Skip to content

[Backport release-22.05] nixos/openldap: fix systemd rejecting notification#177520

Merged
Ekleog merged 1 commit intorelease-22.05from
backport-177084-to-release-22.05
Jun 13, 2022
Merged

[Backport release-22.05] nixos/openldap: fix systemd rejecting notification#177520
Ekleog merged 1 commit intorelease-22.05from
backport-177084-to-release-22.05

Conversation

@github-actions
Copy link
Contributor

@github-actions github-actions bot commented Jun 13, 2022

Bot-based backport to release-22.05, triggered by a label in #177084.

  • Before merging, ensure that this backport complies with the Criteria for Backporting.
    • Even as a non-commiter, if you find that it does not comply, leave a comment.

@Ekleog @github-actions
nixos/openldap: fix systemd rejecting notification
bfa58dd 
On one of the two machines I have running openldap, openldap failed to start due to a "timeout". Increasing the allowed startup delay didn't help.

I noticed the following in logs:
```
openldap.service: Got notification message from PID 5224, but reception only permitted for main PID 5223
```

It turns out that on this machine at least, openldap apparently sends the notification from a non-main process, which means that we need this NotifyAccess setting for systemd to record that it successfully started. Without it, after 30 seconds systemd kills the process because it didn't receive the sd_notify call.

Somehow the other machine I have on nixos running ldap works fine even without this, but I could not figure out what changes the behavior.

Given that AFAIU NotifyAccess still restricts to "from the cgroup of the service", I think this change should be safe.

(cherry picked from commit bd0fe74)
@github-actions github-actions bot requested review from kwohlfahrt and mweinelt June 13, 2022 13:34
@github-actions github-actions bot mentioned this pull request Jun 13, 2022
Merged
1 task
@ofborg ofborg bot added 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 1-10 This PR causes between 1 and 10 packages to rebuild on Linux. labels Jun 13, 2022
@Ekleog
Copy link
Member

Ekleog commented Jun 13, 2022

@ofborg build nixosTests.openldap

@Ekleog Ekleog merged commit 041ac28 into release-22.05 Jun 13, 2022
@Ma27 Ma27 deleted the backport-177084-to-release-22.05 branch June 13, 2022 15:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kwohlfahrt kwohlfahrt Awaiting requested review from kwohlfahrt

@mweinelt mweinelt Awaiting requested review from mweinelt

Assignees

No one assigned

Labels

10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 1-10 This PR causes between 1 and 10 packages to rebuild on Linux.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Ekleog