SMB has no concept of IPv6 host access lists
In looking at an RTI of Yuri's I appear to have stumbled into a minefield.
CIFS has no concept of an IPv6 access check, and blindly calls the share open if accessed via v6, as best as I can tell (this appears to be regardless of v4 access lists, possibly containing matching host names).
I'm hoping I'm misunderstanding the code, but I'm struggling to follow it in a way that makes this anything less than "terrible"
Updated by Yuri Pankov almost 9 years ago
The problem seems to be more serious than that, enabling IPv6 support via `sharectl set -p ipv6_enable=true smb` makes host access checks for IPv4 addresses be skipped as well, as they became IPv6-mapped:
family=26 host access check ::ffff:192.168.1.107
so we just return SMB_SHRF_ACC_OPEN here: http://src.illumos.org/source/xref/illumos-gate/usr/src/lib/smbsrv/libmlsvc/common/smb_share.c#757
Need to double-check it though...