[Freeipa-devel] Re: [PATCH] Fix bug in ldap2.normalize_dn.
Pavel Zuna
pzuna at redhat.com
Wed Jun 10 15:32:49 UTC 2009
Rob Crittenden wrote:
> Pavel Zuna wrote:
>> [Re-post of forgotten patch.]
>>
>> Patch 0001: Fix bug in ldap2.normalize_dn.
>>
>> Pavel
>
> I'm not sure I understand the commit comment about mixed case DNs. If
> this function is supposed to normalize DNs then they should all come out
> the same, right?
>
> rob
Well, I run into a problem with the service plugin (and it would probably cause
problems in other plugins too). When creating the entry with a RDN attribute
containing upper-case characters, 2 values were actually created. For example:
# ipa service2-create DNS/test
----------------
service2-create:
----------------
dn: krbprincipalname=dns/test at pzuna,cn=services,cn=accounts,dc=pzuna
krbprincipalname: DNS/test at PZUNA
krbprincipalname: dns/test at pzuna
objectclass: krbprincipal
objectclass: krbprincipalaux
objectclass: krbticketpolicyaux
objectclass: ipaservice
objectclass: pkiuser
objectclass: top
---------------------------
Created service "DNS/test.
---------------------------
One of the value was entered by the plugin and the other one derived from the DN
(which was actually build from the attribute value, but converted to lower-case)
by DS.
The old plugin wasn't converting DN to lower-case and let DS figure out the RDN
attribute value from it.
There might be a better way around this, but I couldn't find any.
Pavel
More information about the Freeipa-devel
mailing list