[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Checksum query

To: Penza Kenneth at MITA <kenneth.penza@gov.mt>, "'openldap-technical@openldap.org'" <openldap-technical@openldap.org>
Subject: Re: Checksum query
From: Howard Chu <hyc@symas.com>
Date: Thu, 10 Dec 2015 14:37:01 +0000
In-reply-to: <272B65C17A3C8D4FB771DE5AF5ACBD863601366A@EXH01-LK.email.local>
References: <272B65C17A3C8D4FB771DE5AF5ACBD863601366A@EXH01-LK.email.local>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Firefox/45.0 SeaMonkey/2.42a1

Penza Kenneth at MITA wrote:

Hi,

	I am configuring an openldap 2.4.40 on RHEL7 x86_64 and want to enable database checksum. Below please find the steps I am following:

dn: olcDatabase={2}hdb,cn=config
objectClass: olcDatabaseConfig
objectClass: olcHdbConfig
olcAccess: {0} to attrs=userPassword,shadowLastChange by self write by anonymous auth by  dn="cn=manager,dc=example,dc=com" write by * none
olcAccess: {1} to dn.base="" by * read
olcAccess: {2} to * by self write by dn="cn=manager,dc=example,dc=com" write by * read
olcAddContentAcl: FALSE
olcDatabase: {2}hdb
olcDbCacheFree: 1
olcDbCacheSize: 1000
olcDbCheckpoint: 512 15
olcDbChecksum: true
olcDbConfig: {0}set_cachesize 0 2097152 0
olcDbConfig: {1}set_lk_max_objects 3000
olcDbConfig: {2}set_lk_max_locks 1500
olcDbConfig: {3}set_lk_max_lockers 1500
olcDbDirectory: /var/lib/ldap
olcDbDirtyRead: FALSE
olcDbDNcacheSize: 0
olcDbIDLcacheSize: 3000
olcDbIndex:     cn,sn,mail   pres,eq,approx,sub
olcDbIndex:     objectClass  eq
olcDbLinearIndex: FALSE
olcDbMode: 0600
olcDbNoSync: FALSE
olcDbSearchStack: 16
olcDbShmKey: 0
olcLastMod: TRUE
olcMaxDerefDepth: 15
olcReadOnly: FALSE
olcRootDN: cn=manager,dc=example,dc=com
olcRootPW: {SSHA}C6JfIRI6XajtZcjabtSJZyi1rArPsy1j
olcSuffix: dc=example,dc=com
structuralObjectClass: olcHdbConfig
[root@host01 mail]#

[root@host01 mail]# slapadd -v -F slapd.d -n 0 -l config.ldif
added: "cn=config" (00000001)
added: "cn=schema,cn=config" (00000001)
added: "cn={0}core,cn=schema,cn=config" (00000001)
added: "cn={1}cosine,cn=schema,cn=config" (00000001)
added: "cn={2}inetorgperson,cn=schema,cn=config" (00000001)
added: "cn={3}nis,cn=schema,cn=config" (00000001)
added: "olcDatabase={-1}frontend,cn=config" (00000001)
added: "olcDatabase={0}config,cn=config" (00000001)
added: "olcDatabase={1}monitor,cn=config" (00000001)
56617865 Entry (olcDatabase={2}hdb,cn=config), attribute 'olcDbChecksum' not allowed
slapadd: dn="olcDatabase={2}hdb,cn=config" (line=1079): (65) attribute 'olcDbChecksum' not allowed
_#################### 100.00% eta   none elapsed            none fast!
Closing DB...
[root@host01 mail]#

From the github sources

back-bdb/config.c
   78     { "checksum", NULL, 1, 2, 0, ARG_ON_OFF|ARG_MAGIC|BDB_CHECKSUM,
   79         bdb_cf_gen, "( OLcfgDbAt:1.16 NAME 'olcDbChecksum' "
   80             "DESC 'Enable database checksum validation' "

I tried olcDbChecksum: true, olcDbChecksum: TRUE, olcDbChecksum: 1, olcDbChecksum: ON without any success.

Do you have any ideas on how I get around this ?

Looks like the olcDbChecksum attribute is missing from the olcHdbConfigobjectclass. Please file an ITS on this.


--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

Follow-Ups:
- RE: Checksum query
  - From: Penza Kenneth at MITA <kenneth.penza@gov.mt>

References:
- Checksum query
  - From: Penza Kenneth at MITA <kenneth.penza@gov.mt>

Prev by Date: Re: Ubuntu PPA of OpenLDAP?
Next by Date: RE: Checksum query
Index(es):
- Chronological
- Thread