=0 gid=0
nslcd: [7b23c6] <group/member="root"> DEBUG: 
myldap_search(base="ou=example,ou=users,ou=cuentas,dc=example,dc=es", 
filter="(&(objectClass=posixAccount)(uid=root))")
nslcd: [7b23c6] <group/member="root"> DEBUG: 
ldap_initialize(ldaps://ldap.example.es/)
nslcd: [7b23c6] <group/member="root"> DEBUG: ldap_set_rebind_proc()
nslcd: [7b23c6] <group/member="root"> DEBUG: 
ldap_set_option(LDAP_OPT_PROTOCOL_VERSION,3)
nslcd: [7b23c6] <group/member="root"> DEBUG: ldap_set_option(LDAP_OPT_DEREF,0)
nslcd: [7b23c6] <group/member="root"> DEBUG: 
ldap_set_option(LDAP_OPT_TIMELIMIT,0)
nslcd: [7b23c6] <group/member="root"> DEBUG: ldap_set_option(LDAP_OPT_TIMEOUT,0)
nslcd: [7b23c6] <group/member="root"> DEBUG: 
ldap_set_option(LDAP_OPT_NETWORK_TIMEOUT,0)
nslcd: [7b23c6] <group/member="root"> DEBUG: 
ldap_set_option(LDAP_OPT_REFERRALS,LDAP_OPT_ON)
nslcd: [7b23c6] <group/member="root"> DEBUG: 
ldap_set_option(LDAP_OPT_RESTART,LDAP_OPT_ON)
nslcd: [7b23c6] <group/member="root"> DEBUG: 
ldap_set_option(LDAP_OPT_X_TLS,LDAP_OPT_X_TLS_HARD)
nslcd: [7b23c6] <group/member="root"> DEBUG: 
ldap_simple_bind_s("uid=example,ou=cuentas,dc=example,dc=es","***") 
(uri="ldaps://ldap.example.es/")
nslcd: [7b23c6] <group/member="root"> DEBUG: ldap_result(): end of results (0 
total)
nslcd: [7b23c6] <group/member="root"> DEBUG: 
myldap_search(base="ou=example,ou=users,ou=cuentas,dc=example,dc=es", 
filter="(&(objectClass=posixGroup)(memberUid=root))")
nslcd: [7b23c6] <group/member="root"> DEBUG: ldap_result(): end of results (0 
total)
nslcd: [3c9869] DEBUG: connection from pid=18513 uid=0 gid=0
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: [3c9869] <passwd=3816> DEBUG: 
myldap_search(base="ou=example,ou=users,ou=cuentas,dc=example,dc=es", 
filter="(&(objectClass=posixAccount)(uidNumber=3816))")
nslcd: [3c9869] <passwd=3816> DEBUG: ldap_result(): 
uid=mmoreda,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [3c9869] <passwd=3816> DEBUG: ldap_result(): 
uid=saul.dominguez,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [3c9869] <passwd=3816> DEBUG: ldap_result(): 
uid=jesus.maria,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [3c9869] <passwd=3816> error writing to client: Broken pipe
nslcd: [334873] DEBUG: connection from pid=18681 uid=0 gid=0
nslcd: [334873] <passwd=3816> DEBUG: 
myldap_search(base="ou=example,ou=users,ou=cuentas,dc=example,dc=es", 
filter="(&(objectClass=posixAccount)(uidNumber=3816))")
nslcd: [334873] <passwd=3816> DEBUG: ldap_initialize(ldaps://ldap.example.es/)
nslcd: [334873] <passwd=3816> DEBUG: ldap_set_rebind_proc()
nslcd: [334873] <passwd=3816> DEBUG: 
ldap_set_option(LDAP_OPT_PROTOCOL_VERSION,3)
nslcd: [334873] <passwd=3816> DEBUG: ldap_set_option(LDAP_OPT_DEREF,0)
nslcd: [334873] <passwd=3816> DEBUG: ldap_set_option(LDAP_OPT_TIMELIMIT,0)
nslcd: [334873] <passwd=3816> DEBUG: ldap_set_option(LDAP_OPT_TIMEOUT,0)
nslcd: [334873] <passwd=3816> DEBUG: ldap_set_option(LDAP_OPT_NETWORK_TIMEOUT,0)
nslcd: [334873] <passwd=3816> DEBUG: 
ldap_set_option(LDAP_OPT_REFERRALS,LDAP_OPT_ON)
nslcd: [334873] <passwd=3816> DEBUG: 
ldap_set_option(LDAP_OPT_RESTART,LDAP_OPT_ON)
nslcd: [334873] <passwd=3816> DEBUG: 
ldap_set_option(LDAP_OPT_X_TLS,LDAP_OPT_X_TLS_HARD)
nslcd: [334873] <passwd=3816> DEBUG: 
ldap_simple_bind_s("uid=example,ou=cuentas,dc=example,dc=es","***") 
(uri="ldaps://ldap.example.es/")
nslcd: [334873] <passwd=3816> DEBUG: ldap_result(): 
uid=mmoreda,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [334873] <passwd=3816> DEBUG: ldap_result(): 
uid=saul.dominguez,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [334873] <passwd=3816> DEBUG: ldap_result(): 
uid=jesus.maria,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [334873] <passwd=3816> error writing to client: Broken pipe
nslcd: [b0dc51] DEBUG: connection from pid=18772 uid=0 gid=0
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: [b0dc51] <passwd=3816> DEBUG: 
myldap_search(base="ou=example,ou=users,ou=cuentas,dc=example,dc=es", 
filter="(&(objectClass=posixAccount)(uidNumber=3816))")
nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable
nslcd: [b0dc51] <passwd=3816> DEBUG: ldap_result(): 
uid=mmoreda,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [b0dc51] <passwd=3816> DEBUG: ldap_result(): 
uid=saul.dominguez,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [b0dc51] <passwd=3816> DEBUG: ldap_result(): 
uid=jesus.maria,ou=example,ou=users,ou=cuentas,dc=example,dc=es
nslcd: [b0dc51] <passwd=3816> error writing to client: Broken pipe
[...]

I think most connects to nslcd are from OpenVPN pamldap plugin.

The users that appear in logs are actually in the LDAP database.


-- System Information:
Debian Release: wheezy/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-3-amd64 (SMP w/16 CPU cores)
Locale: LANG=es_ES.UTF-8, LC_CTYPE=es_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages nslcd depends on:
ii  adduser                3.113+nmu3
ii  debconf [debconf-2.0]  1.5.44
ii  libc6                  2.13-35
ii  libgssapi-krb5-2       1.10.1+dfsg-2
ii  libldap-2.4-2          2.4.31-1

Versions of packages nslcd recommends:
ii  bind9-host [host]           1:9.8.1.dfsg.P1-4.2
ii  host                        1:9.8.1.dfsg.P1-4.2
ii  ldap-utils                  2.4.31-1
ii  libnss-ldapd [libnss-ldap]  0.8.10-1
ii  libpam-ldapd [libpam-ldap]  0.8.10-1
pn  nscd                        <none>

Versions of packages nslcd suggests:
pn  kstart  <none>

-- debconf information excluded


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#685504: nslcd: error writing to client: Broken pipe

Reply via email to