Hi Team,
I'm currently working with OpenLDAP (Symas 2.6.7) using the MDB backend, and we've encountered limitations with the length of a single RDN component while importing LDIFs.
**Observed Behavior:** While `MDB_MAXKEYSIZE` is defined as 511 bytes, we found through testing that: - An RDN component (like `uid=...`) of **241 bytes** works - An RDN component of **242 bytes or more** consistently fails with: ldap_add: Other (e.g., implementation specific) error (80) - The full DN length is far below the 8192-byte DN limit, and only the RDN seems to be affected
**Test Environment:** - OpenLDAP version: `Symas 2.6.7` - Backend: `mdb` - OS: `RHEL8`
We confirmed this limit by iteratively creating entries with increasing `uid` lengths and saw consistent breakage at 242 bytes. **Questions:** 1. Is 241 & below bytes the *officially safe practical limit* for a single RDN in LMDB-based OpenLDAP setups? 2. Can we increase the limit?
Reference link: https://www.openldap.org/lists/openldap-technical/201401/msg00239.html
Regards, Anil P
--On Tuesday, June 3, 2025 7:09 PM +0000 anilkumar.pathuri7@gmail.com wrote:
Hi Team,
Reference link: https://www.openldap.org/lists/openldap-technical/201401/msg00239.html
This is: https://bugs.openldap.org/show_bug.cgi?id=8461
Regards, Quanah
Reading the bug, I'm even confused more: The "bug" (not clear what kind of bug it is) is older than 5 years and still not fixed. Also for that bug the key was 512 bytes at least (https://bugs.openldap.org/show_bug.cgi?id=8461#c3) and the erro message was different ("MDB_BAD_VALSIZE: Too big key/data, key is empty, or wrong DUPFIXED size (-30781)")
So is it really the same bug (if it is a bug)?
Kind regards, Ulrich Windl
-----Original Message----- From: Quanah Gibson-Mount quanah@fast-mail.org Sent: Tuesday, June 3, 2025 8:26 PM To: anilkumar.pathuri7@gmail.com; openldap-technical@openldap.org Subject: [EXT] Re: Clarification on RDN Length Limit in MDB Backend (Symas/OpenLDAP 2.6.7)
--On Tuesday, June 3, 2025 7:09 PM +0000 anilkumar.pathuri7@gmail.com wrote:
Hi Team,
Reference link: https://www.openldap.org/lists/openldap-
technical/201401/msg00239.html
This is: https://bugs.openldap.org/show_bug.cgi?id=8461
Regards, Quanah
openldap-technical@openldap.org
-
anilkumar.pathuri7@gmail.com -
Quanah Gibson-Mount -
Windl, Ulrich