[Freeipa-devel] [PATCH] 0034 Limit permission and selfservice names
Petr Viktorin
pviktori at redhat.com
Fri Apr 6 11:29:09 UTC 2012
https://fedorahosted.org/freeipa/ticket/2585: ipa permission-add throws
internal server error when name contains '<', '>' or other special
characters.
The problem is, of course, proper escaping; not only in DNs but also in
ACIs. Right now we don't really do either.
This patch is just a simple workaround: disallow anything except
known-good characters. It's just names, so no functionality is lost.
All tickets for April are now taken, so unless a new one comes my way,
I'll take a dive into the code and fix it properly. This could take some
time and would mean somewhat larger changes.
--
Petr³
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-pviktori-0034-Limit-permission-and-selfservice-names-to-alphanumer.patch
Type: text/x-patch
Size: 4933 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20120406/9d688431/attachment.bin>
More information about the Freeipa-devel
mailing list