[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP/SASL/GSSAPI/Kerberos issue with Active Directory searches (ITS#2179)

To: openldap-its@OpenLDAP.org
Subject: Re: OpenLDAP/SASL/GSSAPI/Kerberos issue with Active Directory searches (ITS#2179)
From: edward_j_r_newman@hotmail.com
Date: Wed, 27 Nov 2002 15:15:39 GMT

Howard

The limitation of 64K seems to the encoded in ldap-int.h header file 
provided by OpenLDAP. I looking through the SASL code but haven't found 
their buffer limitation yet. Why is this limitation not defined in SASL 
headers rather than Cyrus SASL?

Edward


>From: Howard Chu <openldap-its@OpenLDAP.org>
>To: edward_j_r_newman@hotmail.com
>Subject: Re: OpenLDAP/SASL/GSSAPI/Kerberos issue with Active Directory 
>searches (ITS#2179)
>Date: Wed, 27 Nov 2002 03:06:27 GMT
>
>This is a known issue. There are two problems - the Cyrus SASL library 
>encodes
>its max buffer size as 64K when it should instead be using 16M, per the 
>SASL
>RFC. And Microsoft's AD always ignores the negotiated buffer size. Neither 
>of
>these are issues that can be fixed in the OpenLDAP code, it is up to Cyrus 
>and
>Microsoft to fix their respective code bases.


_________________________________________________________________
The new MSN 8: smart spam protection and 2 months FREE*  
http://join.msn.com/?page=features/junkmail

Prev by Date: Re: OpenLDAP/SASL/GSSAPI/Kerberos issue with Active Directory searches (ITS#2179)
Next by Date: sb_sasl_write doesn't handle partial writes (ITS#2211)
Index(es):
- Chronological
- Thread