Subject: kolabd: Problem Upgrading Older Kolab Server to Newest Slapd<br>Package: kolabd<br>Version: 2.2.4-20100624-4<br>Severity: important<br><br>*** Please type your report below this line ***<br><br>When I attempt to upgrade a Kolab server that has been in production for several years,<br>
I receive this error.<br><br>root@mail:/etc/default# dpkg --configure -a<br>Setting up slapd (2.4.23-6) ...<br> Backing up /etc/ldap/slapd.conf in /var/backups/slapd-2.4.17-2.1... done.<br> Moving old database directories to /var/backups:<br>
Loading from /var/backups/slapd-2.4.17-2.1:<br> - directory dc=stoutner,dc=org... failed.<br><br>Loading the database from the LDIF dump failed with the following<br>error while running slapadd:<br> /etc/ldap/slapd.conf: line 76: <replica> keyword is obsolete (ignored)<br>
<= str2entry: str2ad(IMPPREFS): attribute type undefined<br> slapadd: could not parse entry (line=198)<br>dpkg: error processing slapd (--configure):<br> subprocess installed post-installation script returned error exit status 1<br>
Errors were encountered while processing:<br> slapd<br><br>I understand that this is a bug in slapd. I have filed a bug report at <a href="http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599235">http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599235</a><br>
but I have not yet had any response. I am guessing that there is something in my<br>/etc/ldap/slapd.conf file that it doesn't like, probably something that is not commonly used outside of Kolab installations.<br>I tried looking at line 198 but couldn't find anything suspicious. I was wondering if you know what is causing it to fail<br>
and if there is a config change I can make that will allow it to succeed.<br><br>My /etc/ldap/slapd.conf file is below:<br><br># (c) 2003 Tassilo Erlewein <<a href="mailto:tassilo.erlewein@erfrakon.de">tassilo.erlewein@erfrakon.de</a>><br>
# (c) 2003-2007 Martin Konold <<a href="mailto:martin.konold@erfrakon.de">martin.konold@erfrakon.de</a>><br># (c) 2003 Achim Frank <<a href="mailto:achim.frank@erfrakon.de">achim.frank@erfrakon.de</a>><br># This program is Free Software under the GNU General Public License (>=v2).<br>
# Read the file COPYING that comes with this packages for details.<br><br><br># this file is automatically written by the Kolab config backend and should<br>have the<br># file mode 0640<br><br>modulepath /usr/lib/ldap<br>
moduleload back_bdb<br>moduleload back_monitor<br>moduleload refint<br>moduleload unique<br><br># manual additions are lost unless made to the template in the Kolab config<br>directory<br># the template is /etc/kolab/templates/slapd.conf.template<br>
<br>include /etc/ldap/schema/core.schema<br>include /etc/ldap/schema/cosine.schema<br>include /etc/ldap/schema/inetorgperson.schema<br>include /etc/ldap/schema/rfc2739.schema<br>include /etc/ldap/schema/kolab2.schema<br>#include /etc/ldap/schema/horde.schema<br>
<br>pidfile /var/run/slapd/slapd.pid<br>argsfile /var/run/slapd/slapd.args<br><br># Depending on the build options of openldap the syncprov module is<br>statically<br># or dynamically build. When build dynamically the module must be loaded.<br>
# As the slapd that comes with the openpkg version of kolab is statically<br># build it is not necessary to load the module.<br>moduleload syncprov<br><br>TLSCertificateFile /etc/kolab/cert.pem<br>TLSCertificateKeyFile /etc/kolab/key.pem<br>
<br>rootDSE /etc/kolab/rootDSE.ldif<br><br>defaultsearchbase "dc=stoutner,dc=org"<br><br>#require none<br>allow bind_v2<br><br>loglevel none<br><br>database bdb<br>suffix "dc=stoutner,dc=org"<br>
