[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#4868) Binary Attribute Patch(es)

Full_Name: Kevin Vargo
Version: 2.3.32
OS: Linux (RH-EL4)
URL: ftp://ftp.openldap.org/incoming/openldap-2.3.32-kv1-patch_support-binary-attr-070312.tgz
Submission from: (NULL) (

These address the use of Binary-valued attributes (#3113, #3386):

For example, inetOrgPerson.userCertificate is usually transferred with the
";binary" directive.  ";binary" is not handled by OpenLDAP/Back-SQL.  As well,
the data itself, when stored in the database is not properly read out -- all
data is read as SQL_C_CHAR data.  This supports SQL_C_BINARY-based data.

There remains an issue with selecting attributes using, e.g.,
"userCertificate;binary" -- nothing is returned.  Someone with a better
understanding of the attribute-processing method would be much more effective in
terms of finding the correct place to remove the ";binary" from the
"attribute-name."  (i.e. "userCertificate;binary" is NOT the attribute-name;
"userCertificate" is the attribute-name, ";binary" is a transport directive (see

Additionally, I included to the patch to remove the "assert(0)" in Back-SQL's
verification that a search filter and ldap-data don't mis-match on suffix.

Tags: OpenLDAP, Back-SQL, MySQL, userCertificate, Binary Attributes, Client

    Addressed ITS#4856 -- I think you already fixed this

    Address ITS#3113, ITS#3386
    Support for binary attribute values

    Addresses issue with accessing attributes that have been provided with
";binary" directive

note that I have no doubts whatso ever that there are many better ways to do