[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Line breaks in Directory String values

Howard Chu wrote:
> Michael StrÃder wrote:
>> Howard Chu wrote:
>>> Michael StrÃder wrote:
>>>> So I'd be interested in hearing one of the core developers confirm that line
>>>> breaks in those attribute values will always be preserved when added via
>>>> LDAP.
>>>> The attribute types in question all have Directory String syntax. But
>>>> glancing
>>>> at the RFC the syntax Directory String allows CR and LF.
>>> OpenLDAP stores attribute values verbatim. It always has and always will.
>> Thanks for confirming that.
>>> You shouldn't even need to ask this question.
>> As said the automatic conversion hunks out the line breaks found in in the
>> original slapd.conf and many attributes in back-config gets extra checking
>> anyway. So the question whether some attribute values might get stored
>> sanitized is not that false.
> Your question is pretty imprecise, then. 

I can't see what's imprecise here.

> Values stored due to conversion from
> slapd.conf are not treated exactly the same as values stored by LDAP
> operations. Everything read from slapd.conf has had excess whitespace stripped
> (as documented in slapd.conf(5)) when read; that is the normal behavior of the
> slapd.conf parser and has been since the dawn of time.

So why does it differ? You could also preserve line breaks during conversion
and strip excessive white spaces before using the ACLs within slapd. That's a
design decision and so my question is very valid. I'm not judging the decision
as right or wrong. I'm just trying to clarify the behaviour and asking for
confirmation that it will remain like this in the future.

>> I think you should appreciate client developers clarifying possible interop
>> issues in advance. So there's nothing justifying your arrogant attitude.
> Michael, you are not a newbie; quit acting like one. You've been associated
> with this Project for at least the past 12 years. There is nothing arrogant in
> telling you you should know better by now. *You* *should* know better by now.

You're missing the point. I'm thinking one step *ahead* you. IMO there's
nothing wrong with bringing to your attention that people *now* assume line
breaks to be preserved. Especially since you're not working in the GUI camp at

There could be valid reasons in the future to strip white spaces in LDAP
requests in a normalization step. So asking for the confirmation that this
behaviour will remain in the future is not imprecise or false at all.
Especially when looking at 12 years history where sometimes things changed
(for valid reasons).

Ciao, Michael.

P.S.: I'm not associated with the OpenLDAP project.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature