starred/docker-test-openldap
1
0
Fork 0
mirror of https://github.com/rroemhild/docker-test-openldap.git synced 2026-04-25 07:05:50 +03:00
Code Issues 14 Projects Releases 3 Packages Wiki Activity

[GH-ISSUE #53] Infinite loop after restart #33

New issue
Open
opened 2026-02-27 16:47:43 +03:00 by kerem · 3 comments
kerem commented 2026-02-27 16:47:43 +03:00
Owner
Copy link

Originally created by @frafra on GitHub (Apr 11, 2024).
Original GitHub issue: https://github.com/rroemhild/docker-test-openldap/issues/53

Reconfigure slapd...
+ echo 'Reconfigure slapd...'
+ cat
+ debconf-set-selections
+ DEBIAN_FRONTEND=noninteractive
+ dpkg-reconfigure slapd
  Backing up /etc/ldap/slapd.d in /var/backups/slapd-2.4.47+dfsg-3+deb10u7... done.
  Moving old database directory to /var/backups:

  Backup path /var/backups/unknown-2.4.47+dfsg-3+deb10u7.ldapdb exists. Giving up...
[cont-init.d] 000-slapd-package-config: exited 1.
[cont-init.d] 010-tls-certificates: executing... 
+ [[ -f /etc/ldap/ssl/ldap.key ]]
TLS Certificates already present. Using provided certificates
+ [[ -f /etc/ldap/ssl/ldap.crt ]]
+ echo 'TLS Certificates already present. Using provided certificates'
[cont-init.d] 010-tls-certificates: exited 0.
[cont-init.d] 020-filesystem-perms: executing... 
+ chown -R openldap:openldap /etc/ldap
[cont-init.d] 020-filesystem-perms: exited 0.
[cont-init.d] 050-openldap-populate: executing... 
+ slapd -h ldapi:/// -u openldap -g openldap
+ configure_msad_features
+ echo 'Configure MS-AD Extensions'
+ ldapmodify -Y EXTERNAL -H ldapi:/// -f /opt/openldap/bootstrap/config/msad.ldif -Q
Configure MS-AD Extensions
ldap_modify: Type or value exists (20)
      additional info: modify/add: olcAttributeTypes: value #0 already exists
modifying entry "cn={0}core,cn=schema,cn=config"

[cont-init.d] 050-openldap-populate: exited 20.
[cont-init.d] done.
[services.d] starting services
starting slapd
[services.d] done.
6617b7c5 @(#) $OpenLDAP: slapd  (May 14 2022 18:35:44) $
      Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org>
6617b7c6 hdb_db_open: database "dc=planetexpress,dc=com": database already in use.
6617b7c6 backend_startup_one (type=hdb, suffix="dc=planetexpress,dc=com"): bi_db_open failed! (-1)
6617b7c6 slapd stopped.
starting slapd
6617b7c6 @(#) $OpenLDAP: slapd  (May 14 2022 18:35:44) $
      Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org>
6617b7c7 hdb_db_open: database "dc=planetexpress,dc=com": database already in use.
6617b7c7 backend_startup_one (type=hdb, suffix="dc=planetexpress,dc=com"): bi_db_open failed! (-1)
6617b7c7 slapd stopped.
starting slapd
6617b7c7 @(#) $OpenLDAP: slapd  (May 14 2022 18:35:44) $
      Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org>
6617b7c8 hdb_db_open: database "dc=planetexpress,dc=com": database already in use.
6617b7c8 backend_startup_one (type=hdb, suffix="dc=planetexpress,dc=com"): bi_db_open failed! (-1)
6617b7c8 slapd stopped.

I would advise against using VOLUMES in Dockerfile, as not all users are interested in having persistency on these paths, and it looks like it is not possible to just ignore them. Without the volumes the error would not happen.

