dovecot and ldap with problem on userdb

31 Aug 2016


      Hi,
I have setup a new ubuntu on 16.04..
I have already a running system on 14.04 but wanted to migrate.
I get an error when checking user in ldap.
+++
Aug 31 18:14:16 auth: Error: ldap_bind
Aug 31 18:14:16 auth: Error: ldap_simple_bind
Aug 31 18:14:16 auth: Error: ldap_sasl_bind
Aug 31 18:14:16 auth: Error: ldap_send_initial_request
Aug 31 18:14:16 auth: Error: ldap_new_connection 1 1 0
Aug 31 18:14:16 auth: Error: ldap_int_open_connection
Aug 31 18:14:16 auth: Error: ldap_connect_to_host: TCP localhost:389
Aug 31 18:14:16 auth: Error: ldap_new_socket: 20
Aug 31 18:14:16 auth: Error: ldap_prepare_socket: 20
Aug 31 18:14:16 auth: Error: ldap_connect_to_host: Trying ::1 389
Aug 31 18:14:16 auth: Error: ldap_pvt_connect: fd: 20 tm: 5 async: 0
Aug 31 18:14:16 auth: Error: ldap_ndelay_on: 20
Aug 31 18:14:16 auth: Error: attempting to connect:
Aug 31 18:14:16 auth: Error: connect errno: 115
Aug 31 18:14:16 auth: Error: ldap_int_poll: fd: 20 tm: 5
Aug 31 18:14:16 auth: Error: ldap_is_sock_ready: 20
Aug 31 18:14:16 auth: Error: ldap_ndelay_off: 20
Aug 31 18:14:16 auth: Error: ldap_pvt_connect: 0
Aug 31 18:14:16 auth: Error: ldap_open_defconn: successful
Aug 31 18:14:16 auth: Error: ldap_send_server_request
Aug 31 18:14:16 auth: Error: ldap_result ld 0x55b624137680 msgid -1
Aug 31 18:14:16 auth: Error: wait4msg ld 0x55b624137680 msgid -1 (timeout 0
usec)
Aug 31 18:14:16 auth: Error: wait4msg continue ld 0x55b624137680 msgid -1
all 0
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Connections:
Aug 31 18:14:16 auth: Error: * host: localhost  port: 389  (default)
Aug 31 18:14:16 auth: Error:   refcnt: 2  status: Connected
Aug 31 18:14:16 auth: Error:   last used: Wed Aug 31 18:14:16 2016
Aug 31 18:14:16 auth: Error:
Aug 31 18:14:16 auth: Error:
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Outstanding Requests:
Aug 31 18:14:16 auth: Error:  * msgid 1,  origid 1, status InProgress
Aug 31 18:14:16 auth: Error:    outstanding referrals 0, parent count 0
Aug 31 18:14:16 auth: Error:   ld 0x55b624137680 request count 1 (abandoned
0)
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Response Queue:
Aug 31 18:14:16 auth: Error:    Empty
Aug 31 18:14:16 auth: Error:   ld 0x55b624137680 response count 0
Aug 31 18:14:16 auth: Error: ldap_chkResponseList ld 0x55b624137680 msgid -1
all 0
Aug 31 18:14:16 auth: Error: ldap_chkResponseList returns ld 0x55b624137680
NULL
Aug 31 18:14:16 auth: Error: ldap_int_select
Aug 31 18:14:16 auth: Error: read1msg: ld 0x55b624137680 msgid -1 all 0
Aug 31 18:14:16 auth: Error: read1msg: ld 0x55b624137680 msgid 1 message
type bind
Aug 31 18:14:16 auth: Error: read1msg: ld 0x55b624137680 0 new referrals
Aug 31 18:14:16 auth: Error: read1msg:  mark request completed, ld
0x55b624137680 msgid 1
Aug 31 18:14:16 auth: Error: request done: ld 0x55b624137680 msgid 1
Aug 31 18:14:16 auth: Error: res_errno: 0, res_error: <>, res_matched: <>
Aug 31 18:14:16 auth: Error: ldap_free_request (origid 1, msgid 1)
Aug 31 18:14:16 auth: Error: ldap_parse_result
Aug 31 18:14:16 auth: Error: ldap_search
Aug 31 18:14:16 auth: Error: put_filter:
"(&(objectClass=posixAccount)(mail=info))"
Aug 31 18:14:16 auth: Error: put_filter: AND
Aug 31 18:14:16 auth: Error: put_filter_list
"(objectClass=posixAccount)(mail=info)"
