Have patch, need bug number. Only affects 4.12rcX.
Note this isn't a security issue, as DFS create / delete are restricted to root (unix_token->uid == sec_initial_uid()) access only.
I just think that it's better to have even root obey share restrictions under the principle of least surprises. If creating / deleting the DFS link fails, the new code gives a message telling the admin what share name was being accessed so they can decide to remove the read-only restriction if they wish.
Created attachment 15795 [details]
git-am fix for 4.12.rcNext
Cherry-pick from master.
Karolin, this one got missed for rc3 - sorry, I should have assigned it to you.
Ralph still needs to +1 it (it's a direct cherry-pick from what went into master) but I'm hoping it can get into 4.12-final.
Although it could wait until 4.12.1 as it isn't a security issue.
Pushed to autobuild-v4-12-test.
(In reply to Karolin Seeger from comment #4)
Pushed to v4-12-test.
Closing out bug report.