[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Checksum query

To: "'Howard Chu'" <hyc@symas.com>, "'openldap-technical@openldap.org'" <openldap-technical@openldap.org>
Subject: RE: Checksum query
From: Penza Kenneth at MITA <kenneth.penza@gov.mt>
Date: Thu, 10 Dec 2015 15:19:15 +0000
Accept-language: en-GB, en-US
Content-language: en-US
In-reply-to: <56698E0D.2010108@symas.com>
References: <272B65C17A3C8D4FB771DE5AF5ACBD863601366A@EXH01-LK.email.local> <56698E0D.2010108@symas.com>
Thread-index: AdEzQqqTxVR2Lk9mQzyMVZ+W7LTUUwADS6iAAAN9fCA=
Thread-topic: Checksum query

>> Hi,
>>
>> 	I am configuring an openldap 2.4.40 on RHEL7 x86_64 and want to enable database checksum. Below please find the steps I am following:

>> dn: olcDatabase={2}hdb,cn=config
>> objectClass: olcDatabaseConfig
>> objectClass: olcHdbConfig
>> olcAccess: {0} to attrs=userPassword,shadowLastChange by self write by 
>> anonymous auth by  dn="cn=manager,dc=example,dc=com" write by * none
>> olcAccess: {1} to dn.base="" by * read
>> olcAccess: {2} to * by self write by dn="cn=manager,dc=example,dc=com" 
>> write by * read
>> olcAddContentAcl: FALSE
>> olcDatabase: {2}hdb
>> olcDbCacheFree: 1
>> olcDbCacheSize: 1000
>> olcDbCheckpoint: 512 15
>> olcDbChecksum: true
>> olcDbConfig: {0}set_cachesize 0 2097152 0
>> olcDbConfig: {1}set_lk_max_objects 3000
>> olcDbConfig: {2}set_lk_max_locks 1500
>> olcDbConfig: {3}set_lk_max_lockers 1500
>> olcDbDirectory: /var/lib/ldap
>> olcDbDirtyRead: FALSE
>> olcDbDNcacheSize: 0
>> olcDbIDLcacheSize: 3000
>> olcDbIndex:     cn,sn,mail   pres,eq,approx,sub
>> olcDbIndex:     objectClass  eq
>> olcDbLinearIndex: FALSE
>> olcDbMode: 0600
>> olcDbNoSync: FALSE
>> olcDbSearchStack: 16
>> olcDbShmKey: 0
>> olcLastMod: TRUE
>> olcMaxDerefDepth: 15
>> olcReadOnly: FALSE
>> olcRootDN: cn=manager,dc=example,dc=com
>> olcRootPW: {SSHA}C6JfIRI6XajtZcjabtSJZyi1rArPsy1j
>> olcSuffix: dc=example,dc=com
>> structuralObjectClass: olcHdbConfig
>> [root@host01 mail]#
>>
>> [root@host01 mail]# slapadd -v -F slapd.d -n 0 -l config.ldif
>> added: "cn=config" (00000001)
>> added: "cn=schema,cn=config" (00000001)
>> added: "cn={0}core,cn=schema,cn=config" (00000001)
>> added: "cn={1}cosine,cn=schema,cn=config" (00000001)
>> added: "cn={2}inetorgperson,cn=schema,cn=config" (00000001)
>> added: "cn={3}nis,cn=schema,cn=config" (00000001)
>> added: "olcDatabase={-1}frontend,cn=config" (00000001)
>> added: "olcDatabase={0}config,cn=config" (00000001)
>> added: "olcDatabase={1}monitor,cn=config" (00000001)
>> 56617865 Entry (olcDatabase={2}hdb,cn=config), attribute 
>> 'olcDbChecksum' not allowed
>> slapadd: dn="olcDatabase={2}hdb,cn=config" (line=1079): (65) attribute 'olcDbChecksum' not allowed
>> _#################### 100.00% eta   none elapsed            none fast!
>> Closing DB...
>> [root@host01 mail]#
>>
>>From the github sources
>> back-bdb/config.c
>>    78     { "checksum", NULL, 1, 2, 0, ARG_ON_OFF|ARG_MAGIC|BDB_CHECKSUM,
>>    79         bdb_cf_gen, "( OLcfgDbAt:1.16 NAME 'olcDbChecksum' "
>>    80             "DESC 'Enable database checksum validation' "
>>
>> I tried olcDbChecksum: true, olcDbChecksum: TRUE, olcDbChecksum: 1, olcDbChecksum: ON without any success.
>>
>> Do you have any ideas on how I get around this ?
>>
>Looks like the olcDbChecksum attribute is missing from the olcHdbConfig objectclass. Please file an ITS on this.
>
>-- 
>   -- Howard Chu
>   CTO, Symas Corp.           http://www.symas.com
>   Director, Highland Sun     http://highlandsun.com/hyc/
>   Chief Architect, OpenLDAP  http://www.openldap.org/project/

Thanks, sure will do.

Regards
Kenneth

References:
- Checksum query
  - From: Penza Kenneth at MITA <kenneth.penza@gov.mt>
- Re: Checksum query
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: Checksum query
Next by Date: (LMDB) read-only transactions and DBI handles
Index(es):
- Chronological
- Thread