Mail Archives: cygwin/2015/11/29/09:11:11

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/2015/11/29/09:11:11

X-Recipient: archive-cygwin AT delorie DOT com

DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:mime-version:in-reply-to:references:date

:message-id:subject:from:to:content-type; q=dns; s=default; b=bd

V++3ZMC4PkRrpAly44J/0Z8gBktySZz55l9M6aLYgDtLP+ogOOoWfOcNyDBTcA97

afZgkCK8c5KLHbYmxNrwCnfo/BJL8Lq7raYou5sraBUJ7TQHzaV05N5jURT18zqD

hBDxm2x8EwgsBdMJqadA5TrAEGKp1nW0Sk5WIECfg=

DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:mime-version:in-reply-to:references:date

:message-id:subject:from:to:content-type; s=default; bh=YDdJtcBU

g/zDIs3NiJIlBLx0/JE=; b=UzdryOuYFr1eZ3qkEa5OMIx21kSlu9A7HEnCQdmu

/EZHWtpl4T7axi980MybsILVdihE+ch2DyrGuH7eIKAfqgnEdFt/kdooxFUxsYmb

qgZ6htaMd7DssjXMGu9m+qbtl8bz9ja+ABXQTUEd6MoFWNFQYcVxA42IpfuHYqVi

sWM=

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm

List-Id: <cygwin.cygwin.com>

List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>

List-Archive: <http://sourceware.org/ml/cygwin/>

List-Post: <mailto:cygwin AT cygwin DOT com>

List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>

Sender: cygwin-owner AT cygwin DOT com

Mail-Followup-To: cygwin AT cygwin DOT com

Delivered-To: mailing list cygwin AT cygwin DOT com

Authentication-Results: sourceware.org; auth=none

X-Virus-Found: No

X-Spam-SWARE-Status: No, score=0.3 required=5.0 tests=BAYES_50,FREEMAIL_ENVFROM_END_DIGIT,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=ham version=3.3.2

X-HELO: mail-wm0-f41.google.com

MIME-Version: 1.0

X-Received: by 10.194.175.194 with SMTP id cc2mr67085457wjc.121.1448806251766; Sun, 29 Nov 2015 06:10:51 -0800 (PST)

In-Reply-To: <20151129125921.GA2755@calimero.vinschen.de>

References: <announce DOT 20151121162447 DOT GF2755 AT calimero DOT vinschen DOT de> <CABPLASTKt3uKcAbeLNjVa89wrWi_LO6MnPD0Fd=T0FxJG0r5mA AT mail DOT gmail DOT com> <20151126131633 DOT GL2755 AT calimero DOT vinschen DOT de> <CABPLASTpsNA4vGtONb14dQ87UV1gY=UAeHBgEXUmgztDeny_mg AT mail DOT gmail DOT com> <CABPLASRpe+ey=dzuzkKYhu4UV=A10y9RkOzLxxA7v4o5CPtSag AT mail DOT gmail DOT com> <20151128155421 DOT GX2755 AT calimero DOT vinschen DOT de> <CABPLASSAabDkMK8ZwF0Q+a1N7enDW5SwuPu3_rnAFNdNZqfXmw AT mail DOT gmail DOT com> <1352387525 DOT 20151129021637 AT yandex DOT ru> <20151129125921 DOT GA2755 AT calimero DOT vinschen DOT de>

