diff options
| author | Greg Hudson <ghudson@mit.edu> | 2012-11-17 15:30:32 -0500 |
|---|---|---|
| committer | Greg Hudson <ghudson@mit.edu> | 2012-11-17 15:44:03 -0500 |
| commit | 85898e8f1c9e4f5bff70e1ff810519363b262eb4 (patch) | |
| tree | 1c697cd42cf8055a911c6db1a9c6c6df2939529b /src/tests/t_kdb.py | |
| parent | 76259be582f1e0d07c2a8993741e4893c7fd6f74 (diff) | |
| download | krb5-85898e8f1c9e4f5bff70e1ff810519363b262eb4.tar.gz krb5-85898e8f1c9e4f5bff70e1ff810519363b262eb4.tar.xz krb5-85898e8f1c9e4f5bff70e1ff810519363b262eb4.zip | |
Fix quoting issues in LDAP KDB module
Modify ldap_filter_correct() to quote special characters for DN
strings as well as filters, since it is already used to quote a DN
string in krb5_ldap_name_to_policydn() and there's no harm in
over-quoting. In krb5_ldap_put_principal(), quote the unparsed
principal name for use in DNs we choose. In
krb5_ldap_create_password_policy(), use the policy name for the CN of
the policy entry instead of the (possibly quoted) first element of the
DN.
Adapted from a patch by Jim Shi <hanmao_shi@apple.com>.
ticket: 7296
Diffstat (limited to 'src/tests/t_kdb.py')
| -rw-r--r-- | src/tests/t_kdb.py | 2 |
1 files changed, 0 insertions, 2 deletions
diff --git a/src/tests/t_kdb.py b/src/tests/t_kdb.py index dd79b4283d..2f0d6fd90e 100644 --- a/src/tests/t_kdb.py +++ b/src/tests/t_kdb.py @@ -264,8 +264,6 @@ if out: # We could still use tests to exercise: # * DB arg handling in krb5_ldap_create # * krbAllowedToDelegateTo attribute processing -# * Special character handling in ldap_filter_correct (some bugs to -# fix first, see #7296 and September 2012 krbdev discussion) # * A load operation overwriting a standalone principal entry which # already exists but doesn't have a krbPrincipalName attribute # matching the principal name. |