X-Recipient: archive-cygwin@delorie.com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:date:from:to:subject:message-id:reply-to
	:references:mime-version:content-type:in-reply-to; q=dns; s=
	default; b=tIsMJm1cQ2pJQfxGRbaLSWRiUGYqc73gKpdKhQGkDWBXPdLw9nDYk
	2ZyZ5EmMlFpk8uvbyQcGPcIoL5SrqmaN58QPVRVDt3Krw9c26FsbtEtu/fW6zuTa
	/nTzcx589S0pt0JjDew/EwtoBKtXZyjenlsGATu3kH3YWYGuRcQlLM=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:date:from:to:subject:message-id:reply-to
	:references:mime-version:content-type:in-reply-to; s=default;
	 bh=kDuRj1gQ++DXBDuY/JbjDyVz9GE=; b=R+AesPumRdRmP3X81bq2EenBRQes
	5MwuifK2ovvOk2XXDa/eG3/Mg2sqhcLxSaua5Hka0CadPGE/yNt+xpBTRMUTSF5p
	9aFZekmh1xq85ZpnaYUGyjqujRST3YPLQCKJm0iBXif9DKUnm9LwY+F8aOhVnLe2
	RGdliKKJ26NsINU=
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Delivered-To: mailing list cygwin@cygwin.com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-5.9 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.3.2
X-HELO: calimero.vinschen.de
Date: Wed, 12 Mar 2014 09:58:43 +0100
From: Corinna Vinschen <corinna-cygwin@cygwin.com>
To: cygwin@cygwin.com
Subject: Re: Testers needed:  New passwd/group handling in Cygwin
Message-ID: <20140312085843.GC8066@calimero.vinschen.de>
Reply-To: cygwin@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
References: <87mwgxsyac.fsf@Rainer.invalid> <20140310191603.GH28681@calimero.vinschen.de> <87iorlsvvn.fsf@Rainer.invalid> <loom.20140311T081705-682@post.gmane.org> <20140311102007.GJ28681@calimero.vinschen.de> <loom.20140311T125212-440@post.gmane.org> <20140311130716.GB21306@calimero.vinschen.de> <loom.20140311T152430-775@post.gmane.org> <20140311154750.GP28681@calimero.vinschen.de> <loom.20140311T172511-742@post.gmane.org>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;	protocol="application/pgp-signature"; boundary="neYutvxvOLaeuPCA"
Content-Disposition: inline
In-Reply-To: <loom.20140311T172511-742@post.gmane.org>
User-Agent: Mutt/1.5.21 (2010-09-15)

--neYutvxvOLaeuPCA
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Mar 11 17:05, Achim Gratz wrote:
> Corinna Vinschen <corinna-cygwin <at> cygwin.com> writes:
> > > With the original passwd and group file in place and nsswitch.conf se=
t to
> > > either "files" or "files db" the test fails.  With just "files" getfa=
cl
> > > doesn't show the group ACL at all,
> >=20
> > How does it look with any non-AD integrated Cygwin?
>=20
> ... doesn't show the group ACL until I add them to the group file.  That
> part is consistent with the AD enabled snapshot.  Actually... if I create=
 a
> group file with those two groups added, the access again doesn't get
> granted.  Which finally reveals that I also need to have the administrato=
rs
> group present in that file (which mkpasswd had been doing) -- then it wor=
ks.
>  I can even leave out the two ACL groups again and it still works.
>=20
> > Hmm.  So you're saying that the groups in question are not in
> > /etc/groups, but it works with the non-AD Cygwin but not with the
> > AD-Cygwin?
>=20
> Exactly.  But as revealed above, what was really missing is the
> Administrators group.  Somehow, when "files" is in effect, that mapping
> doesn't seem to exist unless it is explicitly listed in the file.  It does
> get auto-created when I use _only_ the "db".  I hope that somehow makes s=
ense...
>=20
> > > So, Perl somehow uses the gid/uid mapping and relies on those to be w=
orking,
>=20
> No, it seems to balk on not being able to map the Administrator group (wh=
ich
> is my egid).

Eh, what?  You never mentioned that before!  So you changed your passwd
file to have group 544 as primary group?  That usually won't work well
if UAC is enabled.

That's the problem with bug reports which don't provide *details*.  If
you had provided full straces, your passwd and group files and your
nsswitch.conf settings, we may have been a lot further.  As it is now,
we're discussing your perl problem for days and days and *still* don't
really know what's going on in the code :(


Corinna

--=20
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Maintainer                 cygwin AT cygwin DOT com
Red Hat

--neYutvxvOLaeuPCA
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=Xxim
-----END PGP SIGNATURE-----

--neYutvxvOLaeuPCA--