[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Search returning nothing with 2.1.25, but ok with 2.0.27

To: Lucas Brasilino <brasilino@recife.pe.gov.br>
Subject: Re: Search returning nothing with 2.1.25, but ok with 2.0.27
From: D.M.Lewney@sussex.ac.uk (Dave Lewney)
Date: Wed, 07 Jan 2004 09:14:34 +0000
Cc: openldap-software@OpenLDAP.org
References: <3FF99970.8080400@recife.pe.gov.br>
User-agent: Mozilla/5.0 (X11; U; SunOS sun4u; en-US; rv:1.1) Gecko/20020827

Lucas Brasilino wrote:

Hi

    I'm experiencing a problem while searching my user database
after 2.0.27 -> 2.1.25 migration. I've searched in the archives
and found nothing, sorry if it was a discussed thread.
    I've compiled 2.1.25 with ldbm (gdbm) backend, dumped
my user database from 2.0.27 with slapcat and populated
it within 2.1.25 with slapadd. Everything looks fine:

<snip>
added: "uid=paulobarbosa,ou=People,dc=emprel,dc=recife" (00000cc0)
added: "uid=veridiana,ou=People,dc=emprel,dc=recife" (00000cc1)
added: "uid=manoelmoraes,ou=People,dc=emprel,dc=recife" (00000cc2)
added: "uid=elisabetegomes,ou=People,dc=emprel,dc=recife" (00000cc3)
</snip>

    configured in slapd.conf:

allow    bind_v2

database        ldbm
suffix          "dc=recife"
rootdn          "cn=admin,dc=recife"

index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
index   cn,mail,surname,givenname                       eq,subinitial


    When searching my old server (2.0.27):

# ldapsearch -x -h oldserver -b 'dc=emprel,dc=recife' uid=brasilino
version: 2

#
# filter: uid=brasilino
# requesting: ALL
#

# brasilino, People, emprel, recife
dn: uid=brasilino,ou=People,dc=emprel,dc=recife
cn: Lucas Brasilino
givenName: Lucas
<snip>

    But on my new one (2.1.25):

# ldapsearch -x -h newserver -b 'dc=emprel,dc=recife' uid=brasilino
version: 2

#
# filter: uid=brasilino
# requesting: ALL
#

# search result
search: 2
result: 0 Success

# numResponses: 1

    It only work when:

# ldapsearch -x -h newserver -b 'dc=emprel,dc=recife' uid=brasilino*

    it works! I.e. when using a mask "*".
    The problem is that many applications, like Mozilla and Linux
PAM, seems not using "*".
    Running slapd daemon in debug mode, I've got the following when
doing the first search (uid=brasilino):

<snip>
=> ldbm_cache_open( "/var/lib/ldap/uid.gdbm", 34, 600 )
<= ldbm_cache_open (cache 7)
=> key_read
<= index_read 0 candidates
<= equality_candidates NULL
<= equality_candidates 0
<= filter_candidates 0
<= list_candidates 0
<= filter_candidates 0
<= list_candidates NULL
<= filter_candidates 0
====> cache_return_entry_r( 222 ): returned (0)
ldbm_search: no candidates
send_search_result: err=0 matched="" text=""
</snip>

No candidates??!?! Anybody can point me where I'm messing things up? :)

Happy New Year.
regards

Have you any ACL's setup in slapd.conf? Are you able to retrieve anything with ...

ldapsearch -x -h newserver -b 'dc=emprel,dc=recife' uid=brasilino

but binding as the rootDN?

Dave
--
Dave Lewney
Principal Systems Programmer, IT Services
University of Sussex, Brighton BN1 9QJ. Tel: 01273 678354 Fax: 01273 271956

Follow-Ups:
- Re: Search returning nothing with 2.1.25, but ok with 2.0.27
  - From: Lucas Brasilino <brasilino@recife.pe.gov.br>

References:
- Search returning nothing with 2.1.25, but ok with 2.0.27
  - From: Lucas Brasilino <brasilino@recife.pe.gov.br>

Prev by Date: Re: SSH and LDAP problem
Next by Date: Re: SSH and LDAP problem
Index(es):
- Chronological
- Thread