summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--ipalib/plugins/permission.py6
1 files changed, 5 insertions, 1 deletions
diff --git a/ipalib/plugins/permission.py b/ipalib/plugins/permission.py
index cd8981d90..be08b148c 100644
--- a/ipalib/plugins/permission.py
+++ b/ipalib/plugins/permission.py
@@ -306,7 +306,11 @@ class permission(baseldap.LDAPObject):
for targetfilter in ipapermtargetfilter:
match = re.match('^\(memberof=(.*)\)$', targetfilter, re.I)
if match:
- dn = DN(match.group(1))
+ try:
+ dn = DN(match.group(1))
+ except ValueError:
+ # Malformed DN; e.g. (memberof=*)
+ continue
groups_dn = DN(self.api.Object.group.container_dn,
self.api.env.basedn)
if dn[1:] == groups_dn[:] and dn[0].attr == 'cn':
generated by cgit (git 2.34.1) at 2026-03-19 06:52:19 +0000