[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: equal character forbidden in DN

To: "Hallvard B Furuseth" <h.b.furuseth@usit.uio.no>
Subject: Re: equal character forbidden in DN
From: "Pierangelo Masarati" <ando@sys-net.it>
Date: Fri, 9 Jul 2004 20:59:36 +0200 (CEST)
Cc: ando@sys-net.it, "Harms, Hendrik (EXTERN: TOJAQ)" <extern.hendrik.harms@volkswagen.de>, openldap-software@OpenLDAP.org
Importance: Normal
In-reply-to: <HBF.20040709jdvp@bombur.uio.no>
References: <E3A5512A3890D7119EF80008C791F34D062CCCBB@devwagwodx0004.wob.vw.de> <57717.131.175.154.56.1089384162.squirrel@131.175.154.56> <HBF.20040709l45v@bombur.uio.no> <61034.81.72.89.40.1089395035.squirrel@81.72.89.40> <HBF.20040709jdvp@bombur.uio.no>
User-agent: SquirrelMail/1.4.3a-1

> Pierangelo Masarati writes:
>>To: "Hallvard B Furuseth" <h.b.furuseth@usit.uio.no>
>>
>>> That's a bug in RFC 2253: Section 2.4 (ASN.1 DN => string) says '='
>>> need
>>> not be escaped, but section 3 (string => DN) says '=' must be escaped.
>>> Unescaped '=' will be allowed in the upcoming revised LDAP spec,
>>> see <http://www.ietf.org/internet-drafts/draft-ietf-ldapbis-dn-14.txt>.
>>
>> I don't see any difference in '=' escaping in that draft...
>
> RFC2253 section 3:
>   attributeValue = string,
>   string         = *( stringchar / pair ) / ...
>   stringchar     = <any character except one of special, "\" or
> QUOTATION>,
>                                                 ^^^^^^^
>   special        includes "=".
>
> Draft section 3:
>   ; The following characters are to be escaped when they appear
>   ; in the value to be encoded: ESC, one of <escaped>, leading
>                                             ^^^^^^^^^
>   ; SHARP or SPACE, trailing SPACE, and NULL.
>   string         = ...
>   escaped        = DQUOTE / PLUS / COMMA / SEMI / LANGLE / RANGLE
> And the grammar:
>   attributeValue = string / ...
>   string         = leadchar [*stringchar trailchar] and <pair>s / ...,
>   leadchar, stringchar, trailchar = LUTF1, TUTF1, SUTF1 and more,
>   LUTF1, TUTF1 and SUTF1 all include %3D ("=").

I mean: in the draft, the "=" must still be escaped.

p.

-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it


    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497

References:
- equal character forbidden in DN
  - From: "Harms, Hendrik (EXTERN: TOJAQ)" <extern.hendrik.harms@volkswagen.de>
- Re: equal character forbidden in DN
  - From: "Pierangelo Masarati" <ando@sys-net.it>
- Re: equal character forbidden in DN
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: equal character forbidden in DN
  - From: "Pierangelo Masarati" <ando@sys-net.it>
- Re: equal character forbidden in DN
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

Prev by Date: Re: equal character forbidden in DN
Next by Date: Re: Certificate Signature Failure
Index(es):
- Chronological
- Thread