From 9743bdf86fe44babed74fc06264337ded8c43382 Mon Sep 17 00:00:00 2001
From: Stefan Metzmacher <metze@samba.org>
Date: Tue, 15 Mar 2005 14:37:02 +0000
Subject: r5798: limit the size of an sid, 28 bytes complete is the biggest SID
 that can be handled.

tridge: do you think it would make sense to change the sub_auth[num_auths] to sub_auth[5],
        so we can copy the struct by sid1 = sid2;
	comments please

metze
(This used to be commit 2fc8a604b003a6c3425eb7bbf77fbe467c956085)
---
 source4/librpc/idl/security.idl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'source4/librpc/idl/security.idl')

diff --git a/source4/librpc/idl/security.idl b/source4/librpc/idl/security.idl
index 71929cd843..691dd1d063 100644
--- a/source4/librpc/idl/security.idl
+++ b/source4/librpc/idl/security.idl
@@ -186,7 +186,7 @@ interface security
 	   so you can't copy them using assignment */
 	typedef [public,noprint] struct {
 		uint8  sid_rev_num;             /**< SID revision number */
-		uint8  num_auths;               /**< Number of sub-authorities */
+		[range(0,5)] int8  num_auths;  /**< Number of sub-authorities */
 		uint8  id_auth[6];              /**< Identifier Authority */
 		uint32 sub_auths[num_auths];
 	} dom_sid;
-- 
cgit