[Date Prev][Date Next] [Chronological] [Thread] [Top]

[Fwd: Schema violations not caught (ITS#398)]

To: openldap-its@OpenLDAP.org
Subject: [Fwd: Schema violations not caught (ITS#398)]
From: kurt@boolean.net
Date: Thu, 16 Dec 1999 00:23:04 GMT

This is a multi-part message in MIME format.
--------------F6C8CDDAB432934073091F38
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit


-- 
Kurt D. Zeilenga <kurt@boolean.net>
Net Boolean Incorporated <http://www.boolean.net/>
--------------F6C8CDDAB432934073091F38
Content-Type: message/rfc822
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Return-Path: dupuis@godot.syntax.com
Received: from syntax.syntax.com ([206.129.186.2])
	by cantor.boolean.net (8.9.3/8.9.3) with ESMTP id AAA59379
	for <kurt@boolean.net>; Thu, 16 Dec 1999 00:15:26 GMT
	(envelope-from dupuis@godot.syntax.com)
Received: from godot.syntax.com (godot.syntax.com [206.129.189.38])
	by syntax.syntax.com (8.9.3/8.9.1) with ESMTP id QAA21273
	for <kurt@boolean.net>; Wed, 15 Dec 1999 16:15:26 -0800 (PST)
Received: (from dupuis@localhost)
	by godot.syntax.com (8.8.8+Sun/8.8.8) id QAA03754;
	Wed, 15 Dec 1999 16:12:48 -0800 (PST)
From: <dupuis@syntax.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <14424.11903.824103.70248@godot.syntax.com>
Date: Wed, 15 Dec 1999 16:12:47 -0800 (PST)
To: "Kurt D. Zeilenga" <kurt@boolean.net>
Subject: Re: Schema violations not caught  (ITS#398)
In-Reply-To: <3.0.5.32.19991215154733.009892c0@localhost>
References: <199912142032.UAA29503@cantor.boolean.net>
	<3.0.5.32.19991215154733.009892c0@localhost>
X-Mailer: VM 6.72 under 21.1 (patch 8) "Bryce Canyon" XEmacs Lucid
X-Mozilla-Status2: 00000000

 > At 08:32 PM 12/14/99 GMT, dupuis@syntax.com wrote:
 > >Full_Name: Christopher DuPuis
 > >Version: 1.2.7 and 1.2.8
 > >OS: Solaris 2.6 (both x86 and Sparc)
 > >URL: ftp://ftp.openldap.org/incoming/
 > >Submission from: (NULL) (206.129.189.38)
 > >
 > >
 > >It is possible to add badly formed entries using either ldif2ldbm
 > 
 > ldif2ldbm doesn't do any schema checks.  It's a bulk loader.
 > 
 > > or ldapadd,
 > 
 > ldapadd should do schema checks (if enabled).
 > 
 > >regardless of whether or not "schemacheck" is set to "on" or "off".
 > >
 > >In slapd.conf, I changed schemacheck to "on", changed the suffix to "dc=syntax,
 > >dc=com",
 > >and changed rootDN to "cn=manager, dc=syntax, dc=com".
 > >
 > >Then, I used ldif2ldbm to load the following LDIF into the directory:
 > >
 > >dn: dc=syntax, dc=com
 > >dc: syntax
 > >objectclass: top
 > >objectclass: domain
 > >
 > >dn: cn=blargfoo, dc=syntax, dc=com
 > >objectclass: bogusObjectClass
 > >cn: blargfoo
 > >qux: 12345
 > >
 > >The second entry should cause an error, since I am using only the default oc and
 > >at files. 
 > >However, this succeeded. ldapsearch shows that both objects are in the
 > >directory.
 > >I can also add "cn=blargfoo, dc=syntax, dc=com", as above, to a running
 > >directory using ldapadd.
 > 
 > Retest with fresh database in which all entries are added using
 > ldapadd(1) (as outlined in the Quick Start Guide).



Kurt,

I rm'ed all of the database files and restarted slapd. Once again,
ldapadd allowed me to create an entry having an undefined objectclass
and an undefined attribute type. schemacheck is set to on.


-Chris DuPuis


--------------F6C8CDDAB432934073091F38--

Prev by Date: Re: Schema violations not caught (ITS#398)
Next by Date: Re: Schema violations not caught (ITS#398)
Index(es):
- Chronological
- Thread