| commit | 7dc71e636ba657518cbce4d2230523023a144e07 | |
| author | Steven Danneman <steven.danneman@isilon.com> | |
| Sat, 15 Nov 2008 21:07:15 +0000 (15 13:07 -0800) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Tue, 9 Dec 2008 10:39:12 +0000 (9 11:39 +0100) | ||
| tree | 2a9ee2c25619d0d00b0635a3d13b2912e1ec359d | treesnapshot (tar.gz zip) |
| parent | b7ec2e35f3b0c22e2e6281ab761b3279637c38fc | commitdiff |
Fix extended DN parse error when AD object does not have a SID.
Some AD objects, like Exchange Public Folders, can be members of Security
Groups but do not have a SID attribute. This patch adds more granular return
errors to ads_get_sid_from_extended_dn(). Callers can now determine if a parse
error occured because of bad input, or the DN was valid but contained no SID.
I updated all callers to ignore SIDless objects when appropriate.
Also did some cleanup to the out paths of lookup_usergroups_memberof()
(cherry picked from commit 48959de11bdeea7f114d8019349b37ada1df5aef)
Some AD objects, like Exchange Public Folders, can be members of Security
Groups but do not have a SID attribute. This patch adds more granular return
errors to ads_get_sid_from_extended_dn(). Callers can now determine if a parse
error occured because of bad input, or the DN was valid but contained no SID.
I updated all callers to ignore SIDless objects when appropriate.
Also did some cleanup to the out paths of lookup_usergroups_memberof()
(cherry picked from commit 48959de11bdeea7f114d8019349b37ada1df5aef)
| source/libads/ldap.c | diffblobblamehistory | |
| source/winbindd/winbindd_ads.c | diffblobblamehistory |