[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SOCKET handling and Netscape SDK bug(?)



"Kurt D. Zeilenga" wrote:

> At 11:00 AM 7/26/00 +0200, Mikael Grehn wrote:
> >Ehum....yes,
>
> Ehum... no!
>

Please excuse me for my ignorance concering these matters...I was assuming
that I had made a correct search since

1. When I use the same piece of code with "elvira.innosoft.com" I get all
attributes back, ie:

    **** root DSE contents ****
dsetype: ( root )
namingcontexts: dc=innosoft,dc=com
servername: cn=elvira.innosoft.com,dc=innosoft,dc=com
supportedldapversion: 2
supportedldapversion: 3
accesscontrolscheme: 1.3.6.1.4.1.1466.16707.1
currenttime: 20000727085222Z
subschemasubentry: cn=schema,cn=elvira.innosoft.com,dc=innosoft,dc=com
supportedextension: 1.3.6.1.4.1.1466.20037
supportedsaslmechanisms: EXTERNAL
supportedsaslmechanisms: CRAM-MD5
supportedcontrol: 1.3.6.1.4.1.1466.29539.1
[...snip..]
ogsupportedprofile: 1.2.826.0.1050.11.5.1
Finished presenting root DSE

...and when I try "nldap.com" I also get all attributes, ie:
**** root DSE contents ****
supportedLDAPVersion: 2
supportedLDAPVersion: 3
supportedControl: 1.2.840.113556.1.4.473
supportedControl: 2.16.840.1.113730.3.4.9
subschemaSubentry: cn=schema
namingContexts:
Finished presenting root DSE

2. The example I used was (almost) copied from NS SDK manual. The text above
the example said that "The following function gets the root DSE for a server
and prints out its attributes".

Its only when I try and get rootDSE from openLDAP packages (myown server and
"ldap.openldap.org") that I dont get the complete list of attributes.
Exactly where in the openLDAP package does this search make some attributes
dissappear (not operational ones?)? In rootDSE function they are all
included.

Is it that these servers (nldap/innosoft servers) ignore the NULL parameter
and return all attributes?

>
> >   rc=ldap_search_ext_s(ld,"",LDAP_SCOPE_BASE,"(objectclass=*)",NULL,0,
> >NULL,NULL,NULL,0,&result);
>
> You asked for only all user attributes by specifying a NULL.
>
> You need to request explicitly request the return of
> operational attributes to obtain them in results.  See
> RFC2251.

Obviously not when searching innosoft or nldap servers (ldapv3). Could it be
that these servers are "cheating"?

Thanks for the help!

--
sincerely

Mikael Grehn
M.Sc
Systems Engineer
Envilogg Datateknik AB