dsdb-acl: remove unused acl_check_access_on_class()

author Stefan Metzmacher <metze@samba.org>

Wed, 16 Jan 2013 15:36:07 +0000 (16:36 +0100)

committer Stefan Metzmacher <metze@samba.org>

Mon, 21 Jan 2013 15:12:45 +0000 (16:12 +0100)
author Stefan Metzmacher <metze@samba.org>
Wed, 16 Jan 2013 15:36:07 +0000 (16:36 +0100)
committer Stefan Metzmacher <metze@samba.org>
Mon, 21 Jan 2013 15:12:45 +0000 (16:12 +0100)
diff --git a/source4/dsdb/samdb/ldb_modules/acl.c b/source4/dsdb/samdb/ldb_modules/acl.c

index a3f43032be2818d49d062165acb3b71b8cdb94c1..2842e58b33c20feefdd58e1484af11853f505c26 100644 (file)
--- a/source4/dsdb/samdb/ldb_modules/acl.c
+++ b/source4/dsdb/samdb/ldb_modules/acl.c
@@ -340,52 +340,6 @@ static int acl_childClasses(struct ldb_module *module,
         return LDB_SUCCESS;
  }
  
-static int acl_check_access_on_class(struct ldb_module *module,
-                                    const struct dsdb_schema *schema,
-                                    TALLOC_CTX *mem_ctx,
-                                    struct security_descriptor *sd,
-                                    struct security_token *token,
-                                    struct dom_sid *rp_sid,
-                                    uint32_t access_mask,
-                                    const char *class_name)
-{
-       int ret;
-       NTSTATUS status;
-       uint32_t access_granted;
-       struct object_tree *root = NULL;
-       struct object_tree *new_node = NULL;
-       const struct GUID *guid;
-
-       if (class_name != NULL) {
-               guid = class_schemaid_guid_by_lDAPDisplayName(schema, class_name);
-               if (!guid) {
-                       DEBUG(10, ("acl_search: cannot find class %s\n",
-                                  class_name));
-                       goto fail;
-               }
-               if (!insert_in_object_tree(mem_ctx,
-                                          guid, access_mask,
-                                          &root, &new_node)) {
-                       DEBUG(10, ("acl_search: cannot add to object tree guid\n"));
-                       goto fail;
-               }
-       }
-
-       status = sec_access_check_ds(sd, token,
-                                    access_mask,
-                                    &access_granted,
-                                    root,
-                                    rp_sid);
-       if (!NT_STATUS_IS_OK(status)) {
-               ret = LDB_ERR_INSUFFICIENT_ACCESS_RIGHTS;
-       } else {
-               ret = LDB_SUCCESS;
-       }
-       return ret;
-fail:
-       return ldb_operr(ldb_module_get_ctx(module));
-}
-
  static int acl_childClassesEffective(struct ldb_module *module,
                                      const struct dsdb_schema *schema,
                                      struct ldb_message *sd_msg,
author	Stefan Metzmacher <metze@samba.org>
	Wed, 16 Jan 2013 15:36:07 +0000 (16:36 +0100)
committer	Stefan Metzmacher <metze@samba.org>
	Mon, 21 Jan 2013 15:12:45 +0000 (16:12 +0100)