On Aug 30, 2013, at 2:57 PM, Quanah Gibson-Mount <[email protected]> wrote:
> > > On Aug 30, 2013, at 2:31 PM, Clint Petty <[email protected]> wrote: > >>> I.e., you need >>> to look at /tmp/ldif that you generated via slapcat. >>> >>> --Quanah >> ----------------------------------------------------------------- >> >> Ok, I cleaned up the /tmp/ldif file, and added the database: >> # slapadd -F /usr/local/etc/openldap/slapd.d -n 1 -l /tmp/ldif >> 52210b14 bdb_monitor_db_open: monitoring disabled; configure monitor >> database to enable >> _#################### 100.00% eta none elapsed none fast! >> >> Closing DB... >> # >> >> Then tried starting slapd: >> # service slapd start >> slapd: [INFO] Using /etc/default/slapd for configuration >> slapd: [INFO] Launching OpenLDAP configuration test... >> slapd: [OK] OpenLDAP configuration test successful >> slapd: [INFO] No db_recover done >> slapd: [INFO] Launching OpenLDAP... >> slapd: [OK] File descriptor limit set to 1024 >> slapd: [ALERT] No PID file for OpenLDAP >> >> Then tried starting slapd in debug mode: >> # /usr/local/openldap/libexec/slapd -d -1 -u ldap -F >> /usr/local/etc/openldap/slapd.d -h ldapi:/// >> 52210bda slapd startup: initiated. >> 52210bda backend_startup_one: starting "cn=config" >> 52210bda config_back_db_open >> Backend ACL: access to * >> by * none >> 52210bda config_back_db_open: line 0: warning: cannot assess the validity of >> the ACL scope within backend naming context >> 52210bda backend_startup_one: starting "dc=luthresearch,dc=net" >> 52210bda bdb_db_open: "dc=luthresearch,dc=net" >> 52210bda bdb_db_open: database "dc=luthresearch,dc=net": alock package is >> unstable. >> 52210bda backend_startup_one (type=bdb, suffix="dc=luthresearch,dc=net"): >> bi_db_open failed! (-1) >> 52210bda slapd shutdown: initiated >> 52210bda ====> bdb_cache_release_all >> 52210bda slapd destroy: freeing system resources. >> 52210bda syncinfo_free: rid=002 >> 52210bda slapd stopped. >> >> Saw that alock package is unstable, so removed the alock file and ran >> db_recover (which recreated the alock file). >> Then tried starting slapd in debug mode again: >> # /usr/local/openldap/libexec/slapd -d -1 -u ldap -F >> /usr/local/etc/openldap/slapd.d -h ldapi:/// >> 52210d17 slapd startup: initiated. >> 52210d17 backend_startup_one: starting "cn=config" >> 52210d17 config_back_db_open >> Backend ACL: access to * >> by * none >> >> 52210d17 config_back_db_open: line 0: warning: cannot assess the validity of >> the ACL scope within backend naming context >> 52210d17 backend_startup_one: starting "dc=luthresearch,dc=net" >> 52210d17 bdb_db_open: "dc=luthresearch,dc=net" >> 52210d17 bdb_db_open: database "dc=luthresearch,dc=net": >> dbenv_open(/var/lib/ldap). >> 52210d17 bdb(dc=luthresearch,dc=net): /var/lib/ldap/log.0000000003: log file >> unreadable: Permission denied >> 52210d17 bdb(dc=luthresearch,dc=net): PANIC: Permission denied >> 52210d17 bdb(dc=luthresearch,dc=net): Invalid log file: log.0000000003: >> DB_RUNRECOVERY: Fatal error, run database recovery >> 52210d17 bdb(dc=luthresearch,dc=net): PANIC: DB_RUNRECOVERY: Fatal error, >> run database recovery >> 52210d17 bdb(dc=luthresearch,dc=net): unable to join the environment >> 52210d17 bdb_db_open: database "dc=luthresearch,dc=net" cannot be opened, >> err -30975. Restore from backup! >> 52210d17 ====> bdb_cache_release_all >> 52210d17 bdb(dc=luthresearch,dc=net): txn_checkpoint interface requires an >> environment configured for the transaction subsystem >> 52210d17 bdb_db_close: database "dc=luthresearch,dc=net": txn_checkpoint >> failed: Invalid argument (22). >> 52210d17 backend_startup_one (type=bdb, suffix="dc=luthresearch,dc=net"): >> bi_db_open failed! (-30975) >> 52210d17 slapd shutdown: initiated >> 52210d17 ====> bdb_cache_release_all >> 52210d17 bdb_db_close: database "dc=luthresearch,dc=net": alock_close failed >> 52210d17 slapd destroy: freeing system resources. >> 52210d17 syncinfo_free: rid=002 >> 52210d17 slapd stopped. >> # >> >> Fixed the permissions error, and now get: >> # /usr/local/openldap/libexec/slapd -d -1 -u ldap -F >> /usr/local/etc/openldap/slapd.d -h ldapi:/// >> 52210e6f slapd startup: initiated. >> 52210e6f backend_startup_one: starting "cn=config" >> 52210e6f config_back_db_open >> Backend ACL: access to * >> by * none >> >> 52210e6f config_back_db_open: line 0: warning: cannot assess the validity of >> the ACL scope within backend naming context >> 52210e6f backend_startup_one: starting "dc=luthresearch,dc=net" >> 52210e6f bdb_db_open: "dc=luthresearch,dc=net" >> 52210e6f bdb_db_open: database "dc=luthresearch,dc=net": >> dbenv_open(/var/lib/ldap). >> 52210e6f bdb(dc=luthresearch,dc=net): Unacceptable log file >> /var/lib/ldap/log.0000000003: unsupported log version 14 >> 52210e6f bdb(dc=luthresearch,dc=net): Invalid log file: log.0000000003: >> Invalid argument >> 52210e6f bdb(dc=luthresearch,dc=net): PANIC: Invalid argument >> 52210e6f bdb(dc=luthresearch,dc=net): unable to join the environment >> 52210e6f bdb_db_open: database "dc=luthresearch,dc=net" cannot be opened, >> err -30975. Restore from backup! >> 52210e6f ====> bdb_cache_release_all >> 52210e6f bdb(dc=luthresearch,dc=net): txn_checkpoint interface requires an >> environment configured for the transaction subsystem >> 52210e6f bdb_db_close: database "dc=luthresearch,dc=net": txn_checkpoint >> failed: Invalid argument (22). >> 52210e6f backend_startup_one (type=bdb, suffix="dc=luthresearch,dc=net"): >> bi_db_open failed! (-30975) >> 52210e6f slapd shutdown: initiated >> 52210e6f ====> bdb_cache_release_all >> 52210e6f bdb_db_close: database "dc=luthresearch,dc=net": alock_close failed >> 52210e6f slapd destroy: freeing system resources. >> 52210e6f syncinfo_free: rid=002 >> 52210e6f slapd stopped. >> # >> >> Clint > > Fairly obvious. You ran slapadd as root and slapd runs as a different user. > Use slapadd as the same user as slapd uses or fix the permissions with champs chmod even. Stupid autocorrect.
