get_posix_access: Fix primary group handing when multiple ACEs exist
Handle additional ACE for primary group only as another GROUP entry if it's an allow ACE. Deny ACEs don't qualify. Signed-off-by: Corinna Vinschen <corinna@vinschen.de>
This commit is contained in:
parent
69f4c40291
commit
a16ab1751c
|
@ -829,10 +829,12 @@ get_posix_access (PSECURITY_DESCRIPTOR psd,
|
||||||
else if (type == GROUP_OBJ)
|
else if (type == GROUP_OBJ)
|
||||||
{
|
{
|
||||||
/* Same for the primary group. */
|
/* Same for the primary group. */
|
||||||
if (saw_group_obj)
|
|
||||||
type = GROUP;
|
|
||||||
if (ace->Header.AceType == ACCESS_ALLOWED_ACE_TYPE)
|
if (ace->Header.AceType == ACCESS_ALLOWED_ACE_TYPE)
|
||||||
saw_group_obj = true;
|
{
|
||||||
|
if (saw_group_obj)
|
||||||
|
type = GROUP;
|
||||||
|
saw_group_obj = true;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
if ((pos = searchace (lacl, MAX_ACL_ENTRIES, type, id)) >= 0)
|
if ((pos = searchace (lacl, MAX_ACL_ENTRIES, type, id)) >= 0)
|
||||||
{
|
{
|
||||||
|
|
Loading…
Reference in New Issue