Summary: Admin Server templates: DistinguishName validation fails https://bugzilla.redhat.com/show_bug.cgi?id=560827 Description of problem: Some template file contains double quotes in the DN string, which are not escaped. Sample broken entry in 01nsroot.ldif.tmpl dn: ou="uid=%as_uid%, ou=Administrators, ou=TopologyManagement, o=NetscapeRoot",ou=UserPreferences, ou=%domain%, o=NetscapeRoot objectClass: top objectClass: organizationalUnit aci: (targetattr=*)(version 3.0; acl "UserDNControl"; allow (all) userdnattr="creatorsname";) ou: uid=%as_uid%, ou=Administrators, ou=TopologyManagement, o=NetscapeRoot Related bug: https://bugzilla.redhat.com/show_bug.cgi?id=555577 555577 - Syntax validation fails for "ou=NetscapeRoot" tree [Proposed fix (ldapserver)] --> (https://bugzilla.redhat.com/attachment.cgi?id=388648) git patch file (ldapserver) Description: adding a perl subroutine dnEscape to escape special characters and eliminate spaces around ',', which is to make the given dn compliant with RFC4514. [Proposed fix (adminserver)] --> (https://bugzilla.redhat.com/attachment.cgi?id=388650) git patch file (adminserver) Description: admserv/newinst/src/dirserver.map.in /register_param.map.in --- added escapedrootdn key, which is an escaped rootdn compliant with RFC4514 admserv/schema/ldif/*.tmpl --- removed unescaped '"' from dn strings, which violates RFC4514. escaped special characters ('=' and ',') which used to be a value surrounded in the double quotes '"'. removed spaces around ','
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
-- 389-devel mailing list 389-devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-devel
