s3: smbd: We also need to open a real directory fd when modifying security.

Makes the logic identical to file open.

Signed-off-by: Jeremy Allison <jra@samba.org>
Reviewed-by: Volker Lendecke <vl@samba.org>

diff --git a/source3/smbd/open.c b/source3/smbd/open.c
index ba13255245c7eba10b248af345b391213be75fe0..095d8c2427d99af659ae682794cad092fb702ce1 100644 (file)
--- a/source3/smbd/open.c
+++ b/source3/smbd/open.c
@@ -4242,7 +4242,10 @@ static NTSTATUS open_directory(connection_struct *conn,
                           FILE_ADD_SUBDIRECTORY|
                           FILE_TRAVERSE|
                           DELETE_ACCESS|
-                          FILE_DELETE_CHILD)) {
+                          FILE_DELETE_CHILD|
+                          WRITE_DAC_ACCESS|
+                          WRITE_OWNER_ACCESS|
+                          READ_CONTROL_ACCESS)) {
 #ifdef O_DIRECTORY
                status = fd_open(conn, fsp, O_RDONLY|O_DIRECTORY, 0);
 #else