directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Emmanuel Lecharny (JIRA)" <j...@apache.org>
Subject [jira] Commented: (DIRSERVER-696) Adding entries with RDNs enclosed in quotes may lead to entries with illegal DNs
Date Mon, 21 Aug 2006 23:18:15 GMT
    [ http://issues.apache.org/jira/browse/DIRSERVER-696?page=comments#action_12429568 ] 
            
Emmanuel Lecharny commented on DIRSERVER-696:
---------------------------------------------

I think that the VSLDAP test relationship3_4_0_10 is wrong :
...
	String baseObject = "cn=\"Easy Come, Easy Go\",ou=Syntaxes,ou=Search,o=IMC,c=US";
	String filter = "(cn=\"Easy Come, Easy Go\")";

	SearchRequest Request = new SearchRequest( baseObject, filter );
	Request.scope = Scope.baseObject;

	try{
		Response = ldap.search( Request );

		// Should return "Easy Come, Easy Go", only.

		if( (Response.entries.size() == 1) 
		&&  (Response.objectExists( "cn", "\"Easy Come, Easy Go\"" ))  		)
		{
			ts.tet_result( ts.TET_PASS );
			return;
		}
...

The baseObject escape " with a \, but it should use a \\\". If not, the the RDN should be
equals to :
cn=\"Easy Come, Easy Go\" 
which is equivalent to :
cn=Easy Come\, Easy Go

but as we use " surronding the value, we don't need to escape the ','. But this lead to a
problem : 
as stated by RFC 2253 :
"Implementations MUST allow a value to be surrounded by quote ('"' ASCII 34) characters, which
are not part of the value"

so the way the test is written in java means we should remove the " around the value before
storing the value.

We should ask OpenGroup guys about it.


> Adding entries with RDNs enclosed in quotes may lead to entries with illegal DNs
> --------------------------------------------------------------------------------
>
>                 Key: DIRSERVER-696
>                 URL: http://issues.apache.org/jira/browse/DIRSERVER-696
>             Project: Directory ApacheDS
>          Issue Type: Bug
>    Affects Versions: 1.0-RC4
>         Environment:     *  ApacheDS 1.0 RC4 SNAPSHOT
>     * Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_07-b03)
>     * Windows XP Professional SP2
>            Reporter: Stefan Zoerner
>         Assigned To: Emmanuel Lecharny
>         Attachments: quotesEntries.ldif
>
>
> Using ApacheDS 1.0 RC4 SNAPSHOT with server.xml unchanged.
> If I try to add something like this
> dn: ou="Scissors 8<",dc=example,dc=com
> ou: "Scissors 8<"
> objectclass: organizationalUnit
> objectclass: top
> an entry is created like that (quotes missing)
> dn: ou=Scissors 8<,dc=example,dc=com
> ou: Scissors 8<
> objectclass: organizationalUnit
> objectclass: top
> This causes a lot of trouble in some tools I use (LDAP Administrator, for instance).
I checked the behaviour of IBM Tivoli Directory Server 6.0 and Sun Java System Directory Server
5.2. They behave different, but both create entries with valid DNs:
> Sun:
> dn: ou="Scissors 8<",dc=example,dc=com
> ou: "Scissors 8<"
> ou: Scissors 8<
> objectClass: organizationalUnit
> objectClass: top
> IBM:
> dn: ou=Scissors 8\<,dc=example,dc=com
> ou: "Scissors 8<"
> ou: Scissors 8<
> objectclass: organizationalUnit
> objectclass: top
> I add an LDIF file with this entry and comparable entries, which cause the same error.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message