r1314: Restore the 2.2 'force unknown acl user' parameter. When getting a security

	BOOL bUseClientDriver;

	BOOL bDefaultDevmode;

	BOOL bNTAclSupport;

	BOOL bForceUnknownAclUser;

	BOOL bUseSendfile;

	BOOL bProfileAcls;

	BOOL bMap_acl_inherit;

	False,			/* bUseClientDriver */

	False,			/* bDefaultDevmode */

	True,			/* bNTAclSupport */

	False,                  /* bForceUnknownAclUser */

	True,			/* bUseSendfile */

	False,			/* bProfileAcls */

	False,			/* bMap_acl_inherit */

	{"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE}, 

	{"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE}, 

	{"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE}, 

	{"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},

	{"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE}, 

	{"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE}, 

	{"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE}, 

FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)

FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)

FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)

FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)

FN_LOCAL_BOOL(lp_ea_support, bEASupport)

FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)

FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)

 Unpack a SEC_DESC into a UNIX owner and group.

****************************************************************************/

static BOOL unpack_nt_owners(SMB_STRUCT_STAT *psbuf, uid_t *puser, gid_t *pgrp, uint32 security_info_sent, SEC_DESC *psd)

static BOOL unpack_nt_owners(int snum, SMB_STRUCT_STAT *psbuf, uid_t *puser, gid_t *pgrp, uint32 security_info_sent, SEC_DESC *psd)

{

	DOM_SID owner_sid;

	DOM_SID grp_sid;

	if (security_info_sent & OWNER_SECURITY_INFORMATION) {

		sid_copy(&owner_sid, psd->owner_sid);

		if (!NT_STATUS_IS_OK(sid_to_uid(&owner_sid, puser))) {

#if ACL_FORCE_UNMAPPABLE

			/* this allows take ownership to work reasonably */

			if (lp_force_unknown_acl_user(snum)) {

				/* this allows take ownership to work

				 * reasonably */

				extern struct current_user current_user;

				*puser = current_user.uid;

#else

			DEBUG(3,("unpack_nt_owners: unable to validate owner sid for %s\n",

			} else {

				DEBUG(3,("unpack_nt_owners: unable to validate"

					 " owner sid for %s\n",

					 sid_string_static(&owner_sid)));

				return False;

#endif

			}

		}

 	}

	if (security_info_sent & GROUP_SECURITY_INFORMATION) {

		sid_copy(&grp_sid, psd->grp_sid);

		if (!NT_STATUS_IS_OK(sid_to_gid( &grp_sid, pgrp))) {

#if ACL_FORCE_UNMAPPABLE

			/* this allows take group ownership to work reasonably */

			if (lp_force_unknown_acl_user(snum)) {

				/* this allows take group ownership to work

				 * reasonably */

				extern struct current_user current_user;

				*pgrp = current_user.gid;

#else

			DEBUG(3,("unpack_nt_owners: unable to validate group sid.\n"));

			} else {

				DEBUG(3,("unpack_nt_owners: unable to validate"

					 " group sid.\n"));

				return False;

#endif

			}

		}

	}

	 * Unpack the user/group/world id's.

	 */

	if (!unpack_nt_owners( &sbuf, &user, &grp, security_info_sent, psd))

	if (!unpack_nt_owners( SNUM(conn), &sbuf, &user, &grp, security_info_sent, psd))

		return False;

	/*