Bug 27241 – values of complex syntax can't contain double quotes

Bug 27241 - values of complex syntax can't contain double quotes


Summary:	values of complex syntax can't contain double quotes

Status:	CLOSED FIXED

Product:	UCS
Classification:	Unclassified
Component:	UDM - CLI
Version:	UCS 5.0
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	UCS 5.0-4-errata
Assigned To:	Florian Best
QA Contact:	Maximilian Janßen

URL:	https://git.knut.univention.de/univen...
Keywords:

Depends on:
Blocks:	27243 56415
	Show dependency tree / graph

Reported:	2012-05-23 10:13 CEST by Andreas Büsching
Modified:	2023-08-28 09:20 CEST (History)
CC List:	2 users (show)

See Also:	41072
What kind of report is it?:	Development Internal
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):	bitesize, Troubleshooting
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Andreas Büsching

2012-05-23 10:13:47 CEST

Der Wert 'wpad "http://server.com/proxy.pac"' wird über das CLI als 'wpad http://server.com/proxy.pac' ins LDAP geschrieben.

Bei einer complex Syntax prüft der CLI, ob er die Zeichenkette anhand von " teilen kann. klappt dies wird keine Leerzeichentrennung vorgenommen. Das führt in diesem Fall zum Fehler.

Comment 1 Andreas Büsching

2012-05-23 10:16:07 CEST

Es wäre am besten, wenn das CLI das Attribute delimiter der Klasse complex auswerten würde.

Eine nette Erweiterung wäre noch, wenn es optional eine Funktion split geben könnte bei einer Syntaxklasse, die den Wert als Liste zurück gibt.

Comment 2 Jannik Ahlers

2023-05-23 16:10:14 CEST

Side effect of this bug:
It is currently impossible to include a " character in the ucr var password/radius/quality/forbidden/chars using ucr policies.

Comment 4 Florian Best

2023-06-20 12:21:35 CEST

https://git.knut.univention.de/univention/ucs/-/merge_requests/805

Comment 5 Florian Best

2023-06-21 10:26:03 CEST

shell escape splitting is now done in case there is a " double quote in the given value:

univention-directory-manager-modules.yaml
04a5abc94664 | feat(udm): allow values to contain double quotes in complex syntax

univention-directory-manager-modules (15.0.24-3)
04a5abc94664 | feat(udm): allow values to contain double quotes in complex syntax

Comment 6 Florian Best

2023-06-27 09:21:37 CEST

univention-directory-manager-modules (15.0.24-5)
d4086822dcbd | Bug #27241: add error handling

Comment 7 Christian Castens

2023-07-12 13:57:15 CEST

<https://errata.software-univention.de/#/?erratum=5.0x739>