[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: memory leaks

To: Julio Sánchez Fernández <j_sanchez@stl.es>
Subject: Re: memory leaks
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Wed, 05 Dec 2001 09:33:17 -0800
Cc: Pierangelo Masarati <masarati@aero.polimi.it>, openldap-devel@OpenLDAP.org
In-reply-to: <5.1.0.14.0.20011205091705.016b8748@127.0.0.1>
References: <1007572008.4323.0.camel@j-sanchez-p.stl.es> <5.1.0.14.0.20011205074927.01799340@127.0.0.1> <3C0DE988.BAB4FEB@aero.polimi.it> <Stig Venaas's message of "Tue, 6 Nov 2001 22:47:45 +0100"> <Pine.GSO.4.33L-022.0111051714530.20436-100000@nil.andrew.cmu.edu> <Pine.GSO.4.33L-022.0111061307270.3465-100000@nil.andrew.cmu.edu> <20011106224745.A23464@itea.ntnu.no> <5.1.0.14.0.20011108111257.01792e40@127.0.0.1> <3C0DE988.BAB4FEB@aero.polimi.it> <5.1.0.14.0.20011205071809.0170a500@127.0.0.1> <5.1.0.14.0.20011205074927.01799340@127.0.0.1>

At 09:23 AM 2001-12-05, Kurt D. Zeilenga wrote:
>At 09:06 AM 2001-12-05, Julio Sánchez Fernández wrote:
>>I think OpenSSL uses just the ASN1 tag to decide on the value syntax.
>
>Yes, but OpenSSL likely assumes that two values which have
>identical DER-encoded representations have identical LDAP
>syntax string representations.  That assumption is a bad
>assumption as two different LDAP syntax may have the same
>DER representations but different LDAP string representations.
>
>I agree that in practice you likely won't run into such
>cases, especially with DN AVAs, but...

I take this back, you'll run it right away....

consider two LDAP syntaxes:
        ( 1.1.1 DESC 'INTEGER restricted to 0 "off" and 1 "on"' )
        ( 1.1.2 DESC 'INTEGER restricted to -1 "-", 0 "0", and +1 "+" )

(both of ASN.1 syntax INTEGER) and two attributes:
        ( 1.1.1.0 NAME 'bbit' SYNTAX 1.1.1 )
        ( 1.1.2.0 NAME 'tbit' SYNTAX 1.1.2 )

Bbit is transferred (in LDAP) as "off" and "on" and
Tbit is transferred (in LDAP) as "-" "0" "+".

Guessing that a DER encoded 1 should be represented as "1"
is wrong in both cases....

BTW, I've similar naming attributes in the real world.

Kurt

Follow-Ups:
- Re: memory leaks
  - From: Julio Sanchez Fernandez <jsanchez@OpenLDAP.org>

References:
- Re: memory leaks
  - From: Julio Sánchez Fernández <j_sanchez@stl.es>
- Re: memory leaks
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: memory leaks
  - From: Pierangelo Masarati <masarati@aero.polimi.it>
- Re: memory leaks
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: memory leaks
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: memory leaks
Next by Date: Re: memory leaks
Index(es):
- Chronological
- Thread