Signed-off-by: Jeremy Allison <jra@samba.org>
(cherry picked from commit
54e5590cc1267e9c886bc9abd37d8a8eb33cf3f6)
The last 2 patches address bug #9217 - CreateFile with FILE_DIRECTORY_FILE can
create directories on read-only shares.
MAXIMUM_ALLOWED_ACCESS,
&conn->share_access);
+ if (!CAN_WRITE(conn)) {
+ conn->share_access &=
+ ~(SEC_FILE_WRITE_DATA | SEC_FILE_APPEND_DATA |
+ SEC_FILE_WRITE_EA | SEC_FILE_WRITE_ATTRIBUTE |
+ SEC_DIR_DELETE_CHILD );
+ }
+
if (security_token_has_privilege(token, SEC_PRIV_SECURITY)) {
conn->share_access |= SEC_FLAG_SYSTEM_SECURITY;
}