diff options
| author | Justin Stephenson <jstephen@redhat.com> | 2017-06-07 17:17:11 -0400 |
|---|---|---|
| committer | Jakub Hrozek <jhrozek@redhat.com> | 2017-07-11 11:54:29 +0200 |
| commit | 925a14d50edf0e3b800ce659b10b771ae1cde293 (patch) | |
| tree | 7c2489706597caea6807feabbc32403311be62ac | |
| parent | 2ccfa9502abf52941d8b6e44b5f7cfdd13311a2d (diff) | |
| download | sssd-925a14d50edf0e3b800ce659b10b771ae1cde293.tar.gz sssd-925a14d50edf0e3b800ce659b10b771ae1cde293.tar.xz sssd-925a14d50edf0e3b800ce659b10b771ae1cde293.zip | |
LDAP: Fix nesting level comparison
Correct an issue with nesting level comparison of option
ldap_group_nesting_level to ensure that setting nesting level 0
will avoid parent group of group searches.
Resolves:
https://pagure.io/SSSD/sssd/issue/3425
Reviewed-by: Fabiano FidĂȘncio <fidencio@redhat.com>
| -rw-r--r-- | src/providers/ldap/sdap_async_initgroups.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/providers/ldap/sdap_async_initgroups.c b/src/providers/ldap/sdap_async_initgroups.c index a33975cde..726c61cd1 100644 --- a/src/providers/ldap/sdap_async_initgroups.c +++ b/src/providers/ldap/sdap_async_initgroups.c @@ -2253,7 +2253,7 @@ struct tevent_req *rfc2307bis_nested_groups_send( if (!req) return NULL; if ((num_groups == 0) || - (nesting > dp_opt_get_int(opts->basic, SDAP_NESTING_LEVEL))) { + (nesting >= dp_opt_get_int(opts->basic, SDAP_NESTING_LEVEL))) { /* No parent groups to process or too deep*/ ret = EOK; goto done; |