From 1dd195b9a3df01a0ef51e9f963201f1f79d1f90b Mon Sep 17 00:00:00 2001 From: Stephen Gallagher Date: Mon, 29 Aug 2011 08:51:05 -0400 Subject: HBAC: Properly skip all non-group memberOf entries --- src/providers/ipa/ipa_hbac_users.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'src/providers/ipa') diff --git a/src/providers/ipa/ipa_hbac_users.c b/src/providers/ipa/ipa_hbac_users.c index 888f866d..cf838e50 100644 --- a/src/providers/ipa/ipa_hbac_users.c +++ b/src/providers/ipa/ipa_hbac_users.c @@ -73,7 +73,8 @@ get_ipa_groupname(TALLOC_CTX *mem_ctx, if (ldb_dn_get_comp_num(dn) < 4) { /* RDN, groups, accounts, and at least one DC= */ - ret = EINVAL; + /* If it's fewer, it's not a group DN */ + ret = ENOENT; goto done; } -- cgit