Aug 31 18:14:16 auth: Error: put_filter: "(objectClass=posixAccount)"
Aug 31 18:14:16 auth: Error: put_filter: simple
Aug 31 18:14:16 auth: Error: put_simple_filter: "objectClass=posixAccount"
Aug 31 18:14:16 auth: Error: put_filter: "(mail=info)"
Aug 31 18:14:16 auth: Error: put_filter: simple
Aug 31 18:14:16 auth: Error: put_simple_filter: "mail=info"
Aug 31 18:14:16 auth: Error: ldap_send_initial_request
Aug 31 18:14:16 auth: Error: ldap_send_server_request
Aug 31 18:14:16 auth: Error: ldap_msgfree
Aug 31 18:14:16 auth: Error: ldap_result ld 0x55b624137680 msgid -1
Aug 31 18:14:16 auth: Error: wait4msg ld 0x55b624137680 msgid -1 (timeout 0
usec)
Aug 31 18:14:16 auth: Error: wait4msg continue ld 0x55b624137680 msgid -1
all 0
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Connections:
Aug 31 18:14:16 auth: Error: * host: localhost  port: 389  (default)
Aug 31 18:14:16 auth: Error:   refcnt: 2  status: Connected
Aug 31 18:14:16 auth: Error:   last used: Wed Aug 31 18:14:16 2016
Aug 31 18:14:16 auth: Error:
Aug 31 18:14:16 auth: Error:
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Outstanding Requests:
Aug 31 18:14:16 auth: Error:  * msgid 2,  origid 2, status InProgress
Aug 31 18:14:16 auth: Error:    outstanding referrals 0, parent count 0
Aug 31 18:14:16 auth: Error:   ld 0x55b624137680 request count 1 (abandoned
0)
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Response Queue:
Aug 31 18:14:16 auth: Error:    Empty
Aug 31 18:14:16 auth: Error:   ld 0x55b624137680 response count 0
Aug 31 18:14:16 auth: Error: ldap_chkResponseList ld 0x55b624137680 msgid -1
all 0
Aug 31 18:14:16 auth: Error: ldap_chkResponseList returns ld 0x55b624137680
NULL
Aug 31 18:14:16 auth: Error: ldap_int_select
Aug 31 18:14:16 auth: Error: read1msg: ld 0x55b624137680 msgid -1 all 0
Aug 31 18:14:16 auth: Error: read1msg: ld 0x55b624137680 msgid 2 message
type search-result
Aug 31 18:14:16 auth: Error: read1msg: ld 0x55b624137680 0 new referrals
Aug 31 18:14:16 auth: Error: read1msg:  mark request completed, ld
0x55b624137680 msgid 2
Aug 31 18:14:16 auth: Error: request done: ld 0x55b624137680 msgid 2
Aug 31 18:14:16 auth: Error: res_errno: 0, res_error: <>, res_matched: <>
Aug 31 18:14:16 auth: Error: ldap_free_request (origid 2, msgid 2)
Aug 31 18:14:16 auth: Error: ldap_parse_result
Aug 31 18:14:16 auth: Error: ldap_first_attribute
Aug 31 18:14:16 auth: Error: ldap_msgfree
Aug 31 18:14:16 auth: Error: ldap_result ld 0x55b624137680 msgid -1
Aug 31 18:14:16 auth: Error: wait4msg ld 0x55b624137680 msgid -1 (timeout 0
usec)
Aug 31 18:14:16 auth: Error: wait4msg continue ld 0x55b624137680 msgid -1
all 0
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Connections:
Aug 31 18:14:16 auth: Error: * host: localhost  port: 389  (default)
Aug 31 18:14:16 auth: Error:   refcnt: 1  status: Connected
Aug 31 18:14:16 auth: Error:   last used: Wed Aug 31 18:14:16 2016
Aug 31 18:14:16 auth: Error:
Aug 31 18:14:16 auth: Error:
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Outstanding Requests:
Aug 31 18:14:16 auth: Error:    Empty
Aug 31 18:14:16 auth: Error:   ld 0x55b624137680 request count 0 (abandoned
0)
Aug 31 18:14:16 auth: Error: ** ld 0x55b624137680 Response Queue:
Aug 31 18:14:16 auth: Error:    Empty
Aug 31 18:14:16 auth: Error:   ld 0x55b624137680 response count 0
