[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#3838) Slapadd allows duplicate attr/value pairs

Full_Name: Dave Horsfall
Version: 2.2.26
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (

SLAPADD allows duplicate attr/val pairs to be added, and these duplicates are
retrieved with LDAPSEARCH, confusing any application that assumes uniqueness.


Shut down SLAPD.  SLAPCAT.  Pick an entry, and duplicate an attribute (I noticed
it with objectClass, but any will do).  SLAPADD that entry.  Start SLAPD, and
retrieve that entry.  Note that LDAPADD does the right thing, and refuses

I think our duplicates were created when upgrading from 2.0 to 2.2, using a Perl
script that "fixed" various attributes such as objectClass inheritance.