[Samba] Modifying the AD scheme/ ldbmodify segfaulting

Rowland Penny rowlandpenny at googlemail.com
Wed Apr 2 05:23:56 MDT 2014 

On 02/04/14 10:39, Sven Schwedas wrote:
> Hi,
>
> On 2014-03-14 12:22, Rowland Penny wrote:
>> Yes there is something wrong with the ldif, it should be two, move the
>> last two parts (the objectClasses) to a new ldif. Now add the attributes
>> ldif, then the objectclass ldif, this should work.
> Okay, Steve's example LDIFs and my example attribute LDIF imported. The
> classes, not so much.
>
>> ===============================================================
>> INTERNAL ERROR: Signal 11 in pid 3930 (4.1.6-Debian)
>> Please read the Trouble-Shooting section of the Samba HOWTO
>> ===============================================================
>> PANIC: internal error
>> zsh: abort      ldbmodify -H sam.ldb /var/local/ldapschemes/mailclasses.ldif
> cf. http://dl.creshal.de/mailclasses.ldif
> (and http://dl.creshal.de/mailattrs.ldif , this one imported successfully)
>
> gdb backtrace: http://dl.creshal.de/ldbmodfiy-backtrace
>
>
> Any ideas what causes this?
>
>
>
OK, where did you get these ldif's from???

If we take the top of the classes ldif, there are several things wrong:

dn: CN=ucsUser,CN=Schema,CN=Configuration,DC=ad,DC=tao,DC=at
objectClass: top
objectClass: classSchema
governsID: 1.3.6.1.4.1.19414.3.2.2
schemaIdGuid:: fwFuO1DU37oSUr+hvSZJ2Q==
cn: ucsUser
defaultObjectCategory: CN=Users,DC=ad,DC=tao,DC=at
subClassOf: user
auxiliaryClass: posixAccount
objectClassCategory: 3
mustContain: mail
mustContain: uid
mustContain: mailServer
mayContain: mailAlt

there are two missing attributes:
name:
lDAPDisplayName:

You are setting it up as an auxiliary class and a subclass of user 
(which should be User), you also reference an auxiliaryClass even though 
posixAccount is already an auxiliary class of User

You have set the defaultObjectCategory to contain 
'CN=Users,DC=ad,DC=tao,DC=at' when it it should contain 
'CN=ucsUser,CN=Schema,CN=Configuration,DC=ad,DC=tao,DC=at'

you are making uid & mail mandatory when the 'User' objectClass 'may' 
contain them.

And that is just the first section!

Rowland

More information about the samba mailing list