Issue #1140: FreeIPA Search framework sends unescaped LDAP characters. - freeipa

freeipa

#1140 FreeIPA Search framework sends unescaped LDAP characters.

Closed: Fixed None Opened 13 years ago by jraquino.

Sections of the FreeIPA framework are not escaping special LDAP characters in the DN and in the search filter.

To test:

create a sudo command: "/usr/sbin/less /etc/*"

then

ipa sudocmd-find --all

check /var/log/dirsrv-slapd-EXAMPLE-COM/access and verify you see the * character in the search filter.

http://www.python-ldap.org/doc/html/ldap-filter.html
http://www.python-ldap.org/doc/html/ldap-dn.html

jraquino commented 13 years ago

attachment
freeipa-jraquino-0021-Escape-LDAP-characters-in-member-and-memberof-search.patch

jraquino commented 13 years ago

commit 463d7d2
Author: Jr Aquino jr.aquino@citrix.com
Date: Wed Mar 30 15:14:57 2011 -0700

Escape LDAP characters in member and memberof searches

https://fedorahosted.org/freeipa/ticket/1140

Metadata Update from @jraquino:
- Issue assigned to jraquino
- Issue set to the milestone: FreeIPA 2.2 Core Effort - 2012/01

7 years ago

Metadata

Assignee

jraquino

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 2.2 Core Effort - 2012/01

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#1140 FreeIPA Search framework sends unescaped LDAP characters. Closed: Fixed None Opened 13 years ago by jraquino.

Metadata

#1140 FreeIPA Search framework sends unescaped LDAP characters.

Closed: Fixed None Opened 13 years ago by jraquino.