Luke's picture

I'm trying to apply the TKLPatch for OpenLDAP, but I keep running into errors and I wanted to see if I'm doing anything obviously wrong with the installation and configuration instructions in case I'm missing something obvious.

I download openldap.tar.gz and install it from within the running appliance (perhaps this is part of the problem, though I didn't find your patch until I'd worked with the turnkey appliance for awhile, so I didn't have the option of combining it with the iso).

Originally, I got the error "/tmp/tklpatch/conf: line 34: ldapadd: command not found" among others.  I then installed ldap-utils without the DPkg options.  Applying the patch again, I got "ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1)".  My next step is to google this error, but I wanted to ask the community for help before I sunk anymore time into the issue.

Forum: 
Jeremy Davis's picture

Adrian doesn't actually specify, but I suspect that this patch is designed for TKL Core based on Ubuntu 10.04/Lucid (ie currently TKL Core v11.0RC). That does not necessarily mean it won't work on the earlier (v2009.10-2) release but it does mean that it might be a problem.

Also when you say that you "install it from within the running appliance" did you do that using TKLPatch or just manually? Again you may be able to successfully run it manually but I would advise using TKLPatch eg:

tklpatch-apply / openldap.tar.gz

If you would rather persevere and do it manually, make sure that you copy across the contents of /overlay to the filesystem root on your current appliance (ie /).

Even doing it with TKLPatch you will run into issues if services you are trying to modify are already running. You will definately need to stop apache and ldap too if you have got that far. That is another reason why it is preferable to patch an ISO rather than a running system.

Luke's picture

I used

tklpatch-apply / openldap.tar.gz

I haven't looked into this, but is it possible to create an iso out of the current VirtualBox hard disk and patch that?


Adrian Moya's picture

To which appliance are you installing (or trying to install) the patch? Is it ubuntu lucid beta or 11.RC? Also, it would help if you can post the output of the command to see what's happening. You can simply tklpatch-apply / openldap.tar.gz > applypatch.log and attach that file. 

Luke's picture

I'm using the PDC appliance with Ubuntu version 8.04.  I can't figure out how to attach the output of tklpatch-apply / openldap.tar.gz, so I've included it below.

TKLPATCH_ISOLABEL: openldap
# extracting patch openldap.tar.gz to /tmp/tmp.OcXgYI4554
# applying patch /tmp/tmp.OcXgYI4554/openldap
# applying overlay /tmp/tmp.OcXgYI4554/openldap/overlay
# executing config script /tmp/tmp.OcXgYI4554/openldap/conf
# chroot execute: /tmp/tklpatch/conf
Hit http://archive.turnkeylinux.org hardy-security Release.gpg
Hit http://archive.turnkeylinux.org hardy Release.gpg
Hit http://archive.ubuntu.com hardy-security Release.gpg
Hit http://archive.ubuntu.com hardy Release.gpg
Hit http://archive.ubuntu.com hardy-updates Release.gpg
Hit http://archive.turnkeylinux.org hardy-security Release
Hit http://archive.ubuntu.com hardy-security Release
Hit http://archive.turnkeylinux.org hardy Release
Hit http://archive.ubuntu.com hardy Release
Hit http://archive.ubuntu.com hardy-updates Release
Hit http://archive.ubuntu.com hardy-security/main Packages
Hit http://archive.ubuntu.com hardy-security/universe Packages
Hit http://archive.ubuntu.com hardy/main Packages
Hit http://archive.ubuntu.com hardy/universe Packages
Hit http://archive.ubuntu.com hardy-updates/main Packages
Hit http://archive.ubuntu.com hardy-updates/universe Packages
Hit http://archive.turnkeylinux.org hardy-security/main Packages
Hit http://archive.turnkeylinux.org hardy-security/universe Packages
Hit http://archive.turnkeylinux.org hardy/main Packages
Hit http://archive.turnkeylinux.org hardy/universe Packages
Reading package lists...
Hit http://archive.turnkeylinux.org hardy-security Release.gpg
Hit http://archive.turnkeylinux.org hardy Release.gpg
Hit http://archive.ubuntu.com hardy-security Release.gpg
Hit http://archive.ubuntu.com hardy Release.gpg
Hit http://archive.ubuntu.com hardy-updates Release.gpg
Hit http://archive.turnkeylinux.org hardy-security Release
Hit http://archive.ubuntu.com hardy-security Release
Hit http://archive.turnkeylinux.org hardy Release
Hit http://archive.ubuntu.com hardy Release
Hit http://archive.turnkeylinux.org hardy-security/main Packages
Hit http://archive.ubuntu.com hardy-updates Release
Hit http://archive.turnkeylinux.org hardy-security/universe Packages
Hit http://archive.ubuntu.com hardy-security/main Packages
Hit http://archive.ubuntu.com hardy-security/universe Packages
Hit http://archive.turnkeylinux.org hardy/main Packages
Hit http://archive.ubuntu.com hardy/main Packages
Hit http://archive.ubuntu.com hardy/universe Packages
Hit http://archive.turnkeylinux.org hardy/universe Packages
Hit http://archive.ubuntu.com hardy-updates/main Packages
Hit http://archive.ubuntu.com hardy-updates/universe Packages
Reading package lists...
Reading package lists...
Building dependency tree...
Reading state information...
slapd is already the newest version.
ldap-utils is already the newest version.
ldapscripts is already the newest version.
apache2 is already the newest version.
apache2-mpm-prefork is already the newest version.
apache2-utils is already the newest version.
Package apache2.2-bin is not available, but is referred to by another package.
This may mean that the package is missing, has been obsoleted, or
is only available from another source
E: Package apache2.2-bin has no installation candidate
ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1)
ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1)
ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1)
/tmp/tklpatch/conf: line 49: certtool: command not found
/tmp/tklpatch/conf: line 50: certtool: command not found
/tmp/tklpatch/conf: line 51: certtool: command not found
/tmp/tklpatch/conf: line 52: certtool: command not found
ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1)
The user `openldap' is already a member of `ssl-cert'.
/tmp/tklpatch/conf: line 58: service: command not found
--15:15:09--  http://launchpad.net/~ubuntu-security-proposed/+archive/ppa/+build/1744905/+files/phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb
           => `phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb.26'
Resolving launchpad.net... 91.189.89.223, 91.189.89.222
Connecting to launchpad.net|91.189.89.223|:80... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://launchpad.net/~ubuntu-security-proposed/+archive/ppa/+build/1744905/+files/phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb [following]
--15:15:10--  https://launchpad.net/~ubuntu-security-proposed/+archive/ppa/+build/1744905/+files/phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb
           => `phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb.26'
Connecting to launchpad.net|91.189.89.223|:443... connected.
WARNING: Certificate verification error for launchpad.net: self signed certificate in certificate chain
HTTP request sent, awaiting response... 302 Moved Temporarily
Location: http://launchpadlibrarian.net/48678102/phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb [following]
--15:15:11--  http://launchpadlibrarian.net/48678102/phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb
           => `phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb.26'
Resolving launchpadlibrarian.net... 91.189.89.229, 91.189.89.228
Connecting to launchpadlibrarian.net|91.189.89.229|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 1,443,418 (1.4M) [application/x-debian-package]

