[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: bug: openldapaci (slapd crashes if a dn contains '#') (ITS#3303)



I have comitted a different fix to HEAD, about to backport... I note 
that your problem could be solved from the user's side, without need to 
re-code if the critical '#' was just text in the distinguished values of 
the naming attributes; in that case all you need to do is embed to '#' 
DN-encoded, i.e. as hexpairs.  So, an access-id of "cn=Foo#Bar" would 
become "cn=Foo\23Bar".

p.

jung@ecos.de wrote:

>Full_Name: Harald Jung
>Version: 2.2.13
>OS: GNU/Linux
>URL: ftp://ftp.openldap.org/incoming/
>Submission from: (NULL) (194.95.226.11)
>
>
>Hello,
>
>problem :
>if an user cn (aka access-id) contains a '#' and this user got access by an 
>openldapaci definition, then slapd crashes after ' <<< dnNormalize:',
>
>fix:
>the whole dn after the last '#' in an openldapaci will be used now
>
>  
>




    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497