cachesize 10000<br>checkpoint 512 5<br>idlcachesize 10000<br><br># The idletimeout can be increased if some clients develop problems.<br># Please report to <a href="mailto:kolab-devel@kolab.org">kolab-devel@kolab.org</a> if you encounter such a client.<br>
idletimeout 300<br><br># Use syncprov/syncrepl method for ldap replication<br>overlay syncprov<br>syncprov-checkpoint 1024 16<br>syncprov-sessionlog 4096<br>syncprov-reloadhint TRUE<br>index entryCSN eq<br>index entryUUID eq<br>
<br>dirtyread<br><br>directory /var/lib/ldap<br><br>rootdn "cn=manager,cn=internal,dc=stoutner,dc=org"<br>rootpw "{SSHA}PASSWORD"<br><br>replica uri=ldap://<a href="http://127.0.0.1:9999">127.0.0.1:9999</a><br>
binddn="cn=replicator"<br> bindmethod=simple<br> credentials=secret<br><br>#### Using overlays to improve data consistency<br># Ensure that we never get dangling member attributes<br># Checked on rename and delete<br>
overlay refint<br>refint_attributes member<br><br># The mail and the uid attribute must be unique.<br>overlay unique<br>unique_attributes mail uid<br><br>index objectClass pres,eq<br>index uid approx,sub,pres,eq<br>
index mail approx,sub,pres,eq<br>index alias approx,sub,pres,eq<br>index cn approx,sub,pres,eq<br>index sn approx,sub,pres,eq<br>index givenName approx,sub,pres,eq<br>
index kolabDelegate approx,sub,pres,eq<br>index kolabHomeServer pres,eq<br>index kolabDeleteflag pres,eq<br>index member pres,eq<br><br>include /etc/ldap/slapd.access<br><br>access to dn="dc=stoutner,dc=org" attrs=children<br>
by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by<br>group/kolabGroupOfNames="cn=domain-maintainer,cn=internal,dc=stoutner,dc=org"<br>
write<br><br>access to dn="cn=internal,dc=stoutner,dc=org" attrs=children<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br>
by<br>group/kolabGroupOfNames="cn=domain-maintainer,cn=internal,dc=stoutner,dc=org"<br>write<br><br>access to attrs=userPassword<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
=wx<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" =wx<br> by self =wx<br> by anonymous =x<br> by * none stop<br><br>access to attrs=mail<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by * read stop<br><br>access to attrs=alias<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by * read stop<br><br>access to attrs=uid<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by * read stop<br><br>access to attrs=cyrus-userquota<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by self read stop<br><br>access to attrs=kolabHomeServer<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by * read stop<br><br>access to attrs=kolabHomeMTA<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by * read stop<br><br>access to attrs=kolabAllowSMTPRecipient<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by dn="cn=nobody,cn=internal,dc=stoutner,dc=org" read<br> by self read stop<br><br>access to dn="cn=nobody,dc=stoutner,dc=org"<br>
by anonymous auth stop<br><br>access to dn="cn=manager,cn=internal,dc=stoutner,dc=org"<br> by dn="cn=nobody,cn=internal,dc=stoutner,dc=org" read<br> by self write<br> by anonymous auth stop<br>
<br>access to dn="cn=admin,cn=internal,dc=stoutner,dc=org"<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>write<br> by dn="cn=nobody,cn=internal,dc=stoutner,dc=org" read<br>
by self write<br> by anonymous auth stop<br><br>access to dn="cn=maintainer,cn=internal,dc=stoutner,dc=org"<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" read<br> by dn="cn=nobody,cn=internal,dc=stoutner,dc=org" read<br> by self write<br> by anonymous auth stop<br>