    0K .......... .......... .......... .......... ..........  3%   83.38 KB/s
   50K .......... .......... .......... .......... ..........  7%  172.64 KB/s
  100K .......... .......... .......... .......... .......... 10%  177.04 KB/s
  150K .......... .......... .......... .......... .......... 14%  176.34 KB/s
  200K .......... .......... .......... .......... .......... 17%  171.39 KB/s
  250K .......... .......... .......... .......... .......... 21%  177.65 KB/s
  300K .......... .......... .......... .......... .......... 24%  177.65 KB/s
  350K .......... .......... .......... .......... .......... 28%  173.56 KB/s
  400K .......... .......... .......... .......... .......... 31%  177.57 KB/s
  450K .......... .......... .......... .......... .......... 35%  179.04 KB/s
  500K .......... .......... .......... .......... .......... 39%  173.11 KB/s
  550K .......... .......... .......... .......... .......... 42%  177.65 KB/s
  600K .......... .......... .......... .......... .......... 46%  170.92 KB/s
  650K .......... .......... .......... .......... .......... 49%  176.51 KB/s
  700K .......... .......... .......... .......... .......... 53%  178.67 KB/s
  750K .......... .......... .......... .......... .......... 56%   81.49 KB/s
  800K .......... .......... .......... .......... .......... 60%  399.74 KB/s
  850K .......... .......... .......... .......... .......... 63%  309.85 KB/s
  900K .......... .......... .......... .......... .......... 67%  209.31 KB/s
  950K .......... .......... .......... .......... .......... 70%  178.41 KB/s
 1000K .......... .......... .......... .......... .......... 74%  177.56 KB/s
 1050K .......... .......... .......... .......... .......... 78%  172.76 KB/s
 1100K .......... .......... .......... .......... .......... 81%  178.38 KB/s
 1150K .......... .......... .......... .......... .......... 85%  178.11 KB/s
 1200K .......... .......... .......... .......... .......... 88%  173.04 KB/s
 1250K .......... .......... .......... .......... .......... 92%  178.82 KB/s
 1300K .......... .......... .......... .......... .......... 95%   85.17 KB/s
 1350K .......... .......... .......... .......... .......... 99%    1.39 MB/s
 1400K .........                                             100% 18287.45 GB/s

15:15:19 (169.29 KB/s) - `phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb.26' saved [1443418/1443418]

(Reading database ... 26853 files and directories currently installed.)
Preparing to replace phpldapadmin 1.2.0.5-1ubuntu1.10.04.1 (using phpldapadmin_1.2.0.5-1ubuntu1.10.04.1_all.deb) ...
Unpacking replacement phpldapadmin ...
Setting up phpldapadmin (1.2.0.5-1ubuntu1.10.04.1) ...

This module is already enabled!
Site default is already disabled
This site is already enabled!
This site is already enabled!
/tmp/tklpatch/conf: line 73: service: command not found
/tmp/tklpatch/conf: line 74: service: command not found
/tmp/tklpatch/conf: line 75: service: command not found


Jeremy Davis's picture

PDC appliance with Ubuntu version 8.04

Try it with the new v11.0RC and You'llhave more luck I reckon.

Add new comment