From: Richard Sharpe <realrichardsharpe@gmail.com>
Date: Mon, 23 Jan 2012 20:50:25 +0000 (-0800)
Subject: Another fix for bug #8556 - ACL permissions ignored when SMBsetatr is requested.
X-Git-Tag: tevent-0.9.15~272
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=3191040c3d2c761769e983af3bdcd386f21e82c4;p=thirdparty%2Fsamba.git

Another fix for bug #8556 - ACL permissions ignored when SMBsetatr is requested.

Prevent systems with "store dos attributes = yes" from overriding
FILE_WRITE_ATTRIBUITES.
---

diff --git a/source3/smbd/open.c b/source3/smbd/open.c
index 1fd8c11e2d9..538805920fa 100644
--- a/source3/smbd/open.c
+++ b/source3/smbd/open.c
@@ -164,6 +164,7 @@ NTSTATUS smbd_check_access_rights(struct connection_struct *conn,
 
 	if ((access_mask & FILE_WRITE_ATTRIBUTES) &&
 			(rejected_mask & FILE_WRITE_ATTRIBUTES) &&
+			!lp_store_dos_attributes(SNUM(conn)) &&
 			(lp_map_readonly(SNUM(conn)) ||
 			lp_map_archive(SNUM(conn)) ||
 			lp_map_hidden(SNUM(conn)) ||