[Date Prev][Date Next]
OpenLDAP goes too deep with regex's (ITS#2174)
Full_Name: Quanah Gibson-Mount
OS: Solaris 8
Submission from: (NULL) (188.8.131.52)
When using a sasl-regexp of the form:
I found that even though
a) suKrb5name wasn't in an entry and
b) the information was looking for was in krb5PrincipalName
slapd would still continue to look for the suKrb5Name attribute, even after
getting a successful match at krb5PrincipalName.
This really violates the purpose of an OR statement, and greatly decreases the
efficiency of slapd.