Red Hat Bugzilla – Bug 201540
OpenLDAP migration script creates duplicate entries from NIS server
Last modified: 2007-11-30 17:11:39 EST
migrate_all_nis_*line.sh creates duplicate entries in some cases because of the
NIS maps used with ypcat in the scripts. This can be fixed by changing the
ypcat $DOMFLAG hosts ... -> ypcat $DOMFLAG hosts.byaddr ...
ypcat $DOMFLAG rpc.byname ... -> ypcat $DOMFLAG rpc.bynumber ...
The latter maps give always only one entry. The currently used maps give errors
like the following:
adding new entry "cn=testmachine.intranet,ou=Hosts,dc=intranet"
ldap_add: Already exists (68)
/usr/bin/ldapadd: returned non-zero exit status: saving failed LDIF to
And this causes the whole migration to fail.
On a related note, be default there is no file /etc/networks in a RHEL/Fedora
installation and no networks map is built on a NIS server so the following line
in the migration script causes a warning when running the script, perhaps it
could be made conditional to prevent the warning:
ypcat $DOMFLAG networks
Please fix at least the duplicate entry problem.
So, what's the status with this?
Any news on this one?
*** Bug 188056 has been marked as a duplicate of this bug. ***
I am sorry for long time of silence - I'm new maintainer of openldap and I'm
slowly going through the old bugs... This will be fixed soon in rawhide (after
Fedora7 gets out).
Why the forward rather than backward dupe?
If I underestand your question correctly, you are asking why I am going to fix
it in rawhide rather than FC5/6/7? Basically because this is not an
security/important issue and the workaround is available. Maybe it will get back
to Fedoras with some other updates, when there will be enough of them.
Not quite. Why not mark the rawhide bug as a dup of this one and then mark this
one against rawhide?
What rawhide bug are you referring to? AFAIK there is no open bug on devel
regarding migration tools and NIS.
You're right. I must have been confused this one's status with another bug I was
looking at. But since this bug is against exactly the same version of FC as
188056 it feels like there wasn't any real reason in duplicating forward rather
than back (I think I'll let the issue lie now - in the grand scheme of things so
long as the bug is fixed it doesn't matter).
Fixed in openldap-2.3.34-3.fc8
I do not think I will collect enough important fixed to release it in FC6, so
it's fixed only in rawhide (F8 soon) and F7.