Date: Sun, 29 Nov 2015 15:10:51 +0100

Message-ID: <CABPLASTWGXVXf+YVx5Uwp6wqZqBmWRmkrFdoKCPR30QEV+4BVA@mail.gmail.com>

Subject: Re: [ANNOUNCEMENT] TEST RELEASE: Cygwin 2.4.0-0.4

From: Kacper Michajlow <kasper93 AT gmail DOT com>

To: cygwin AT cygwin DOT com

X-IsSubscribed: yes

--089e0141a22efce5f50525ae7da0
Content-Type: text/plain; charset=UTF-8

2015-11-29 13:59 GMT+01:00 Corinna Vinschen <corinna-cygwin AT cygwin DOT com>:
> On Nov 29 02:16, Andrey Repin wrote:
>> Greetings, Kacper Michajlow!
>>
>> >> Please also attach the output of `id' and of `getfacl . test test/test'.
>>
>> > getfacl attached. `id` output is already in cygcheck.log
>>
>> > In getfacl output this line `default:group:1001 <unknown>:r-x` looks
>>
>> Uh-oh.
>> Do you, by any chance, have /etc/passwd file?
>> Or a user comment changing relevant information?
>
> I agree with Andrey here: Uh oh!
>
> The mkdir trace contains a suspicious snippet which is the reason
> the mkdir call doesn't manage to post-process the ACL:
>
>   [...] pwdgrp::fetch_account_from_windows: LookupAccountSidW (S-1-5-32-1001), Win32 error 1332
>   [...] /[...]/security.cc:337 status 0xC0000078 -> windows error 1337
>
> Status 0xC0000078 aka Win32 error 1337 means "invalid SID".  And the
> SID 1-5-32-1001 is in fact invalid.  The S-1-5-32 prefix denotes a builtin
> account, but the RID 1001 is invalid for a builtin group.  1001 is the
> RID of your user account, though, but that would be prefixed by the SID
> of your machine, which looks like S-1-5-21-XXXXXXXX-YYYYYYYY-ZZZZZZZZ.
> I don't see how this broken SID came into life, unless your /etc/passwd
> and/or /etc/group files are broken (hand edited perhaps?).

I guess I only changed shell to zsh in /etc/passwd, but no other
changes were made. So I have no idea how they could get corrupted
either.

> You're aware that you don't need the /etc/passwd and /etc/group files
> anymore, aren't you?  https://cygwin.com/cygwin-ug-net/ntsec.html

I never really thought about it until it worked. But yeah, this might
be good time to abandon those files.

>
> For testing I'd like you to do the following:
>
> - Edit /etc/nsswitch,conf and change the "passwd:" and "group:" lines
>   to omit checking the passwd and group files:
>
>     passwd: db
>     group: db
>
> - Exit all Cygwin processes and restart a shell.
>
> - Call `id' again and attach it to your reply.  The uids and gids of
>   your account and primary group should be different now.
>
> - Remove the test dir, call `mkdir -p test/test' and call icacls on test
>   and test/test.

$ icacls test
test NULL SID:(DENY)(Rc,S)
     DOMEK\Kacper:(F)
     DOMEK\Kacper:(RX)
     Wszyscy:(RX)
     NULL SID:(OI)(CI)(IO)(DENY)(Rc,S)
     TWORCA-WLASCICIEL:(OI)(CI)(IO)(F)
     GRUPA TWORCOW:(OI)(CI)(IO)(RX)
     Wszyscy:(OI)(CI)(IO)(RX)

$ icacls test/test
test/test NULL SID:(DENY)(Rc,S)
          DOMEK\Kacper:(F)
          DOMEK\Kacper:(RX)
          Wszyscy:(RX)
          NULL SID:(OI)(CI)(IO)(DENY)(Rc,S)
          TWORCA-WLASCICIEL:(OI)(CI)(IO)(F)
          GRUPA TWORCOW:(OI)(CI)(IO)(RX)
          Wszyscy:(OI)(CI)(IO)(RX)

BTW. icacls doesn't handle UTF-8 characters well. Just saying.

> - Try chmod 755 test/test again.

Works.

> - Also, would you mind to attach your /etc/passwd, /etc/group and
>   /etc/nsswitch.conf files to your reply?

/etc/nsswitch.conf has only commented out default values. Two others
are attached. To make this clear, I never edited those files except
zsh change so if they are corrupted in any way they must have been
produced like that. Though it probably was over the year ago when I
installed cygwin on this machine.

I personally am fine with abandoning /etc/passwd and /etc/group. This
is good enough solution for me. Though there might be other people
with the same issue.