Aug 31 18:14:16 auth: Error: ldap_chkResponseList ld 0x55b624137680 msgid -1
all 0
Aug 31 18:14:16 auth: Error: ldap_chkResponseList returns ld 0x55b624137680
NULL
Aug 31 18:14:16 auth: Error: ldap_int_select
Aug 31 18:16:18 auth: Error: ldap_unbind
Aug 31 18:16:18 auth: Error: ldap_free_connection 1 1
Aug 31 18:16:18 auth: Error: ldap_send_unbind
Aug 31 18:16:18 auth: Error: ldap_free_connection: actually freed
+++
The problem is this line:
Aug 31 18:14:16 auth: Error: put_filter:
"(&(objectClass=posixAccount)(mail=info))"
Since the file to run the userdb contains this command:
user_filter = (&(objectClass=posixAccount)(mail=%u))
Which should user the full name, in my case a full e-mail address.
The postfix command is:
virtual_transport = lmtp:unix:private/dovecot-lmtp
When using:
virtual_transport = dovecot
The correct string is shown for %u.
Here is dovecot conf. I don't believe this will cause the error. Anyhow.
+++
dovecot -n
# 2.2.22 (fe789d2): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.13 (7b14904)
# OS: Linux 4.4.0-34-generic x86_64 Ubuntu 16.04.1 LTS ext4
auth_mechanisms = plain login
auth_username_format = %Ln
debug_log_path = /var/log/dovecot/dovecot-debug.log
info_log_path = /var/log/dovecot/dovecot-info.log
log_path = /var/log/dovecot/dovecot.log
mail_gid = avvmail
mail_location = maildir:/var/av_vmail/%d/%n:LAYOUT=fs
mail_privileged_group = avvmail
mail_uid = avvmail
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character
vacation subaddress comparator-i;ascii-numeric relational regex imap4flags
copy include variables body enotify environment mailbox date index ihave
duplicate mime foreverypart extracttext
namespace inbox {
inbox = yes
location =
mailbox Drafts {
auto = subscribe
special_use = \Drafts
}
mailbox Sent {
auto = subscribe
special_use = \Sent
}
mailbox Spam {
auto = subscribe
special_use = \Junk
}
mailbox Trash {
auto = subscribe
special_use = \Trash
}
prefix =
}
passdb {
args = /etc/dovecot/av_auth_ldap.conf
driver = ldap
}
protocols = pop3 imap lmtp
service auth-worker {
unix_listener auth-worker {
user = root
}
}
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
unix_listener auth-userdb {
group =
mode = 0666
user =
}
}
service imap-login {
inet_listener imap {
port = 143
}
}
service lmtp {
unix_listener /var/spool/postfix/private/dovecot-lmtp {
group = postfix
mode = 0660
user = postfix
}
user = avvmail
}
ssl = required
ssl_cert = </etc/ssl/certs/ssl-cert-snakeoil.pem
ssl_cipher_list =
EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128
:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDE
A:!ECDSA:kEDH:CAMELLIA128-SHA:AES128-SHA
ssl_dh_parameters_length = 2048
ssl_key = </etc/ssl/private/ssl-cert-snakeoil.key
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv2 !SSLv3
userdb {
args = /etc/dovecot/av_auth_ldap.conf
driver = ldap
}
protocol imap {
imap_idle_notify_interval = 29 mins
mail_max_userip_connections = 20
mail_plugins = " quota imap_quota antispam"
}
+++
Please let me know what additional info I can provide to narrow the problem
and get to a solution.
By the way:
When using:
virtual_transport = dovecot
I get another error with some file permissions on auth-userdb which I was
not able to overcome sofar.
Help appreciated.
Mit freundlichenGrüßen / Kind Regards
Kallewirsch

dovecot and ldap with problem on userdb

Averlon GmbH (in Gründung)