git.samba.org
/
metze
/
samba
/
wip.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
78a4bb0
)
dsdb:schema_data: don't allow replicated deletes
author
Stefan Metzmacher
<metze@samba.org>
Tue, 12 Mar 2019 13:45:04 +0000
(14:45 +0100)
committer
Stefan Metzmacher
<metze@samba.org>
Mon, 17 Feb 2020 11:42:56 +0000
(12:42 +0100)
We should protect ourself from a broken schema injected via replication.
Signed-off-by: Stefan Metzmacher <metze@samba.org>
source4/dsdb/samdb/ldb_modules/schema_data.c
patch
|
blob
|
history
diff --git
a/source4/dsdb/samdb/ldb_modules/schema_data.c
b/source4/dsdb/samdb/ldb_modules/schema_data.c
index aac85fa6428cbcfa8e42e743078503b82e37daa8..1b9c09a4c28477b7a0d240c557d7e79434b1a7ab 100644
(file)
--- a/
source4/dsdb/samdb/ldb_modules/schema_data.c
+++ b/
source4/dsdb/samdb/ldb_modules/schema_data.c
@@
-506,11
+506,6
@@
static int schema_data_del(struct ldb_module *module, struct ldb_request *req)
return ldb_next_request(module, req);
}
- /* replicated update should always go through */
- if (ldb_request_get_control(req, DSDB_CONTROL_REPLICATED_UPDATE_OID)) {
- return ldb_next_request(module, req);
- }
-
/* dbcheck should be able to fix things */
if (ldb_request_get_control(req, DSDB_CONTROL_DBCHECK)) {
return ldb_next_request(module, req);