Turbo Fredriksson wrote:
"Steve" == Steve Chan <[EMAIL PROTECTED]> writes:
Steve> (1) compile failed if "SECUREBIND=-DSECUREBIND_ALL" in
Steve> Makefile.
Why? Do you miss some library? Is the new library (if it got upgraded)
somewhere else than before? Is that library ok?
I believe that I did not miss any library because the Fedora Core 5 upgrade will
automatically detect the new version corresponding to the existing version. All
dependency will be resolved during the upgrade process.
There is no ./configure step in qmail compile process. Is there any way to
check whether all the necessary library exist? Please advise.
Steve> (2) if compile with "SECUREBIND=-DSECUREBIND_TLS",
Steve> qmail-send cannot start.
Does qmail-send/qmail-todo (which starts qmail-send so the error is correct)
know about the SSL/TLS certificate? Is it readable? Did it disappear
after the upgrade? Was it modified/changed? Can the two mentioned programs
read the CA certificate the certificate was signed with?
The default directories used by openssl in FC5 is different from that of FC3. I
already edited the configure files to reflect the difference.
I used the qmail-showctl program to display the control parameters. Certificate
was not touch by qmail-showctl program. However, the output was different from
that of FC3 for those "control" did not exist in LDAP and /var/qmail/control
directory.
Steve> (3) if compile without SECUREBIND, qmail-send can start but
Steve> cannot deliver mail. The error message is "delivery 1:
Steve> deferral: Out_of_memory_in_qmail-lspawn./".
That I don't know what it can be...
Steve> (4) if compile without SECUREBIND, but added
Steve> "-DLDAP_DEPRECATED" to LDAPINCLUDES, qmail-send cannot
Steve> start. The error message is "alert: qmail-todo: cannot
Steve> start: unable to read controls".
Do you know what LDAP_DEPRECATED stands for and what it's used for? Are
you trying options at random without understanding them?
I read through this mailing list and someone mentioned this parameter. I read
from the qmail-ldap Wiki, it listed the deprecated LDAP command. I guess this
is to solve some LDAP version incompatibility problem, so I tried.
Steve> I thing there are several incompatibility problem. Someone
Steve> in this mailing list mentioned that openldap-2.3.x has
Steve> problem. My openldap is openldap-2.3.19-4.
Then you should _DEFENATLY_ not be using LDAP_DEPRECATED! And I haven't
tried OL 2.3 yet, so I can't help there...
Steve> Other than fallback to Fedora Core 3, anybody can help?
Downgrade your LDAP server? I know, stupid remark, but I never liked
the RedHat way of upgrading stable packages on a server. Going from
2.0 to 2.1 is stupid (so is any major version update on mission
critical applications). Sorry for the rant, not your fault but...
I spent a lot of time to trace the debug output. I also added some statements
in the source code to help me to trace. My finding is that the
compiler/libraries may also have problem. After the LDAP search returned no
result, /var/qmail/control directory will be read. However, the errno returned
from FC3 and FC5 was different. FC5 return errno=14 (Bad address) then
qmail-showctl return different result. Hence just downgrade the LDAP server is
a good idea to isolate the problem.
If you insist on running OL 2.3, you're basically on your own (for the
time being). But one thing that would be intressting to know is if
standard QmailLDAP (i.e. ONLY the QL patch!) works as expected? Anyone?
FYI, I already fallback to FC3. However, I still interest in make it work on
FC5. I'll continue to work on this with another computer.
Steve