git.samba.org / nivanova / samba-autobuild / .git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: f4a9d25)
Fix "force unknown ACL user" to strip out foreign SIDs from POSIX ACLs if they can...
authorJeremy Allison <jra@samba.org>
Fri, 15 Oct 2010 22:28:23 +0000 (15:28 -0700)
committerJeremy Allison <jra@samba.org>
Sat, 16 Oct 2010 00:38:22 +0000 (17:38 -0700)
source3/smbd/posix_acls.c patch | blob | history

diff --git a/source3/smbd/posix_acls.c b/source3/smbd/posix_acls.c
index fa715fb6733138e0bc98d7eb9c381864c7e3d950..05f6439957a4fff244d84d297b74292acd30c585 100644 (file)
--- a/source3/smbd/posix_acls.c
+++ b/source3/smbd/posix_acls.c
@@ -1753,6 +1753,14 @@ static bool create_canon_ace_lists(files_struct *fsp,
                                continue;
                        }
 
+                       if (lp_force_unknown_acl_user(SNUM(fsp->conn))) {
+                               DEBUG(10, ("create_canon_ace_lists: ignoring "
+                                       "unknown or foreign SID %s\n",
+                                       sid_string_dbg(&psa->trustee)));
+                               SAFE_FREE(current_ace);
+                               continue;
+                       }
+
                        free_canon_ace_list(file_ace);
                        free_canon_ace_list(dir_ace);
                        DEBUG(0, ("create_canon_ace_lists: unable to map SID "
Unnamed repository; edit this file 'description' to name the repository.