[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Continuous mode (ldapmodify -c) not working

To: Michael Ströder <michael@stroeder.com>
Subject: Re: Continuous mode (ldapmodify -c) not working
From: Ori Bani <oribani@gmail.com>
Date: Mon, 21 Jan 2013 12:57:24 -0800
Cc: openldap-technical@openldap.org
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; bh=H+zo2asWgGvl6ucjIx0YyXeMtEpiQllYsmleqw7Jn9Y=; b=gOV9klKzzaY1mFQKCxXEwLnkG54wxFGy7IVjvla7P2U7rTeHdk2NE7teMs5Njj7VkA Jvu0sZSNA9K5Gr8NHkMimqd+bfjb9Lk8LH98ruzhdqL1zF24Q+AKUBBnX+0IHCqFq60l lpz/fBdR/DvtMgnbiUgEKerDxbjVFzRbXmoaeuO4LBKZS1dHffZ/NKxil9JysC5uGSZc CvsUgThur2ksiPLeURU29b1MudyTK2IHAQ1d/lbTUGQrAe807KVEx4oLgpc9I16kI67w tdjz8dypeOiALK7v/RxcSMEBVJqBELJRgeNEK1h5egBku5cj/fGMpps4kyxWzsKEDgjB 7hNg==
In-reply-to: <50FDAA1C.2030206@stroeder.com>
References: <CALBCx2f23GtfudcKYdmR=juwBHvra2SWvCsbTe80=r-51DsBhQ@mail.gmail.com> <50FD951F.2010801@stroeder.com> <CALBCx2dky3kxOThmV7HupsGTeMx0=WNv=oeZY7ROCOK5GBiyUg@mail.gmail.com> <50FDA83C.1040009@stroeder.com> <CALBCx2eXHr_T5u=WDXkDS=RqVUhbKBgnODjZiygH1wgQ3mks8w@mail.gmail.com> <50FDAA1C.2030206@stroeder.com>

On Mon, Jan 21, 2013 at 12:50 PM, Michael Ströder <michael@stroeder.com> wrote:
> Ori Bani wrote:
>> On Mon, Jan 21, 2013 at 12:42 PM, Michael Ströder <michael@stroeder.com> wrote:
>>> Ori Bani wrote:
>>>> Thanks so much for the reply.  Can you please clarify --
>>>>
>>>>>> Am I doing something wrong?  Here is an example:
>>>>>>
>>>>>> $ ldapmodify -c -x -D 'cn=config' -W
>>>>>> Enter LDAP Password: <password>
>>>>>> dn: olcDatabase={0}config,cn=config
>>>>>> changetype: modify
>>>>>> delete: olcSizeLimit
>>>>>> -
>>>>>> modifying entry "olcDatabase={0}config,cn=config"
>>>>>> ldap_modify: No such attribute (16)
>>>>>>         additional info: modify/delete: olcSizeLimit: no such attribute
>>>>>
>>>>> Option -c does not mean that you can override any server-side checking. It
>>>>> just means that processing the LDIF input is continued.
>>>>>
>>>>> In your case entry olcDatabase={0}config,cn=config simply does not contain
>>>>> attribute 'olcSizeLimit' which is what the error message says.
>>>>
>>>> I'd be fine if that was the case, but I'm not seeing it work as you
>>>> suggest (processing does NOT continue).  Surely I'm doing something
>>>> wrong.  Here is an example of a situation where the subsequest action
>>>> in the LDIF is ignored after the error:
>>>>
>>>> $ ldapmodify -c -x -D 'cn=config' -W
>>>> Enter LDAP Password: <password>
>>>> dn: olcDatabase={0}config,cn=config
>>>> changetype: modify
>>>> delete: olcSizeLimit
>>>> -
>>>> add: olcSizeLimit
>>>> olcSizeLimit: 250
>>>> -
>>>> modifying entry "olcDatabase={0}config,cn=config"
>>>> ldap_modify: No such attribute (16)
>>>>         additional info: modify/delete: olcSizeLimit: no such attribute
>>>
>>> Why don't you just use this if attribute 'olcSizeLimit' is not in
>>> the entry yet?
>>
>> Part of an automated system.
>
> Then fix that system.

Spare the snide comments.

>>  If -c worked as the man page states,
>> this should not be a problem.
>
> You misinterpret completely what the man page says about option -c.

It's easy to interpret it as I have given the vague quality of the man page.

-c Continuous operation mode.  Errors are reported, but  ldapmodify  will
              continue  with  modifications.  The default is to exit
after reporting
              an error.

It says nothing about *where* it will continue.  Next line, next
entry, what?  As I've said in my last email, by trial and error, I
determined that it continues with the next entry.

>>> dn: olcDatabase={0}config,cn=config
>>> changetype: modify
>>> add: olcSizeLimit
>>> olcSizeLimit: 250
>>> -
>>>
>>> After all -c works as expected: If you have more than one records in your LDIF
>>> file it will try to process the next one.
>>
>> I just showed you that this is not true in my case.  Why are you
>> saying this?  What am I not understanding?
>
> Read RFC 2849 about how LDIF is structured. And then understand that your LDIF
> change record leads to a *single* modify request which obviously fails because
> of 'olcSizeLimit' not existing (which is a feature not a bug).

Is your answer to all OpenLDAP users coming here for assistance really
to read the RFC to clarify vague man pages and other
misunderstandings?  Rather, isn't this community here to help in more
productive ways?

Follow-Ups:
- Re: Continuous mode (ldapmodify -c) not working
  - From: Ori Bani <oribani@gmail.com>
- Re: Continuous mode (ldapmodify -c) not working
  - From: Michael Ströder <michael@stroeder.com>

References:
- Continuous mode (ldapmodify -c) not working
  - From: Ori Bani <oribani@gmail.com>
- Re: Continuous mode (ldapmodify -c) not working
  - From: Michael Ströder <michael@stroeder.com>
- Re: Continuous mode (ldapmodify -c) not working
  - From: Ori Bani <oribani@gmail.com>
- Re: Continuous mode (ldapmodify -c) not working
  - From: Michael Ströder <michael@stroeder.com>
- Re: Continuous mode (ldapmodify -c) not working
  - From: Ori Bani <oribani@gmail.com>
- Re: Continuous mode (ldapmodify -c) not working
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: Continuous mode (ldapmodify -c) not working
Next by Date: Re: Continuous mode (ldapmodify -c) not working
Index(es):
- Chronological
- Thread