Felix Knecht wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Another issue: the RFC says "unlimited magnitude". However the integer
editor only accepts the Java integer range -2^31...2^31-1. To solve that
we need to remove the "spinner" widget we use and replace it with an
normal text field and check the content using a regular expression.
Or use a long. It's unlikely that someone will ever inject some value
bigger than |2^63| ...
If it's allowed to have bigger values and it needs to be fixed anyway,
we shouldn't do any assumptions what the user maybe may do, but fix it
according to the RFC ...
You are right.
OTOH, I'm not sure I want to spend 1 hour to fix the various parts of
the server which deal with Integer values above 2^63, as the ratio
effort/ROI is most probably 0. At least, not before the 100+ issues we
already have are fixed :)
PS: In this very case, the RFC is based on the ASN.1 definition of an
INTEGER, which has no limit. It has no limit because INTEGER is a basic
type that may be used in many different areas, where interger > 2^63 may
make sense.
Just my 2 Cents ...
Regards
Felix
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkrYJ2UACgkQ2lZVCB08qHGYfwCggfTSDpA3N8aSXQTi3+TkM485
Q3MAn1tSl46124NHkHvIuGLLpw2KDiNE
=md0t
-----END PGP SIGNATURE-----
--
--
cordialement, regards,
Emmanuel Lécharny
www.iktek.com
directory.apache.org
