[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: sasl authz "dn:" type normalization (ITS#2852)

> -----Original Message-----
> From: owner-openldap-bugs@OpenLDAP.org
> [mailto:owner-openldap-bugs@OpenLDAP.org]On Behalf Of ando@sys-net.it

> When dealing with saslAuthz{To|From} attribute values,
> in some cases the "dn:" type doesn't pass normalization
> because of regex special chars.  This patch introduces
> a new type of saslAuthz* string, "regex:", which desn't
> undergo normalization before being compiled in regcomp().

Is this approach really necessary? Can we just defer the dnNormalize until
after the regexp has been expanded?

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support