Ruud Baart wrote:
I use slapd 2.4.23 (debian package) with some overlays: syncprov, unique and valsort. I have a problem with the unique overlay.
This is the unique constraint: olcUniqueURI: ldap://ou=Workstations,ou=Devices,dc=example,dc=com/?uid?sub
This is not a valid LDAP URL. Probably this should be this LDAP URL with emtpy hostport part:
ldap:///ou=Workstations,ou=Devices,dc=example,dc=com?uid?sub
See http://www.ietf.org/rfc/rfc4516.txt for syntax of LDAP URLs.
Good catch; please note that the original URI was valid, but it meant
$ ./libraries/libldap/urltest 'ldap://ou=Workstations,ou=Devices,dc=example,dc=com/?uid?sub' generic LDAP url PROTO: ldap HOST: ou=Workstations,ou=Devices,dc=example,dc=com PORT: 389 ATTRS: uid SCOPE: sub URL: ldap://ou=Workstations,ou=Devices,dc=example,dc=com:389/?uid?sub
This error would have been caught if unique_new_domain_uri() checked that the host portion be empty, to indicate a local URI, as in many other functionalities of OpenLDAP's slapd. I suggest an ITS be filed to strengthen misconfiguration detection.
p.