-Kacper

--089e0141a22efce5f50525ae7da0
Content-Type: application/octet-stream; name="id.log"
Content-Disposition: attachment; filename="id.log"
Content-Transfer-Encoding: base64
X-Attachment-Id: f_ihkkyr2r1
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--089e0141a22efce5f50525ae7da0
Content-Type: application/octet-stream; name=group
Content-Disposition: attachment; filename=group
Content-Transfer-Encoding: base64
X-Attachment-Id: f_ihkkz52b2

cm9vdDpTLTEtNS0zMi01NDQ6MDoKU1lTVEVNOlMtMS01LTE4OjE4OgpUcnVz
dGVkSW5zdGFsbGVyOlMtMS01LTgwLTk1NjAwODg4NS0zNDE4NTIyNjQ5LTE4
MzEwMzgwNDQtMTg1MzI5MjYzMS0yMjcxNDc4NDY0OjQyOTQ5NjcyOTQ6CkFk
bWluaXN0cmF0b3J6eTpTLTEtNS0zMi01NDQ6NTQ0OgpBZG1pbmlzdHJhdG9y
enkgZnVua2NqaSBIeXBlci1WOlMtMS01LTMyLTU3ODo1Nzg6CkN6eXRlbG5p
Y3kgZHppZW5uaWvDs3cgemRhcnplxYQ6Uy0xLTUtMzItNTczOjU3MzoKR2/F
m2NpZTpTLTEtNS0zMi01NDY6NTQ2OgpJSVNfSVVTUlM6Uy0xLTUtMzItNTY4
OjU2ODoKT3BlcmF0b3J6eSBrb25maWd1cmFjamkgc2llY2k6Uy0xLTUtMzIt
NTU2OjU1NjoKT3BlcmF0b3J6eSBrb3BpaSB6YXBhc293eWNoOlMtMS01LTMy
LTU1MTo1NTE6Ck9wZXJhdG9yenkga3J5cHRvZ3JhZmljem5pOlMtMS01LTMy
LTU2OTo1Njk6Ck9wZXJhdG9yenkgcG9tb2N5IGtvbnRyb2xpIGRvc3TEmXB1
OlMtMS01LTMyLTU3OTo1Nzk6ClJlcGxpa2F0b3I6Uy0xLTUtMzItNTUyOjU1
MjoKVcW8eXRrb3duaWN5OlMtMS01LTMyLTU0NTo1NDU6ClXFvHl0a293bmlj
eSBEQ09NOlMtMS01LTMyLTU2Mjo1NjI6ClXFvHl0a293bmljeSBkemllbm5p
a8OzdyB3eWRham5vxZtjaTpTLTEtNS0zMi01NTk6NTU5OgpVxbx5dGtvd25p
Y3kgbW9uaXRvcmEgd3lkYWpub8WbY2k6Uy0xLTUtMzItNTU4OjU1ODoKVcW8
eXRrb3duaWN5IHB1bHBpdHUgemRhbG5lZ286Uy0xLTUtMzItNTU1OjU1NToK
VcW8eXRrb3duaWN5IHphYXdhbnNvd2FuaTpTLTEtNS0zMi01NDc6NTQ3OgpV
xbx5dGtvd25pY3kgemFyesSFZHphbmlhIHpkYWxuZWdvOlMtMS01LTMyLTU4
MDo1ODA6CkhvbWVVc2VyczpTLTEtNS0yMS0xNDI3NzM0MjEwLTEwNDAwMzQy
MjEtMTE4NzEwODk3My0xMDAyOjEwMDI6CldpblJNUmVtb3RlV01JVXNlcnNf
XzpTLTEtNS0yMS0xNDI3NzM0MjEwLTEwNDAwMzQyMjEtMTE4NzEwODk3My0x
MDAwOjEwMDA6CkJyYWs6Uy0xLTUtMjEtMTQyNzczNDIxMC0xMDQwMDM0MjIx
LTExODcxMDg5NzMtNTEzOjUxMzoKS2FjcGVyOlMtMS01LTIxLTE0Mjc3MzQy
MTAtMTA0MDAzNDIyMS0xMTg3MTA4OTczLTEwMDE6MTEwMDE6Cg==

