summaryrefslogtreecommitdiff
path: root/source3/lib
diff options
context:
space:
mode:
authorJeremy Allison <jra@samba.org>2008-11-03 22:42:53 -0800
committerJeremy Allison <jra@samba.org>2008-11-03 22:42:53 -0800
commit4f8fac1b8e1d185f732c32f20e3b7060e3835435 (patch)
tree3c44cae7836d9cf7819f25ab62118055d2e8ad80 /source3/lib
parent31158c02568c28507a8a405328c457d144ac6829 (diff)
downloadsamba-4f8fac1b8e1d185f732c32f20e3b7060e3835435.tar.gz
samba-4f8fac1b8e1d185f732c32f20e3b7060e3835435.tar.bz2
samba-4f8fac1b8e1d185f732c32f20e3b7060e3835435.zip
Pass all the non-inherited S4 RAW-ACL tests.
Jeremy.
Diffstat (limited to 'source3/lib')
-rw-r--r--source3/lib/util_seaccess.c7
1 files changed, 7 insertions, 0 deletions
diff --git a/source3/lib/util_seaccess.c b/source3/lib/util_seaccess.c
index d7fdc9a8b9..fdc10f20ab 100644
--- a/source3/lib/util_seaccess.c
+++ b/source3/lib/util_seaccess.c
@@ -164,10 +164,17 @@ NTSTATUS se_access_check(const struct security_descriptor *sd,
/* handle the maximum allowed flag */
if (access_desired & SEC_FLAG_MAXIMUM_ALLOWED) {
+ uint32_t orig_access_desired = access_desired;
+
access_desired |= access_check_max_allowed(sd, token);
access_desired &= ~SEC_FLAG_MAXIMUM_ALLOWED;
*access_granted = access_desired;
bits_remaining = access_desired & ~SEC_STD_DELETE;
+
+ DEBUG(10,("se_access_check: MAX desired = 0x%x, granted = 0x%x, remaining = 0x%x\n",
+ orig_access_desired,
+ *access_granted,
+ bits_remaining));
}
#if 0