From 772319412df7804236e1cc06056474469bcdcb66 Mon Sep 17 00:00:00 2001
From: Ralph Boehme <slow@samba.org>
Date: Fri, 19 Aug 2022 12:02:43 +0200
Subject: [PATCH] smbd: fix opening a READ-ONLY file with
 SEC_FLAG_MAXIMUM_ALLOWED

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14215

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>

Autobuild-User(master): Jeremy Allison <jra@samba.org>
Autobuild-Date(master): Mon Aug 29 18:20:20 UTC 2022 on sn-devel-184
---
 selftest/knownfail.d/samba3.smb2.maximum_allowed.read_only | 1 -
 source3/smbd/open.c                                        | 6 ++++++
 2 files changed, 6 insertions(+), 1 deletion(-)
 delete mode 100644 selftest/knownfail.d/samba3.smb2.maximum_allowed.read_only

diff --git a/selftest/knownfail.d/samba3.smb2.maximum_allowed.read_only b/selftest/knownfail.d/samba3.smb2.maximum_allowed.read_only
deleted file mode 100644
index 80fb1a317c3..00000000000
--- a/selftest/knownfail.d/samba3.smb2.maximum_allowed.read_only
+++ /dev/null
@@ -1 +0,0 @@
-^samba3.smb2.maximum_allowed.read_only
diff --git a/source3/smbd/open.c b/source3/smbd/open.c
index 3dd9f69b8cc..db0cb47d34d 100644
--- a/source3/smbd/open.c
+++ b/source3/smbd/open.c
@@ -3269,6 +3269,7 @@ static NTSTATUS smbd_calculate_maximum_allowed_access_fsp(
 {
 	struct security_descriptor *sd = NULL;
 	uint32_t access_granted = 0;
+	uint32_t dosattrs;
 	NTSTATUS status;
 
 	/* Cope with symlinks */
@@ -3345,6 +3346,11 @@ static NTSTATUS smbd_calculate_maximum_allowed_access_fsp(
 		}
 	}
 
+	dosattrs = fdos_mode(fsp);
+	if (IS_DOS_READONLY(dosattrs) || !CAN_WRITE(fsp->conn)) {
+		*p_access_mask &= ~(FILE_GENERIC_WRITE | DELETE_ACCESS);
+	}
+
 	return NT_STATUS_OK;
 }
 
-- 
2.47.3