Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6916202

More cases of invalid ldap filters accepted and processed

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: P3
    • Resolution: Fixed
    • Affects Version/s: 6u17-rev
    • Fix Version/s: 7
    • Component/s: core-libs
    • Labels:
      None
    • Subcomponent:
    • Resolved In Build:
      b86
    • CPU:
      generic
    • OS:
      generic

      Backports

        Description

        Ldap filters indentified as invalid by RFC: http://tools.ietf.org/html/rfc4515 are accepted and processd. The JDK ldap code should throw an exception when such invalid filters are encountered, instead of processing and passing the ldap request to the LDAP servers which always throw an exception. Following are examples of invalid filters:

        1. "((objectClass=*)&(uid=*))"
        2. &(objectClass=*)(uid=*)
        3. ((objectCategory=person)(objectClass=user)(!(cn=user1*)))
        4. ((&(objectClass=user)(cn=andy*)(cn=steve*)(cn=margaret*)))

          Attachments

            Issue Links

              Activity

                People

                Assignee:
                xuelei Xue-Lei Fan
                Reporter:
                aperumai Asok Perumainar (Inactive)
                Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved:
                  Imported:
                  Indexed: