RE: Successful LDAP signing test

From: Murray S. Kucherawy <msk_at_cloudmark.com>
Date: Mon, 22 Feb 2010 13:58:18 -0800

> -----Original Message-----
> From: opendkim-dev-bounce_at_lists.opendkim.org [mailto:opendkim-dev-
> bounce_at_lists.opendkim.org] On Behalf Of Mike Markley
> Sent: Monday, February 22, 2010 1:49 PM
> To: opendkim-dev_at_lists.opendkim.org
> Subject: Re: Successful LDAP signing test
>
> On Mon, Feb 22, 2010 at 11:17:51AM -0800, Murray S. Kucherawy
> <msk_at_cloudmark.com> wrote:
> > Oh, also: Does opendkim-genzone work for your LDAP environment?
>
> Nope:
>
> $ ./opendkim-genzone -x ~/dkim-testldap.conf
> 'ldap://localhost/ou=dkim,dc=loopted,dc=com,o=internet?opendkimDomain,o
> pendkimSelector,opendkimPrivateKey?sub?(&(objectClass=opendkimKeyTable)
> (opendkimKeyName=$d))'
> ; DKIM public key zone data
> ; auto-generated by (null) at Mon Feb 22 13:46:56 2010
>
> (null): dkimf_db_walk(0) failed
>
> That's my KeyTable definition from the same config file. Using -x to
> ensure that the proper LDAP credentials get used. I'm not entirely sure
> on how exactly genzone would be gathering the data; what's being
> substituted for $d in this case?

The empty string is passed to ldap_search_ext_s() as the query for dkimf_db_walk().

That the program's name (based on argv[0]) is "(null)" probably means some memory is getting clobbered someplace. Can you try it again with "-v -v" added to the command line?

I'll revv up my VM test environment shortly. My LDAP test environment is buried in there.
Received on Mon Feb 22 2010 - 21:58:26 PST