[opensuse] Opensuse 11.0: dbus segfaults at boot when LDAP client is enabled
Hi, Is there somebody who uses Opensuse 11.0 and LDAP for user authentication and NFS automount entries? System is configured as an LDAP client for authenticating users and looking up automount entries. LDAP configuration is correct and worked for years with older Suse versions. When LDAP is enabled in /etc/nsswitch.conf, then dbus-daemon produces a segmentation fault at boot after the kernel has loaded and the system is entering runlevel 5. Error message: Starting D-Bus daemon/etc/init.d/dbus: line 45: 1401 segmentation fault $DBUS_DAEMON_BIN $DBUS_DAEMON_PARAMETER If a 32bit OS is installed on EMT-64 hardware then boot process also freezes when entering runlevel 5 and acpid daemon and LDAP client is enabled. Also /usr/sbin/automount produces a core file in /. There is no core file from dbus-daemon. Happens also on 64bit Kernel instalations but less often. This behaviour can be reproduced by enabling or disabling ldap in /etc/nsswitch.conf. /etc/nsswitch.conf: # dbus-daemon starts at boot passwd: files group: files # dbus-daemon segfault at boot passwd: files ldap group: files ldap # dbus-daemon segfault at boot passwd: compat group: compat passwd_compat: ldap group_compat: ldap Hardware: Dell Precision 670, VMware Workstation 6.0.5 Operating System: Opensuse 11.0 (32bit and 64bit Editions + latest patches adnws005:~ # uname -a Linux adnws005 2.6.25.5-1.1-pae #1 SMP 2008-06-07 01:55:22 +0200 i686 i686 i386 GNU/Linux adnws005:/ # rpm -qa |grep dbus dbus-1-qt3-0.62-179.1 dbus-1-qt3-devel-0.62-179.1 dbus-1-x11-1.2.1-18.1 ndesk-dbus-0.6.0-28.1 dbus-1-glib-devel-0.74-88.1 dbus-1-1.2.1-15.1 dbus-1-python-0.82.4-49.1 dbus-1-glib-0.74-88.1 libdbus-1-qt3-0-0.8.1-24.1 ndesk-dbus-glib-0.4.1-0.1 dbus-1-devel-1.2.1-15.1 adnws005:~ # cat /etc/openldap/ldap.conf # # /etc/ldap.conf for SUSE Linux and LDAPS # uri ldaps://ldap-net12.example.com:636 ldaps://ldap-net5.example.com:636 ldaps://ldap-net1.example.com:636 base ou=zh,dc=example,dc=com scope one ldap_version 3 # # SSL/TLS Settings (cert checking does not work) # ssl on # sslpath /etc/ssl/certs/cert7.db # tls_cacertfile /etc/ssl/certs/adnovum-ca.pem tls_reqcert never tls_checkpeer no tls_crlcheck none # # Bind User # binddn cn=proxyagent,ou=special_users,dc=example,dc=com bindpw ********* # # Misc. Settings # debug 0 timelimit 30 bind_timelimit 30 idle_timelimit 60 # # Change NSS search base due to localized automount tables # nss_base_passwd ou=people,dc=example,dc=com nss_base_shadow ou=people,dc=example,dc=com nss_base_group ou=group,dc=example,dc=com nss_base_hosts ou=hosts,dc=example,dc=com nss_base_services ou=services,dc=example,dc=com nss_base_networks ou=networks,dc=example,dc=com nss_base_protocols ou=protocols,dc=example,dc=com nss_base_rpc ou=rpc,dc=example,dc=com nss_base_ethers ou=ethers,dc=example,dc=com nss_base_netmasks ou=networks,dc=example,dc=com nss_base_netgroup ou=netgroup,dc=example,dc=com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Bernd Nies wrote:
Hi,
Hi,
Is there somebody who uses Opensuse 11.0 and LDAP for user authentication and NFS automount entries?
I use LDAP authentication on openSUSE 11.0, but not NFS automount.
System is configured as an LDAP client for authenticating users and looking up automount entries. LDAP configuration is correct and worked for years with older Suse versions.
