Subject: Re: pkg/34183: openldap-server dies silently on startup after fresh install
To: None <ghen@NetBSD.org, gnats-admin@netbsd.org, pkgsrc-bugs@netbsd.org,>
From: Geert Hendrickx <ghen@NetBSD.org>
List: pkgsrc-bugs
Date: 08/11/2006 05:45:01
The following reply was made to PR pkg/34183; it has been noted by GNATS.
From: Geert Hendrickx <ghen@NetBSD.org>
To: gnats-bugs@NetBSD.org
Cc:
Subject: Re: pkg/34183: openldap-server dies silently on startup after fresh install
Date: Fri, 11 Aug 2006 07:44:47 +0200
On Thu, Aug 10, 2006 at 10:35:00PM +0000, bad@bsd.de wrote:
> >Description:
> After installing the openldap-server package for the first time on a system
> fails to start without any error messages.
slapd is completely silent by default (like most daemons). For verbose
output on stderr, try starting it manually with -d debuglevel. You can use
-d -1 to set all the bits, for very verbose output, or -d 0 for just
critical error output. Try to start like: "/usr/pkg/libexec/slapd -u slapd
-d -1". If you suspect permission problems, try to start as root first
(leave out the "-u slapd").
For details about the different debuglevels, see
http://www.openldap.org/doc/admin23/slapdconfig.html#loglevel%20%3Cinteger%3E
> There are multiple bugs:
>
> - slapd fails to start because the permissions on $PKG_SYSCONFDIR/openldap and
> below don't allow slapd to access the files because they aren't group readable.
This dir should be world-readable (755) by default. Only slapd.conf itself
should be confidential (750 root:ldap).
> - slapd does syslog these errors but it logs them at "local4.debug" instead of
> severity "error" or higher.
That's default slapd behaviour. If you consider it a bug, take it to the
OpenLDAP developers.
> - also, slapd logs syntax errors in the config files that prevent it from
> starting with severity "debug" instead of "error" or higher.
That's default slapd behaviour.
> - the file permissions on /var/openldap/openldap-data are wrong, too.
This dir should be created as 700 slapd:ldap.
> >How-To-Repeat:
> rm -rf $PKG_SYSCONFDIR/openldap /var/openldap
> cd pkgsrc/databases/openldap-server && make install
>
> start slapd by way of the rc.d script
> >Fix:
> I haven't looked at fixing this.
Geert