[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#5965) PROBLEM ADDING NON MULTI-VALUED ATTRIBUTES USING ALSO RDN ATTRIBUTE

To: openldap-its@OpenLDAP.org
Subject: (ITS#5965) PROBLEM ADDING NON MULTI-VALUED ATTRIBUTES USING ALSO RDN ATTRIBUTE
From: evaristojosec@yahoo.es
Date: Sat, 21 Feb 2009 09:34:27 GMT
Auto-submitted: auto-generated (OpenLDAP-ITS)

Full_Name: Evaristo Camarero
Version: OpenLDAP 2.4.14
OS: Fedora Core 10
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (83.60.182.235)



Hi:

The issue is related with ITS 5819 and the patch added to solve that issue, that
I guess it does not solve completely the problem

According to RFC 4511, it is possible to add a multivalued attribute using both
RDN attribute and other attributes included in the entry

Example:
# Allowed because cn is not defined SINGLE-VALUE
dn: cn=Bar,dc=example,dc=com
objectClass: device
cn: Foo

The issue happens when the attribute employed in the rdn is SINGLE-VALUE, and we
try to add 2 different values (the rdn attribute value and the other one),
because the server allows that without sending the corresponding error.

# attrSingleValue is defined as SINGLE-VALUE in the schema
#ERROR: It should not be allowed because attrSingleValue
dn: attrSingleValue=value1, dc=example, dc=com
objectClass: whatever
attrSingleValue=value2

Regards,

Evaristo

Prev by Date: Re: Debug mode "fixes" authentication issue - race condition?
Next by Date: ITS#5505
Index(es):
- Chronological
- Thread