When LDAP is enabled in /etc/nsswitch.conf, then dbus-daemon produces a segmentation fault at boot after the kernel has loaded and the system is entering runlevel 5. Error message:
Starting D-Bus daemon/etc/init.d/dbus: line 45: 1401 segmentation fault $DBUS_DAEMON_BIN $DBUS_DAEMON_PARAMETER
I have no problem with DBUS Daemon. I have problems with samba not starting ( correctly ) though...
If a 32bit OS is installed on EMT-64 hardware then boot process also freezes when entering runlevel 5 and acpid daemon and LDAP client is enabled. Also /usr/sbin/automount produces a core file in /. There is no core file from dbus-daemon. Happens also on 64bit Kernel instalations but less often.
I'm using openSUSE 11.0 x86_64
This behaviour can be reproduced by enabling or disabling ldap in /etc/nsswitch.conf.
/etc/nsswitch.conf: # dbus-daemon starts at boot passwd: files group: files
# dbus-daemon segfault at boot passwd: files ldap group: files ldap
# dbus-daemon segfault at boot passwd: compat group: compat passwd_compat: ldap group_compat: ldap
Hardware: Dell Precision 670, VMware Workstation 6.0.5 Operating System: Opensuse 11.0 (32bit and 64bit Editions + latest patches
adnws005:~ # uname -a Linux adnws005 2.6.25.5-1.1-pae #1 SMP 2008-06-07 01:55:22 +0200 i686 i686 i386 GNU/Linux
adnws005:/ # rpm -qa |grep dbus dbus-1-qt3-0.62-179.1 dbus-1-qt3-devel-0.62-179.1 dbus-1-x11-1.2.1-18.1 ndesk-dbus-0.6.0-28.1 dbus-1-glib-devel-0.74-88.1 dbus-1-1.2.1-15.1 dbus-1-python-0.82.4-49.1 dbus-1-glib-0.74-88.1 libdbus-1-qt3-0-0.8.1-24.1 ndesk-dbus-glib-0.4.1-0.1 dbus-1-devel-1.2.1-15.1
adnws005:~ # cat /etc/openldap/ldap.conf # # /etc/ldap.conf for SUSE Linux and LDAPS # uri ldaps://ldap-net12.example.com:636 ldaps://ldap-net5.example.com:636 ldaps://ldap-net1.example.com:636 base ou=zh,dc=example,dc=com scope one ldap_version 3 # # SSL/TLS Settings (cert checking does not work) # ssl on # sslpath /etc/ssl/certs/cert7.db # tls_cacertfile /etc/ssl/certs/adnovum-ca.pem tls_reqcert never tls_checkpeer no tls_crlcheck none # # Bind User # binddn cn=proxyagent,ou=special_users,dc=example,dc=com bindpw ********* # # Misc. Settings # debug 0 timelimit 30 bind_timelimit 30 idle_timelimit 60 # # Change NSS search base due to localized automount tables # nss_base_passwd ou=people,dc=example,dc=com nss_base_shadow ou=people,dc=example,dc=com nss_base_group ou=group,dc=example,dc=com nss_base_hosts ou=hosts,dc=example,dc=com nss_base_services ou=services,dc=example,dc=com nss_base_networks ou=networks,dc=example,dc=com nss_base_protocols ou=protocols,dc=example,dc=com nss_base_rpc ou=rpc,dc=example,dc=com nss_base_ethers ou=ethers,dc=example,dc=com nss_base_netmasks ou=networks,dc=example,dc=com nss_base_netgroup ou=netgroup,dc=example,dc=com
-- Rui Santos http://www.ruisantos.com/ Veni, vidi, Linux! -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Hi,
I use LDAP authentication on openSUSE 11.0, but not NFS automount.
I have no problem with DBUS Daemon. I have problems with samba not starting ( correctly ) though...
