[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Attribute Name Length Bounds

To: <capple@dsi-consulting.net>
Subject: RE: Attribute Name Length Bounds
From: "Howard Chu" <hyc@highlandsun.com>
Date: Tue, 17 Jun 2003 02:20:45 -0700
Cc: <ietf-ldapbis@OpenLDAP.org>
Importance: Normal
In-reply-to: <000601c33490$0683c5e0$5f0aa8c0@D7ST2111>

> -----Original Message-----
> From: owner-ietf-ldapbis@OpenLDAP.org
> [mailto:owner-ietf-ldapbis@OpenLDAP.org]On Behalf Of Chris Apple

> That's an accurate example of what I observed.
>
> The implementer is aware of the issue.
>
> I do see your point that this might be considered
> a bug.
>
> I also think that the fact that this bug can exist
> is a result of an ambiguity in the LDAPv3 proposed
> standard specs.

> Either interpretation is arguably correct given the state of
> the currently published proposed standards documents for
> LDAPv3. Thus implementers choosing either strategy are correct
> when they claim compliance with the specs.

????? If I send an ASN.1 encoded message to a server, and the server
arbitrarily  truncates the end off any of the several length-encoded fields
of the message while processing it, the server has corrupted the message. I
don't see how you can possibly interpret this as correct behavior in the
server.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

Follow-Ups:
- RE: Attribute Name Length Bounds
  - From: "Chris Apple" <capple@dsi-consulting.net>

References:
- RE: Attribute Name Length Bounds
  - From: "Chris Apple" <capple@dsi-consulting.net>

Prev by Date: RE: Attribute Name Length Bounds
Next by Date: [Syntaxes] Century overflow in Generalized Time
Index(es):
- Chronological
- Thread