Build OpenLDAP 2.3.x from sources on Ubuntu

Posted on April 12, 2011 by admin

It happened so that I needed to build a particular version of OpenLDAP on Ubuntu and use that instead of the one in Ubuntu’s repository. Here is a quick guide as to how it worked for me:

1. Get BDB 4.3 sources from Oracle’s site(link)

2. Compile BDB and install it:

tar –xvzf db-4.3.29.tar.gz
cd db-4.3.29/build_unix
./configure --prefix=/usr/local/bdb43
make
sudo make install

3. Get OpenLDAP source(ftp link)
4. Compile and install it:

tar xzvf openldap-2.3.35.tgz
cd openldap
export CPPFLAGS="-I/usr/local/bdb43/include -D_GNU_SOURCE"
export LDFLAGS="-L/usr/local/lib -L/usr/local/bdb43/lib -R/usr/local/bdb43lib"
export LD_LIBRARY_PATH="/usr/local/bdb43/lib"
./configure --prefix=/usr/local/openldap

If you’re installing version 2.3.x or anything before 2.4.15 you will need to manually patch OpenLDAP otherwise you’ll get this error:
../../include/ldap_pvt_thread.h:64: error: missing binary operator before token “(“
Patch file is available in this bug report
Or already patched file for OpenLDAP version 2.3.35 you can download here

If you’re installing anything >= 2.4.15, you can skip the patch.

Once patch is applied just run:

make depend
make
make test  #this will take a while to run
make install

Common Errors:
configure: error: Berkeley DB version mismatch
Solution: Most likely you didn’t LDFLAGS and LD_LIBRARY_PATH as noted above

getpeereid.c:52: error: storage size of ‘peercred’ isn’t known
You need to include -D_GNU_SOURCE flag, to avoid incompatibility with glibc

../../include/ldap_pvt_thread.h:64: error: missing binary operator before token “(“
Solution: Apply patch as noted above

error while loading shared libraries: libdb-4.3.so: cannot open shared object file: No such file or directory
Solution: Add libdb-4.3 to shared libs cache:

sudo echo "/usr/local/bdb43/lib" > /etc/ld.so.conf.d/slapd.conf
lddconfig -v
This entry was posted in Linux/UNIX, Notes For Myself, System Administration and tagged , , , , . Bookmark the permalink.

5 Responses to Build OpenLDAP 2.3.x from sources on Ubuntu

  1. anabell muñoz salamanca says:
    April 27, 2011 at 9:54 pm

    Hola

    quisiera saber por que después de hacer estos pasos no se genera el archivo slapd.conf????

    Reply
  2. admin says:
    April 28, 2011 at 7:23 pm

    Estos pasos no va a generar el archivo slapd.conf. Tendrá que utilizar un ejemplo proporcionado en el código fuente de OpenLDAP y escribir su propio.

    Reply
  3. anabell muñoz salamanca says:
    May 20, 2011 at 1:05 am

    Quisiera saber como configurar en el archivo slapd.conf la parte BDB database definitions para la base de datos que se utilizo en este documento la BDB 4.3, debido a que obtengo el siguiente error al ejecutar el comando slaptest -f slapd.conf -F slapd.d:

    Unrecognized database type (bdb)
    slapd.conf: line 55: failed init (bdb)
    slaptest: bad configuration directory!

    Definición del BDB database definitions en mi archivo slapd.conf:
    database bdb

    # suffix “dc=my-domain,dc=com”

    suffix “dc=rgnoccidente,dc=com”

    # rootdn “cn=Manager,dc=my-domain,dc=com”

    rootdn “cn=admin,dc=rgnoccidente,dc=com”

    # Cleartext passwords, especially for the rootdn, should
    # be avoid. See slappasswd(8) and slapd.conf(5) for details.
    # Use of strong authentication encouraged.

    # rootpw secret

    rootpw {CRYPT}9qbsPUBF/1fWY #clave que le puse

    # lineas extraidas de guia
    access to attribute=userPassword
    by dn=”cn=admin,dc=rgnoccidente,dc=com” write
    by anonymous auth
    by self write
    by * none
    access to *
    by dn=”cn=admin,dc=rgnoccidente,dc=com” write
    by * read
    # final de lineas

    # The database directory MUST exist prior to running slapd AND
    # should only be accessible by the slapd and slap tools.
    # Mode 700 recommended.
    directory /usr/local/openldap/var/openldap-data
    # Indices to maintain
    index objectClass eq

    Reply
    • anabell muñoz salamanca says:
      May 20, 2011 at 1:11 am

      database bdb # esta es la linea 55

      # suffix “dc=my-domain,dc=com”

      suffix “dc=rgnoccidente,dc=com”

      # rootdn “cn=Manager,dc=my-domain,dc=com”

      rootdn “cn=admin,dc=rgnoccidente,dc=com”

      # Cleartext passwords, especially for the rootdn, should
      # be avoid. See slappasswd(8) and slapd.conf(5) for details.
      # Use of strong authentication encouraged.

      # rootpw secret

      rootpw {CRYPT}9qbsPUBF/1fWY #clave que le puse

      # lineas extraidas de guia
      access to attribute=userPassword
      by dn=”cn=admin,dc=rgnoccidente,dc=com” write
      by anonymous auth
      by self write
      by * none
      access to *
      by dn=”cn=admin,dc=rgnoccidente,dc=com” write
      by * read
      # final de lineas

      # The database directory MUST exist prior to running slapd AND
      # should only be accessible by the slapd and slap tools.
      # Mode 700 recommended.
      directory /usr/local/openldap/var/openldap-data
      # Indices to maintain
      index objectClass eq

      Reply
  4. admin says:
    May 20, 2011 at 4:13 pm

    Parece que el módulo de BDB, o bien no está vinculada o no cargado en slapd.conf
    Puede ejecutar este comando, por favor:

    ldd / PATH / TO SLAPTEST /
    (reemplace / PATH / TO / SLAPTEST con la ubicación de slaptest el ejecutable)

    Puede también enviar un contenido completo en su slapd.conf?

    Podría ser más fácil si usted acaba de ponerse en contacto conmigo por correo electrónico – alex@flagshipcomm.com

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>