I'm using openSUSE 11.0 x86_64
I also tried it with x86_64 and disabled automount entries in /etc/nsswitch.conf and LDAP without SSL -- without success. A strace on the dbus-daemon at startup reveals that it reads /etc/nsswitch.conf, sees that LDAP is configured, opens /etc/ldap.conf and wants to connect the LDAP servers while the network is not available. Then it hangs. The configured boot order is: /etc/init.d/dbus: # Required-Start: $local_fs /etc/init.d/network: # Required-Start: $local_fs dbus haldaemon I think that the boot order is wrong defined. Network should start before dbus, so that dbus-daemon can (for whatever reason) use LDAP via NSS. When I change it to /etc/init.d/dbus: # Required-Start: $local_fs $network /etc/init.d/network: # Required-Start: $local_fs adnws005:~ # ls -1 /etc/init.d/rc5.d/S* /etc/init.d/rc5.d/S01earlysyslog /etc/init.d/rc5.d/S01fbset /etc/init.d/rc5.d/S01microcode.ctl /etc/init.d/rc5.d/S01random /etc/init.d/rc5.d/S01resmgr /etc/init.d/rc5.d/S05network /etc/init.d/rc5.d/S06dbus /etc/init.d/rc5.d/S06syslog /etc/init.d/rc5.d/S07consolekit /etc/init.d/rc5.d/S07portmap /etc/init.d/rc5.d/S07splash_early /etc/init.d/rc5.d/S07vmware /etc/init.d/rc5.d/S08haldaemon /etc/init.d/rc5.d/S08nfs /etc/init.d/rc5.d/S08smbfs /etc/init.d/rc5.d/S10alsasound /etc/init.d/rc5.d/S10cups /etc/init.d/rc5.d/S10earlyxdm /etc/init.d/rc5.d/S10irq_balancer /etc/init.d/rc5.d/S10java.binfmt_misc /etc/init.d/rc5.d/S10kbd /etc/init.d/rc5.d/S10nscd /etc/init.d/rc5.d/S10splash /etc/init.d/rc5.d/S10sshd /etc/init.d/rc5.d/S11autofs /etc/init.d/rc5.d/S11postfix /etc/init.d/rc5.d/S11xdm /etc/init.d/rc5.d/S12cron /etc/init.d/rc5.d/S12smartd /etc/init.d/rc5.d/S21stopblktrace Doing so, then * dbus-daemon starts at boot even when LDAP is configured * Automount of USB devices and CDROM works with KDE * VMware Workstation starts Bye, Bernd -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Am Dienstag 23 September 2008 09:42:11 schrieb Bernd Nies:
Hi,
I use LDAP authentication on openSUSE 11.0, but not NFS automount.
I have no problem with DBUS Daemon. I have problems with samba not starting ( correctly ) though...
I'm using openSUSE 11.0 x86_64
I also tried it with x86_64 and disabled automount entries in /etc/nsswitch.conf and LDAP without SSL -- without success.
A strace on the dbus-daemon at startup reveals that it reads /etc/nsswitch.conf, sees that LDAP is configured, opens /etc/ldap.conf and wants to connect the LDAP servers while the network is not available. Then it hangs.
The configured boot order is:
/etc/init.d/dbus: # Required-Start: $local_fs
/etc/init.d/network: # Required-Start: $local_fs dbus haldaemon
I think that the boot order is wrong defined. Network should start before dbus, so that dbus-daemon can (for whatever reason) use LDAP via NSS. On the other hand nss_ldap should not cause the system to hand when the network is unavailable. Please create a bugreport with detailed instructions how to reproduce the problem and attach the relevant configuration files.
-- regards, Ralf -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Hi Ralf,
On the other hand nss_ldap should not cause the system to hand when the network is unavailable. Please create a bugreport with detailed instructions how to reproduce the problem and attach the relevant configuration files.
Thanks for your answer. I already filed a bug report: https://bugzilla.novell.com/show_bug.cgi?id=427313 Greetings, Bernd -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Solution -------- Adding "bind_policy soft" to /etc/ldap.conf solved the issue. Dbus-daemon now starts without segmentation fault. USB automount works and also VMware workstation. A thing I never would expect. Thanks to Ralf Haferkamp! Bye, Bernd -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (3)
-
Bernd Nies
-
Ralf Haferkamp
-
Rui Santos