--089e0141a22efce5f50525ae7da0
Content-Type: application/octet-stream; name=passwd
Content-Disposition: attachment; filename=passwd
Content-Transfer-Encoding: base64
X-Attachment-Id: f_ihkkz9py3
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--089e0141a22efce5f50525ae7da0
Content-Type: text/plain; charset=us-ascii

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
--089e0141a22efce5f50525ae7da0--

- Raw text -

webmaster	delorie software privacy
Copyright � 2019 by DJ Delorie	Updated Jul 2019

X-Recipient:	archive-cygwin AT delorie DOT com
DomainKey-Signature:	a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:in-reply-to:references:date
	:message-id:subject:from:to:content-type; q=dns; s=default; b=bd
	V++3ZMC4PkRrpAly44J/0Z8gBktySZz55l9M6aLYgDtLP+ogOOoWfOcNyDBTcA97
	afZgkCK8c5KLHbYmxNrwCnfo/BJL8Lq7raYou5sraBUJ7TQHzaV05N5jURT18zqD
	hBDxm2x8EwgsBdMJqadA5TrAEGKp1nW0Sk5WIECfg=
DKIM-Signature:	v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:in-reply-to:references:date
	:message-id:subject:from:to:content-type; s=default; bh=YDdJtcBU
	g/zDIs3NiJIlBLx0/JE=; b=UzdryOuYFr1eZ3qkEa5OMIx21kSlu9A7HEnCQdmu
	/EZHWtpl4T7axi980MybsILVdihE+ch2DyrGuH7eIKAfqgnEdFt/kdooxFUxsYmb
	qgZ6htaMd7DssjXMGu9m+qbtl8bz9ja+ABXQTUEd6MoFWNFQYcVxA42IpfuHYqVi
	sWM=
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id:	<cygwin.cygwin.com>
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
Authentication-Results:	sourceware.org; auth=none
X-Virus-Found:	No
X-Spam-SWARE-Status:	No, score=0.3 required=5.0 tests=BAYES_50,FREEMAIL_ENVFROM_END_DIGIT,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=ham version=3.3.2
X-HELO:	mail-wm0-f41.google.com
MIME-Version:	1.0
X-Received:	by 10.194.175.194 with SMTP id cc2mr67085457wjc.121.1448806251766; Sun, 29 Nov 2015 06:10:51 -0800 (PST)
In-Reply-To:	<20151129125921.GA2755@calimero.vinschen.de>
References:	<announce DOT 20151121162447 DOT GF2755 AT calimero DOT vinschen DOT de> <CABPLASTKt3uKcAbeLNjVa89wrWi_LO6MnPD0Fd=T0FxJG0r5mA AT mail DOT gmail DOT com> <20151126131633 DOT GL2755 AT calimero DOT vinschen DOT de> <CABPLASTpsNA4vGtONb14dQ87UV1gY=UAeHBgEXUmgztDeny_mg AT mail DOT gmail DOT com> <CABPLASRpe+ey=dzuzkKYhu4UV=A10y9RkOzLxxA7v4o5CPtSag AT mail DOT gmail DOT com> <20151128155421 DOT GX2755 AT calimero DOT vinschen DOT de> <CABPLASSAabDkMK8ZwF0Q+a1N7enDW5SwuPu3_rnAFNdNZqfXmw AT mail DOT gmail DOT com> <1352387525 DOT 20151129021637 AT yandex DOT ru> <20151129125921 DOT GA2755 AT calimero DOT vinschen DOT de>
Date:	Sun, 29 Nov 2015 15:10:51 +0100
Message-ID:	<CABPLASTWGXVXf+YVx5Uwp6wqZqBmWRmkrFdoKCPR30QEV+4BVA@mail.gmail.com>
Subject:	Re: [ANNOUNCEMENT] TEST RELEASE: Cygwin 2.4.0-0.4
From:	Kacper Michajlow <kasper93 AT gmail DOT com>
To:	cygwin AT cygwin DOT com
X-IsSubscribed:	yes