779079 – Update to libldb1-1.1.10-2.4.1 breaks sssd-1.8.3-2-1-3

Bug 779079 - Update to libldb1-1.1.10-2.4.1 breaks sssd-1.8.3-2-1-3

Summary: Update to libldb1-1.1.10-2.4.1 breaks sssd-1.8.3-2-1-3

Status:	RESOLVED DUPLICATE of bug 769155
Duplicates (1):	779143 (view as bug list)

Alias:	None

Product:	openSUSE 12.2
Classification:	openSUSE
Component:	Basesystem (show other bugs)
Version:	Final
Hardware:	All openSUSE 12.2

Priority:	P5 - None Severity: Critical (vote)
Target Milestone:	---
Assignee:	Mr Maintenance
QA Contact:	E-mail List

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2012-09-06 14:34 UTC by Andreas Haumer
Modified:	2012-09-13 15:09 UTC (History)
CC List:	4 users (show)

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Andreas Haumer 2012-09-06 14:34:57 UTC

User-Agent:       Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1226.0 Safari/537.4 SUSE/22.0.1226.0

The current update to libldb1 from version 1.1.6 to version 1.1.10 (available as of today) breaks sssd.

sssd does not start anymore, instead it logs:

sssd: Cannot load configuration database

Example:

ravel:~ # rpm -q libldb1
libldb1-1.1.10-2.4.1.x86_64

ravel:~ # rpm -q sssd
sssd-1.8.3-2.1.3.x86_64

ravel:~ # /usr/sbin/sssd 
ldb: module version mismatch in src/ldb_modules/memberof.c : ldb_version=1.1.10 module_version=1.1.6
ldb: failed to initialise module /usr/lib64/ldb/memberof.so : Unavailable


Reverting libldb1 back to original version 1.1.6-2.1.2 makes sssd work again.


Reproducible: Always

Steps to Reproduce:
1. Install officially available updates (current as of 2012-09-06, 14:00 UTC, inludes libldb1-1.1.10)
2. Restart sssd

Actual Results:  
sssd fails to start, instead it logs the following message:

Sep  6 16:00:12 debussy sssd: Cannot load configuration database

This makes the system unusable for all users in the LDAP database!


Expected Results:  
Installing official OpenSUSE updates should not make the system unusable...

Comment 1 Marcus Meissner 2012-09-06 21:58:25 UTC

thanks for the report.

this is unfortunate and we apologize.

please downgrade to the old libldb, i disabled the update.


Lars, this was not a good idea.

Comment 2 Marcus Meissner 2012-09-06 22:04:32 UTC

*** Bug 779143 has been marked as a duplicate of this bug. ***

Comment 3 Lars Müller 2012-09-06 22:14:11 UTC

That's bad.  And I must admit I've not tried to start sssd with version 1.1.10 of libldb.

I have to discuss with Ralf next week if the dependency to a particular minor version of the library is required.

Comment 4 Lars Müller 2012-09-07 11:04:05 UTC

We need to rebuild sssd with libldb 1.1.10 available while build.

We have to discuss further upstream why the sssd build is this strict and limited to a minor version of the library.

It might be, that the sssd developers consider the ldb API not as stable enough.

I branched the openSUSE 12.2 ssshd version and tried to force a build against libldb 1.1.10 by setting

   BuildRequires:  pkgconfig(ldb) >= 1.1.10
   ...
   BuildRequires:  libldb-devel >= 1.1.10

in the sssd spec file.  This results in

   unresolvable: nothing provides pkgconfig(ldb) >= 1.1.10

as soon as I give a local build a try.

Comment 5 Marcus Meissner 2012-09-07 11:29:07 UTC

they need to be updated in the same maintnance project.

My removal of the update yesterday, also removed the newer ldb version from the :Update repo.

Comment 6 Lars Müller 2012-09-07 12:54:32 UTC

Thanks Marcus.  For i586 this works.  For x86_64 we see in the web UI at

https://build.openSUSE.org/project/monitor?project=home%3Almuelle%3Abranches%3AopenSUSE%3A12.2%3AUpdate

'unresolvable' with the detail message while mouse over 'nothing provides libtevent-devel >= 0.9.16, nothing provides python-tevent >= 0.9.16'

I've checked the /pub/opensuse/distribution/12.2/repo/oss/suse/i586/ and /pub/opensuse/distribution/12.2/repo/oss/suse/x86_64/ directories and both don't have libtevent-devet or python-tevent in version 0.9.16.

I called

   openSUSE:12.2 tevent

to have tevent in the required version too.  I expect tevent had been part of the same reverted update too.

Comment 7 Lars Müller 2012-09-07 13:30:44 UTC

After adding tevent 0.9.16 which had been part of the removed update all built.

Please add http://download.openSUSE.org/repositories/home:/lmuelle:/branches:/openSUSE:/12.2:/Update/standard/ as additional repository and get the sssd, tevent, and ldb packages from their.

Comment 8 Andreas Haumer 2012-09-07 14:58:22 UTC

Updated the following packages from the repository mentioned above:

sssd-tools-1.8.3-2.2.2
sssd-1.8.3-2.2.2
libtevent0-0.9.16-2.7.1
libldb1-1.1.10-2.7.1
sssd-32bit-1.8.3-2.2.2


All is working well so far (tested on two machines)!

Comment 9 Lars Müller 2012-09-07 16:08:01 UTC

https://build.openSUSE.org/request/show/133272 got created to get the required tevent, ldb, and fitting sssd packages published.

Comment 10 Lars Müller 2012-09-07 16:09:25 UTC

Passing the issue to the maintenance team to process the issue further.

Comment 11 Lars Müller 2012-09-07 16:21:18 UTC

@Andreas: Thanks a lot for reporting and testing!

Comment 12 Lars Müller 2012-09-10 14:10:57 UTC

The fix is on the way to the public.

Also this defect report is a duplicate of bnc#769155

*** This bug has been marked as a duplicate of bug 769155 ***

Comment 13 Swamp Workflow Management 2012-09-13 15:09:01 UTC

openSUSE-RU-2012:1160-1: An update that has two recommended fixes can now be installed.

Category: recommended (moderate)
Bug References: 765270,779079
CVE References: 
Sources used:
openSUSE 12.2 (src):    ldb-1.1.10-2.8.1, sssd-1.8.3-2.4.2, tevent-0.9.16-2.8.1