#49640 Errors about PBKDF2 password storage plugin at server startup
Closed: wontfix 3 years ago Opened 4 years ago by mreynolds.

Issue Description

Errors about PBKDF2 password storage plugin at server startup:

[18/Apr/2018:16:00:00.947594873 -0400] - ERR - plugin_setup - The plugin named cn=PBKDF2_SHA256,cn=Password Storage Schemes,cn=plugins,cn=config already exists, or is already setup.
[18/Apr/2018:16:00:01.069619699 -0400] - ERR - oc_check_required - Entry "cn=PBKDF2_SHA256,cn=Password Storage Schemes,cn=plugins,cn=config" missing attribute "nsslapd-pluginId" required by object class "nsslapdPlugin"
[18/Apr/2018:16:00:01.072137258 -0400] - ERR - oc_check_required - Entry "cn=PBKDF2_SHA256,cn=Password Storage Schemes,cn=plugins,cn=config" missing attribute "nsslapd-pluginVersion" required by object class "nsslapdPlugin"
[18/Apr/2018:16:00:01.074583075 -0400] - ERR - oc_check_required - Entry "cn=PBKDF2_SHA256,cn=Password Storage Schemes,cn=plugins,cn=config" missing attribute "nsslapd-pluginVendor" required by object class "nsslapdPlugin"
[18/Apr/2018:16:00:01.077097269 -0400] - ERR - oc_check_required - Entry "cn=PBKDF2_SHA256,cn=Password Storage Schemes,cn=plugins,cn=config" missing attribute "nsslapd-pluginDescription" required by object class "nsslapdPlugin"

Metadata Update from @mreynolds:
- Custom field component adjusted to None
- Custom field origin adjusted to None
- Custom field reviewstatus adjusted to None
- Custom field type adjusted to None
- Custom field version adjusted to None
- Issue set to the milestone: 1.4.0

4 years ago

Metadata Update from @spichugi:
- Issue assigned to spichugi

4 years ago

I will investigate the issue.

@spichugi This is because the values are missing in the template ldif that is generated when the plugin isn't there.

So maybe check template-dse.ldif for what's there, and also check in fedse.c (I think) where we generate this when it's missing.
TBH these four attributes appear to do nothing, so it's not dangerous, but good to clean up.

Sorry for the mess :(

This is a result of https://pagure.io/389-ds-base/issue/49447

On startup it tries to add plugin entry twice: in config.c (slapd_bootstrap_config) and fedse.c (add_internal_entries). And we already have it in template-dse.ldif on 1.3.6+.

And on upgrade we also add plugin entries (see https://pagure.io/389-ds-base/issue/49665).

So I'm not sure if 49447 is needed.

AFAIK the changes to fedse.c in 49447 are needed for upgrades. I based other fixes off of the fedse.c design.

It would be nice to get this fixed soon so I can get it in the next upstream release.

Metadata Update from @spichugi:
- Custom field reviewstatus adjusted to review (was: None)

3 years ago

Metadata Update from @mreynolds:
- Custom field reviewstatus adjusted to ack (was: review)

3 years ago

Metadata Update from @spichugi:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

3 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/2699

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix (was: fixed)

2 years ago

Login to comment on this ticket.

Metadata