Pofelski, Lech wrote:
Hello openLDAP gurus,
According to the RFC 4514, an RDN value may start with # and to be followed by a number of hex pair (pairs of hexadecimal values), representing octets of some binary value.
There are two use cases involving such RDN syntax:
·Case 1, where the RDN is of the form:
<attribute OID (called also as attribute desc in dotted form)>=#<BER encoded attribute value in form of a sequence of hex pairs >
·Case 2, where the RDN is of the form:
<attribute name>=#<attribute value in form of a sequence of hex pairs>
Case 1 is explicitly illustrated in the RFC 4514 by the example:
1.3.6.1.4.1.1466.0=#04024869
Although Case 2 is not explicitly illustrated in the RFC4514, it is implicitly correct, as it is in the conformity with the RDN syntax provided by this RFC.
It is explicitly rejected by OpenLDAP.
https://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570
·If this is a known limitation in openLDAP.
·If there is already a plan to fix the problem. If not, Id be glad to contribute to fixing it.