[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#7759) Wrong parsing of LDAP message

Lukas Slebodnik wrote:
> On (07/12/13 08:37), Howard Chu wrote:
>> lslebodn@redhat.com wrote:
>>> Full_Name: Lukas Slebodnik
>>> Version: 2.4.38
>>> OS: Fedora
>>> URL: ftp://ftp.openldap.org/incoming/Lukas-Slebodnik-131205.tar.gz
>>> Submission from: (NULL) (
>> Fixed now in git master.
> Thank you.
> According commit 80e6316d37dd024bf32ed6db024f195c1b51ef7f, it seems to me
> I was right that ApacheDS send wrong response.
> Could you confirm this statement? because I am not expert in ldap protocol
> and I would like to file a bug to ApacheDS upstream.

The hex dumps you included were a bit difficult to read. I couldn't tell what 
was sent from the server vs the client and what the message boundaries were. 
If you can reproduce the behavior using e.g. ldapwhoami -d7 that would be more 

Meanwhile you can refer to draft-behera-ldap-password-policy for the 
specification of the response control. The control value is mandatory for this 

   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/