[Pkg-openldap-devel] Bug#742862: Bug#742862: Bug#742862: upgrade to 2.4.39-1 breaks slapd
Erwan David
erwan at rail.eu.org
Tue Apr 1 17:18:44 UTC 2014
Le 01/04/2014 18:41, Ryan Tandy a écrit :
> retitle 742862 slapd: /var/lib/ldap as a symlink breaks upgrade
> severity 742862 important
> tags 742862 + patch
> thanks
>
> On Mon, Mar 31, 2014 at 11:27 PM, Ryan Tandy <ryan at nardis.ca> wrote:
>> On 31/03/14 11:18 PM, Erwan David wrote:
>>> Note also that /etc/ldap and /var/lib/ldap both are symbolic links to
>>> respectively /secure/etc/ldap and /secure/var/lib/ldap,/secure being
>>> an encrypted disk used to store confidential infos.
>> This is certainly interesting. The scripts take into account the
>> possibility of /var/lib/ldap being a mountpoint, but maybe not a
>> symlink.
> That's exactly it. I'm lowering the severity of the bug because I
> think this is an unusual configuration, even if the scripts should be
> robust against it. When /var/lib/ldap is a symlink the scripts' find,
> chown, and chgrp invocations operate on the symlink itself and not the
> linked directory; easily fixed. I was able to reproduce exactly your
> results under that configuration, and the attached patch fixes it.
>
> As a workaround, you should be able to complete your upgrade with the
> current package if you temporarily replace your symlink with a bind
> mount. That worked for me when I tested it.
Thanks, I was already thinking at testing with the bind mount. I had put
critical because a broken ldap means many services down...
Thanks for your time debugging it, with the bind mount it worked flawlessly.
More information about the Pkg-openldap-devel
mailing list