[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: On-disk-format of back-mdb depends on LDAP syntax?

To: Howard Chu <hyc@symas.com>, openldap-technical@openldap.org
Subject: Re: On-disk-format of back-mdb depends on LDAP syntax?
From: Michael StrÃder <michael@stroeder.com>
Date: Thu, 29 May 2014 19:06:54 +0200
In-reply-to: <5386DDE1.1010206@symas.com>
References: <b84babb998efd9364db85a3c139f62cf@srv1.stroeder.com> <5386DDE1.1010206@symas.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:29.0) Gecko/20100101 Firefox/29.0 SeaMonkey/2.26

Howard Chu wrote:
> Michael StrÃder wrote:
>> Does the on-disk-format of back-mdb depends on which LDAP syntax is used for an
>> attribute?
> 
> In multiple ways. Indexing depends on the syntax and matching rule, but you
> already mentioned no indexing here. Also, whether or not the syntax uses a
> normalizer inside slapd or not, determines how values are stored in an entry.
> (With a normalizer, values are stored twice, once in normalized format.)

I see.

>> So if the LDAP syntax for an an existing attribute would change I have to
>> reimport the MDB?
>>
>> Background:
>>
>> I've changed (as a work-around for a broken client software) the LDAP syntax of
>> a custom attribute from Boolean to IA5String.
> 
> Changed how? LDAPModifying the schema definition in cn=config?

I'm using static configuration and therefore I just modified the schema file
and restarted slapd.

>> After that I could still read the attribute. But when deleting the attribute
>> slapd returned noSuchAttribute(16). I had to remove the whole entry.
> 
> Most likely your change created two clashing AttributeDescriptions inside
> slapd.

What does "inside slapd" mean with static configuration?
It's stored in the MDB files?

> Internally, attributes are matched by their AttributeDescription
> pointers, not by their string names. If you changed the attribute definition
> by deleting and adding it, then there would be two AttributeDescription
> pointers for the same name, and an entry loaded with the old pointer would
> naturally not match a lookup for the current pointer.

Example entry created with msTestAttributeType3 declared as Boolean:

dn: uid=test,dc=example,dc=com
msTestAttributeType2: foo
msTestAttributeType3: TRUE
objectClass: account
objectClass: msTestObjectClass2
uid: test

After changing declaration of msTestAttributeType3 to e.g. SUP name this
change results in noSuchAttribute(16):

dn: uid=test,dc=example,dc=com
changetype: modify
delete: msTestAttributeType3
msTestAttributeType3: TRUE
-
add: msTestAttributeType3
msTestAttributeType3: FALSE
-

This modification works (not the missing delete value):

dn: uid=test,dc=example,dc=com
changetype: modify
delete: msTestAttributeType3
-
add: msTestAttributeType3
msTestAttributeType3: FALSE
-

It seems the normalized values are used when processing delete-by-value.

Ciao, Michael.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Follow-Ups:
- Re: On-disk-format of back-mdb depends on LDAP syntax?
  - From: Michael StrÃder <michael@stroeder.com>

References:
- On-disk-format of back-mdb depends on LDAP syntax?
  - From: "Michael StrÃder" <michael@stroeder.com>
- Re: On-disk-format of back-mdb depends on LDAP syntax?
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: Making sure this is a real issue before I submit it
Next by Date: Re: On-disk-format of back-mdb depends on LDAP syntax?
Index(es):
- Chronological
- Thread