<br>access to dn.regex="(.*,)?cn=internal,dc=stoutner,dc=org"<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br>
by self write<br> by dn="cn=nobody,cn=internal,dc=stoutner,dc=org" read<br> by anonymous auth stop<br><br>access to dn.regex="(.*,)?cn=external,dc=stoutner,dc=org"<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by * read stop<br><br>access to dn="cn=external,dc=stoutner,dc=org"<br> by dn="cn=nobody,cn=internal,dc=stoutner,dc=org" read<br>
by * search stop<br><br>access to dn="cn=internal,dc=stoutner,dc=org"<br> by dn="cn=nobody,cn=internal,dc=stoutner,dc=org" read<br> by * search stop<br><br>access to dn="k=kolab,dc=stoutner,dc=org"<br>
by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" read<br> by<br>group/kolabGroupOfNames="cn=domain-maintainer,cn=internal,dc=stoutner,dc=org"<br>
read<br> by dn="cn=nobody,cn=internal,dc=stoutner,dc=org" read<br> by * none stop<br><br>access to *<br> by self write<br> by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>
write<br> by<br>group/kolabGroupOfNames="cn=maintainer,cn=internal,dc=stoutner,dc=org" write<br> by * read stop<br><br>include /etc/ldap/slapd.replicas<br><br><br>database monitor<br><br>access to *<br>
by group/kolabGroupOfNames="cn=admin,cn=internal,dc=stoutner,dc=org"<br>write<br> by * none stop<br><br><br><br><br>-- System Information:<br>Debian Release: squeeze/sid<br> APT prefers testing<br> APT policy: (500, 'testing')<br>
Architecture: amd64 (x86_64)<br><br>Kernel: Linux 2.6.32-5-amd64 (SMP w/1 CPU core)<br>Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)<br>Shell: /bin/sh linked to /bin/dash<br><br>Versions of packages kolabd depends on:<br>
ii adduser 3.112 add and remove users and groups<br>ii kolab-cyrus-admin 2.2.13-9 Kolab Cyrus mail system - administ<br>ii kolab-cyrus-clients 2.2.13-9 Kolab Cyrus mail system (test clie<br>
ii kolab-cyrus-imapd 2.2.13-9 Kolab Cyrus mail system - IMAP sup<br>ii kolab-cyrus-pop3d 2.2.13-9 Kolab Cyrus mail system - POP3 sup<br>ii libkolab-perl 1:2.2.4-20100624-2 Perl modules for Kolab<br>
ii libmail-box-perl 2.095-1 message-folder management module<br>ii libnet-netmask-perl 1.9015-4 parse, manipulate and lookup IP ne<br>ii libsasl2-modules 2.1.23.dfsg1-6 Cyrus SASL - pluggable authenticat<br>
ii libterm-readkey-perl 2.30-4 A perl module for simple terminal<br>ii libterm-readline-gnu- 1.20-1 Perl extension for the GNU ReadLin<br>ii lsb-base 3.2-23.1 Linux Standard Base 3.2 init scrip<br>
ii php-kolab-filter 0.1.9-4 Postfix filters for the Kolab serv<br>ii php-kolab-freebusy 0.1.5-3 provide Kolab free/busy informatio<br>ii postfix 2.7.1-1 High-performance mail transport ag<br>
ii postfix-ldap 2.7.1-1 LDAP map support for Postfix<br>ii sasl2-bin 2.1.23.dfsg1-6 Cyrus SASL - administration progra<br><br>Versions of packages kolabd recommends:<br>ii ldap-utils 2.4.23-6 OpenLDAP utilities<br>
pn slapd <none> (no description available)<br><br>Versions of packages kolabd suggests:<br>pn amavisd-new <none> (no description available)<br>ii clamav 0.96.1+dfsg-1 anti-virus utility for Unix - comm<br>
pn clamav-daemon <none> (no description available)<br>pn db4.2-util <none> (no description available)<br>ii kolab-webadmin 2.2.3-20091217-2 Kolab administration web interface<br>
ii openssl 0.9.8o-2 Secure Socket Layer (SSL) binary a<br>pn spamassassin <none> (no description available)<br><br>-- Configuration Files:<br>/etc/kolab/kolab.conf [Errno 13] Permission denied: u'/etc/kolab/kolab.conf'<br>
<br>-- no debconf information<br>