[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Storing Special German Characters in OpenLDAP as PGP-Directory

To: Joachim.Koch@mlp-ag.com, openldap-software@OpenLDAP.org
Subject: Re: Storing Special German Characters in OpenLDAP as PGP-Directory
From: Alejandra Moreno <alejandra.moreno@atrete.ch>
Date: Thu, 03 Jan 2002 12:08:56 +0100
In-reply-to: <C1256B35.00476B0E.00@mail30.mlp-ag.com>

Hi!

I had this same problem with umlauts, and I think the best solution is for you to encode with utf8 after creating the ldif file. If you are interested in some scripts that do this, just tell me.
I have been trying to connect the NAI PGP clients to my LDAP directory, but nobody seems to have done this succesfully. Could you tell me the exact structure of schema you are using and how the tree looks like? Thanks!

Regards,
Alejandra

At 14:00 02.01.2002 +0100, you wrote:

Hello and happy new year!

I try to use OpenLDAP as PGP-Directory for storing PGP keys and PGP
configuration. All seems to work fine as long as I do not try to put in any
pgpUserIDs with German 'umlauts' (funny german characters like äöüß....). If the
pgpUserID contains such a character I get the following error:
     "invald syntax". LDAP-Server error: tag=105 err=21 text=pgpuserid: value #0
contains invalid data

The attribute pgpUserID is defined as Directory String:
attributetype   (
        1.3.6.1.4.1.3401.8.2.16
        NAME 'pgpUserID'
        EQUALITY caseIgnoreMatch
        SUBSTR caseIgnoreSubstringsMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

I think the problem is that OpenLDAP is expecting special character UTF-8 coded
(standard), but PGP sends the UserID plain uncoded.

Following is the schema I'm using:

attributetype (
     1.3.6.1.4.1.3401.8.2.8
     NAME 'pgpBaseKeySpaceDN'
     EQUALITY caseIgnoreMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.9
     NAME 'pgpSoftware'
     EQUALITY caseIgnoreMatch
     SUBSTR caseIgnoreSubstringsMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.10
     NAME 'pgpVersion'
     EQUALITY caseIgnoreMatch
     SUBSTR caseIgnoreSubstringsMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.11
     NAME 'pgpKey'
     EQUALITY caseExactIA5Match
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )

attributetype (
     1.3.6.1.4.1.3401.8.2.12
     NAME 'pgpCertID'
     EQUALITY caseIgnoreMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.13
     NAME 'pgpDisabled'
     EQUALITY caseIgnoreMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.14
     NAME 'pgpKeyID'
     EQUALITY caseIgnoreMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.15
     NAME 'pgpKeyType'
     EQUALITY caseIgnoreMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.16
     NAME 'pgpUserID'
     EQUALITY caseIgnoreMatch
     SUBSTR    caseIgnoreSubstringsMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.17
     NAME 'pgpKeyCreateTime'
     EQUALITY caseIgnoreMatch
     ORDERING caseIgnoreOrderingMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.18
     NAME 'pgpSignerID'
     EQUALITY caseIgnoreMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.19
     NAME 'pgpRevoked'
     EQUALITY caseIgnoreMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.20
     NAME 'pgpSubKeyID'
     EQUALITY caseIgnoreMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.21
     NAME 'pgpKeySize'
     EQUALITY caseIgnoreMatch
     ORDERING caseIgnoreOrderingMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype (
     1.3.6.1.4.1.3401.8.2.22
     NAME 'pgpKeyExpireTime'
     EQUALITY caseIgnoreMatch
     ORDERING caseIgnoreOrderingMatch
     SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

objectclass    (
     1.3.6.1.4.1.3401.8.2.23
     NAME 'pgpServerInfo'
     SUP Top
     STRUCTURAL
     MUST ( objectclass $ cn $ pgpBaseKeySpaceDN )
     MAY ( pgpSoftware $ pgpVersion ) )

objectclass    (
     1.3.6.1.4.1.3401.8.2.24
     NAME 'pgpKey'
     SUP Top
     STRUCTURAL
     MUST ( objectclass $ pgpKey )
     MAY ( pgpCertID $ pgpDisabled $ pgpKeyID $ pgpKeyType $ pgpUserID $
          pgpKeyCreateTime $ pgpSignerID $ pgpRevoked $ pgpSubKeyID $
          pgpKeySize $ pgpKeyExpireTime ) )

Hopefully somebody here can help me.

Thanks in advance,
Joachim

______________________________________________________________________
Alejandra Moreno Espinar
at rete ag

mailto:alejandra.moreno@atrete.ch, http://www.atrete.ch
snail mail: Oberdorfstrasse 2, P.O. Box 674, 8024 Zurich, Switzerland
voice: +41-1-266 55 55, direct: +41-1-266 55 91, fax: +41-1-266 55 88
_____________________________________________________________________

References:
- Storing Special German Characters in OpenLDAP as PGP-Directory
  - From: Joachim.Koch@mlp-ag.com

Prev by Date: Re: slapd logging with OS X
Next by Date: RE: db4
Index(es):
- Chronological
- Thread