git.samba.org / gd / samba-autobuild / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4fe9eff) | patch
libcli/security: fix handling of deny type ACEs in access_check_max_allowed()
authorRalph Boehme <slow@samba.org>
Fri, 1 Mar 2019 17:57:23 +0000 (18:57 +0100)
committerKarolin Seeger <kseeger@samba.org>
Mon, 11 Mar 2019 12:25:05 +0000 (12:25 +0000)
commit43957ab96e7f62c83fe3e46e7467b974ea44f99b
tree3a67ff8c758655379e93641bef14a8f036f76157tree
parent4fe9eff4dd63cd7aca4caa63057e27399cc3b929commit | diff
libcli/security: fix handling of deny type ACEs in access_check_max_allowed()

Deny ACEs must always be evaluated against explicitly granted rights
from previous ACEs.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13812

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>
(cherry picked from commit 8d355dd9769e8990ce998b4c9f28977669b43616)

Autobuild-User(v4-9-test): Karolin Seeger <kseeger@samba.org>
Autobuild-Date(v4-9-test): Mon Mar 11 12:25:05 UTC 2019 on sn-devel-144
libcli/security/access_check.c diff | blob | history
selftest/knownfail.d/smb2.acls [deleted file] blob | history
Unnamed repository; edit this file 'description' to name the repository.