s4:dsdb/descriptor: pass object_list to create_security_descriptor()

author Stefan Metzmacher <metze@samba.org>

Tue, 11 Dec 2012 01:01:12 +0000 (02:01 +0100)

committer Michael Adam <obnox@samba.org>

Tue, 11 Dec 2012 03:50:50 +0000 (04:50 +0100)
author Stefan Metzmacher <metze@samba.org>
Tue, 11 Dec 2012 01:01:12 +0000 (02:01 +0100)
committer Michael Adam <obnox@samba.org>
Tue, 11 Dec 2012 03:50:50 +0000 (04:50 +0100)
diff --git a/source4/dsdb/samdb/ldb_modules/descriptor.c b/source4/dsdb/samdb/ldb_modules/descriptor.c

index 192c745e254d040f4e4303b6e84c2741677d9104..fb100f76283d74f09b50fc07acf29082de06098c 100644 (file)
--- a/source4/dsdb/samdb/ldb_modules/descriptor.c
+++ b/source4/dsdb/samdb/ldb_modules/descriptor.c
@@ -249,9 +249,15 @@ static DATA_BLOB *get_new_descriptor(struct ldb_module *module,
         struct dom_sid *default_owner;
         struct dom_sid *default_group;
         struct security_descriptor *default_descriptor = NULL;
+       struct GUID *object_list = NULL;
  
         if (objectclass != NULL) {
                 default_descriptor = get_sd_unpacked(module, mem_ctx, objectclass);
+               object_list = talloc_zero_array(mem_ctx, struct GUID, 2);
+               if (object_list == NULL) {
+                       return NULL;
+               }
+               object_list[0] = objectclass->schemaIDGUID;
         }
  
         if (object) {
@@ -370,8 +376,13 @@ static DATA_BLOB *get_new_descriptor(struct ldb_module *module,
         default_owner = get_default_ag(mem_ctx, dn,
                                        session_info->security_token, ldb);
         default_group = get_default_group(mem_ctx, ldb, default_owner);
-       new_sd = create_security_descriptor(mem_ctx, parent_descriptor, user_descriptor, true,
-                                           NULL, SEC_DACL_AUTO_INHERIT|SEC_SACL_AUTO_INHERIT,
+       new_sd = create_security_descriptor(mem_ctx,
+                                           parent_descriptor,
+                                           user_descriptor,
+                                           true,
+                                           object_list,
+                                           SEC_DACL_AUTO_INHERIT |
+                                           SEC_SACL_AUTO_INHERIT,
                                             session_info->security_token,
                                             default_owner, default_group,
                                             map_generic_rights_ds);
author	Stefan Metzmacher <metze@samba.org>
	Tue, 11 Dec 2012 01:01:12 +0000 (02:01 +0100)
committer	Michael Adam <obnox@samba.org>
	Tue, 11 Dec 2012 03:50:50 +0000 (04:50 +0100)