Originally created by @frafra on GitHub (Apr 11, 2024). Original GitHub issue: https://github.com/rroemhild/docker-test-openldap/issues/53 ``` Reconfigure slapd... + echo 'Reconfigure slapd...' + cat + debconf-set-selections + DEBIAN_FRONTEND=noninteractive + dpkg-reconfigure slapd Backing up /etc/ldap/slapd.d in /var/backups/slapd-2.4.47+dfsg-3+deb10u7... done. Moving old database directory to /var/backups: Backup path /var/backups/unknown-2.4.47+dfsg-3+deb10u7.ldapdb exists. Giving up... [cont-init.d] 000-slapd-package-config: exited 1. [cont-init.d] 010-tls-certificates: executing... + [[ -f /etc/ldap/ssl/ldap.key ]] TLS Certificates already present. Using provided certificates + [[ -f /etc/ldap/ssl/ldap.crt ]] + echo 'TLS Certificates already present. Using provided certificates' [cont-init.d] 010-tls-certificates: exited 0. [cont-init.d] 020-filesystem-perms: executing... + chown -R openldap:openldap /etc/ldap [cont-init.d] 020-filesystem-perms: exited 0. [cont-init.d] 050-openldap-populate: executing... + slapd -h ldapi:/// -u openldap -g openldap + configure_msad_features + echo 'Configure MS-AD Extensions' + ldapmodify -Y EXTERNAL -H ldapi:/// -f /opt/openldap/bootstrap/config/msad.ldif -Q Configure MS-AD Extensions ldap_modify: Type or value exists (20) additional info: modify/add: olcAttributeTypes: value #0 already exists modifying entry "cn={0}core,cn=schema,cn=config" [cont-init.d] 050-openldap-populate: exited 20. [cont-init.d] done. [services.d] starting services starting slapd [services.d] done. 6617b7c5 @(#) $OpenLDAP: slapd (May 14 2022 18:35:44) $ Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org> 6617b7c6 hdb_db_open: database "dc=planetexpress,dc=com": database already in use. 6617b7c6 backend_startup_one (type=hdb, suffix="dc=planetexpress,dc=com"): bi_db_open failed! (-1) 6617b7c6 slapd stopped. starting slapd 6617b7c6 @(#) $OpenLDAP: slapd (May 14 2022 18:35:44) $ Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org> 6617b7c7 hdb_db_open: database "dc=planetexpress,dc=com": database already in use. 6617b7c7 backend_startup_one (type=hdb, suffix="dc=planetexpress,dc=com"): bi_db_open failed! (-1) 6617b7c7 slapd stopped. starting slapd 6617b7c7 @(#) $OpenLDAP: slapd (May 14 2022 18:35:44) $ Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org> 6617b7c8 hdb_db_open: database "dc=planetexpress,dc=com": database already in use. 6617b7c8 backend_startup_one (type=hdb, suffix="dc=planetexpress,dc=com"): bi_db_open failed! (-1) 6617b7c8 slapd stopped. ``` I would advise against using `VOLUMES` in `Dockerfile`, as not all users are interested in having persistency on these paths, and it looks like it is not possible to just ignore them. Without the volumes the error would not happen.
kerem commented 2026-02-27 16:47:44 +03:00
Author
Owner
Copy link

@OctoNezd commented on GitHub (Jun 11, 2024):

To anyone with same issue: you can fix this by directly running slapd: /usr/sbin/slapd -h "ldapi:/// ldap://0.0.0.0:10389 ldaps://0.0.0.0:10636" -d 256

<!-- gh-comment-id:2160825591 --> @OctoNezd commented on GitHub (Jun 11, 2024): To anyone with same issue: you can fix this by directly running slapd: `/usr/sbin/slapd -h "ldapi:/// ldap://0.0.0.0:10389 ldaps://0.0.0.0:10636" -d 256`
kerem commented 2026-02-27 16:47:44 +03:00
Author
Owner
Copy link

@osnard commented on GitHub (Jun 25, 2024):

I am having the same issue. I wanted to add additional attributes to the users and therefore mount

volumes:
      - ${DATADIR}/ldap/opt/openldap/bootstrap/data:/opt/openldap/bootstrap/data

Now I am getting the database already in use loop. I have also tried to build a local image and removing the VOLUME declaration in the Dockerfile [1]. But that didn't work either. Any hints?

[1] github.com/rroemhild/docker-test-openldap@2645f2164f/Dockerfile (L34)

<!-- gh-comment-id:2188739753 --> @osnard commented on GitHub (Jun 25, 2024): I am having the same issue. I wanted to add additional attributes to the users and therefore mount ``` volumes: - ${DATADIR}/ldap/opt/openldap/bootstrap/data:/opt/openldap/bootstrap/data ``` Now I am getting the `database already in use` loop. I have also tried to build a local image and removing the `VOLUME` declaration in the `Dockerfile` [1]. But that didn't work either. Any hints? [1] https://github.com/rroemhild/docker-test-openldap/blob/2645f2164ffb51ec4b5b4a9af0065ad7f2ffc1cf/Dockerfile#L34
kerem commented 2026-02-27 16:47:44 +03:00
Author
Owner
Copy link

@cadabrum commented on GitHub (Aug 1, 2024):

I don’t know how to configure the LDAP server correctly, but this hack helped:

rootfs/etc/services.d/slapd/run

#!/usr/bin/with-contenv bash

echo "starting slapd"
/usr/sbin/slapd -h "ldapi:/// ldap://0.0.0.0:10389 ldaps://0.0.0.0:10636" -d 256 -u openldap -g openldap

echo "Removing lock file..."
rm /var/lib/ldap/alock
<!-- gh-comment-id:2264066124 --> @cadabrum commented on GitHub (Aug 1, 2024): I don’t know how to configure the LDAP server correctly, but this hack helped: `rootfs/etc/services.d/slapd/run` ```bash #!/usr/bin/with-contenv bash echo "starting slapd" /usr/sbin/slapd -h "ldapi:/// ldap://0.0.0.0:10389 ldaps://0.0.0.0:10636" -d 256 -u openldap -g openldap echo "Removing lock file..." rm /var/lib/ldap/alock ```
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
revert-44-ship_crew_mail
v1.0
v2.5.0
v2.4.0
2.3
2.2
2.1
1.1
2.0
v1
1.0
Labels
Clear labels   
pull-request

Mirrored from GitHub Pull Request

No labels
pull-request
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/docker-test-openldap#33
No description provided.