[Freeipa-devel] [PATCH] 520 fix install with --setup-dns

Adam Young ayoung at redhat.com
Thu Sep 9 01:14:44 UTC 2010 

On 09/08/2010 09:02 PM, Adam Young wrote:
> On 09/08/2010 08:50 PM, Adam Young wrote:
>> On 09/08/2010 08:40 PM, Adam Young wrote:
>>> On 09/08/2010 05:19 PM, Rob Crittenden wrote:
>>>> Allow the schema to be set once an ldap connection is locked.
>>>>
>>>> When making LDAP calls via api.Backend.ldap2 the ldap2 object will 
>>>> already be locked by the api.finalize() call. So the first time 
>>>> that api.Backend.ldap2.connect() is called an error would be thrown 
>>>> that self.schema cannot be set because the object is ReadOnly. This 
>>>> uses the documented procedure for working around this lock.
>>>>
>>>> This was preventing the DNS installation to proceed.
>>>>
>>>> ticket #188
>>>>
>>>> rob
>>>>
>>>>
>>>> _______________________________________________
>>>> Freeipa-devel mailing list
>>>> Freeipa-devel at redhat.com
>>>> https://www.redhat.com/mailman/listinfo/freeipa-devel
>>>
>>> Is this the behaviour it is supposed to fix?
>>>
>>> 2010-09-08 10:46:18,776 DEBUG locked: cannot set ldap2.schema to 
>>> <ldap.schema.subentry.SubSchema instance at 0x2df4758>
>>>   File "/usr/sbin/ipa-server-install", line 835, in <module>
>>>     sys.exit(main())
>>>
>>>   File "/usr/sbin/ipa-server-install", line 773, in main
>>>     api.Backend.ldap2.connect(bind_dn="cn=Directory Manager", 
>>> bind_pw=dm_password)
>>>
>>>   File "/usr/lib/python2.6/site-packages/ipalib/backend.py", line 
>>> 62, in connect
>>>     conn = self.create_connection(*args, **kw)
>>>
>>>   File "/usr/lib/python2.6/site-packages/ipalib/encoder.py", line 
>>> 188, in new_f
>>>     return f(*new_args, **kwargs)
>>>
>>>   File 
>>> "/usr/lib/python2.6/site-packages/ipaserver/plugins/ldap2.py", line 
>>> 295, in create_connection
>>>     self.schema = get_schema(self.ldap_uri, conn)
>>>
>>>   File "/usr/lib/python2.6/site-packages/ipalib/base.py", line 131, 
>>> in __setattr__
>>>     SET_ERROR % (self.__class__.__name__, name, value)
>>>
>>>
>>>
>>> _______________________________________________
>>> Freeipa-devel mailing list
>>> Freeipa-devel at redhat.com
>>> https://www.redhat.com/mailman/listinfo/freeipa-devel
>> I'll ACK, as it seems to get past the previous problem, but I don't 
>> think it is 100% yet.  My install failed with
>> Unexpected error - see ipaserver-install.log for details:
>>  'getpwnam(): name not found: named'
>>
>>
>> getent passwd named returns nothing.
>>
>>
>> THis was the second time I ran through the install after install 
>> bind.  Is it possible that we remove the named user from /etc/passwd 
>> and don't re-add it?
>>
>>
>>
>>
>> _______________________________________________
>> Freeipa-devel mailing list
>> Freeipa-devel at redhat.com
>> https://www.redhat.com/mailman/listinfo/freeipa-devel
> And now I see that when I do an install (on F13) of bind and 
> bind-dyndb-ldap.x86_64 I get a slew of errors:
> Warning: RPMDB altered outside of yum.
>   Installing     : 
> 32:bind-9.7.1-2.P2.fc13.x86_64                                                                                
> 1/2
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: user named does not exist - using root
> warning: group named does not exist - using root
> warning: user named does not exist - using root
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: group named does not exist - using root
> warning: user named does not exist - using root
> warning: group named does not exist - using root
> warning: user named does not exist - using root
> warning: group named does not exist - using root
> chown: invalid group: `root:named'
>   Installing     : bind-dyndb-ldap-0.1.0-0.9.a1.20091210git.fc13.x86_64
>
> So it isn't strictly our problem, except that it is.
>
>
>
>
> _______________________________________________
> Freeipa-devel mailing list
> Freeipa-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-devel

OK, it was an artifact of a lock file on my system.  Install now goes 
fine.  I can ACK this with no reservations.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20100908/06d72913/attachment.htm>

More information about the Freeipa-devel mailing list