Have patch, need bug number. Only affects 4.12rcX.
Note this isn't a security issue, as DFS create / delete are restricted to root (unix_token->uid == sec_initial_uid()) access only. I just think that it's better to have even root obey share restrictions under the principle of least surprises. If creating / deleting the DFS link fails, the new code gives a message telling the admin what share name was being accessed so they can decide to remove the read-only restriction if they wish.
Created attachment 15795 [details] git-am fix for 4.12.rcNext Cherry-pick from master.
Karolin, this one got missed for rc3 - sorry, I should have assigned it to you. Ralph still needs to +1 it (it's a direct cherry-pick from what went into master) but I'm hoping it can get into 4.12-final. Although it could wait until 4.12.1 as it isn't a security issue. Thanks, Jeremy.
Pushed to autobuild-v4-12-test.
(In reply to Karolin Seeger from comment #4) Pushed to v4-12-test. Closing out bug report. Thanks!