1 files changed, 5 insertions, 4 deletions

diff --git a/source4/dsdb/samdb/ldb_modules/local_password.c b/source4/dsdb/samdb/ldb_modules/local_password.c
index 622e444166..55d895791a 100644
--- a/source4/dsdb/samdb/ldb_modules/local_password.c
+++ b/source4/dsdb/samdb/ldb_modules/local_password.c
@@ -47,7 +47,8 @@
 
    Each incoming add/modify is split into a remote, and a local request, done in that order.
 
-   We maintain a list of attributes that are kept locally:
+   We maintain a list of attributes that are kept locally - perhaps
+   this should use the @KLUDGE_ACL list of passwordAttribute
  */
 
 static const char * const password_attrs[] = {
@@ -819,7 +820,7 @@ static int lpdb_local_search_callback(struct ldb_request *req,
 		/* free the rest */
 		talloc_free(ares);
 
-		return ldb_module_send_entry(ac->req, merge->message);
+		return ldb_module_send_entry(ac->req, merge->message, merge->controls);
 
 	case LDB_REPLY_REFERRAL:
 		/* ignore */
@@ -832,7 +833,7 @@ static int lpdb_local_search_callback(struct ldb_request *req,
 
 		/* if this entry was not returned yet, return it now */
 		if (lr->remote) {
-			ret = ldb_module_send_entry(ac->req, ac->remote->message);
+			ret = ldb_module_send_entry(ac->req, ac->remote->message, ac->remote->controls);
 			if (ret != LDB_SUCCESS) {
 				return ldb_module_done(ac->req,
 							NULL, NULL, ret);
@@ -898,7 +899,7 @@ static int lpdb_remote_search_callback(struct ldb_request *req,
 				ldb_msg_remove_attr(ares->message, "objectClass");
 			}
 			
-			return ldb_module_send_entry(ac->req, ares->message);
+			return ldb_module_send_entry(ac->req, ares->message, ares->controls);
 		}
 
 		if (ldb_msg_find_ldb_val(ares->message, "objectGUID") == NULL) {