X-Recipient: archive-cygwin@delorie.com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:date:from:to:subject:message-id:reply-to :references:mime-version:content-type:in-reply-to; q=dns; s= default; b=ONx3AsjG++9RDOINru0ImEDZQHWMSBaO6biRVphBvbwyPvilj2LFP W8elUTry2DWzTerohxp7Rrf5Yd3CEDwQ7IvCuhQ5sMjJw1yANNwUJxI3aFpWuw5B kIp3JGVJvBheROEHdIMfqwO7flB+93suG6dzKf0z04aIpolDda1Tv4= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:date:from:to:subject:message-id:reply-to :references:mime-version:content-type:in-reply-to; s=default; bh=6AB/p6yRg5Q/GSCh8KLa2wmS+8Y=; b=GaFP8YBqBLJiTwHPFZLVb0RJtZwl TA2wR7gAIt8lJajk/BDUs/dyuuJhmUjuBeqW77ccWwgFToYLOX5QCrNRtY/z9vKd nPIOaEUKIASX2Z8d3hh3yZ/2S87GRn2zqwBMaVClgq8wqF9SJnrPf6nnPEEeTt1m 2u+oSMrEKjHpEEI= Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Delivered-To: mailing list cygwin@cygwin.com Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-5.9 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.3.2 X-HELO: calimero.vinschen.de Date: Mon, 9 Mar 2015 20:26:58 +0100 From: Corinna Vinschen To: cygwin@cygwin.com Subject: Re: [ANNOUNCEMENT] Updated: Cygwin 1.7.35-1 Message-ID: <20150309192658.GA30402@calimero.vinschen.de> Reply-To: cygwin@cygwin.com Mail-Followup-To: cygwin@cygwin.com References: <20150309091029.GA28200@calimero.vinschen.de> <87ioeam4q8.fsf@Rainer.invalid> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="UugvWAfsgieZRqgk" Content-Disposition: inline In-Reply-To: <87ioeam4q8.fsf@Rainer.invalid> User-Agent: Mutt/1.5.23 (2014-03-12) --UugvWAfsgieZRqgk Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mar 9 18:59, Achim Gratz wrote: > Corinna Vinschen writes: > > The problem is this. How long do you want `ls -l' take? Checking > > permissions is awkward and lengthy on Windows, unless you have the > > user's token. >=20 > The only token that's relevant for the ACL mapping w.r.t. POSIX > semantics is that of the current user and Cygwin should already have > that I think. Plus the extra work only needs to be done when the file > is owned by that user and/or the egid is identical to the group of said > file. In all other cases the normal ACL processing should actually > yield the same result as mandated by POSIX. >=20 > > The access check can be improved and the permissions more correctly > > shown for the current user, but for any file and any user account, > > it'd be a lot of time-consuming effort. >=20 > I'd say that Cygwin already does all of that, No, it doesn't. Not for any arbitrary user, only for the current user. > It already has to check who the > owner and group is, so that information is also there. I'm not sure how > much more work it is to graft the permissions. A lot. Cygwin has the owner and the primary group of the file, but that doesn't mean it can check if the user is a member of the group or, fwiw, any group in the ACL "just so". Of course it *can* check that, but that either requires to generate a user token for that user from scratch, or it requires to fetch the group memberships of the user from the Windows account DB. In the second case there's no Windows function to perform the check. And for ACLs with multiple users the access check would have to be performed for each user. Btw., if you generate the permissions under Cygwin, a file with ---rwx--- permissions will have the matching deny ACE to make the permissions the real thing. Corinna --=20 Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Maintainer cygwin AT cygwin DOT com Red Hat --UugvWAfsgieZRqgk Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBAgAGBQJU/fQCAAoJEPU2Bp2uRE+gUIgP/RGl2GFl4Oi1ZmsYPY50iVi4 kxZlu+TvQ2EQFoXyi+zawM5pwZJ4TjQ8TXCU3yn09Zg8QMYhPlHH3nzPwO5QjZg7 vD3ypneicwEFNyUSLFAQks1nYMyKQ4pPBprCjdJCLd4qUUKde4FjX2Q7GaPjpyAf QcAaAwurGE+B06hrQfllUx1C1H9+CO+dye1Qdl7zaIDTTSjtkA5i9S/nXsXSwYIU 4H4FNkw01anHDC90ckBrMH71ze0j0ARTo3IvWSaUpyqRRTXCtcfV5RqQ1rjG6FjM 6TfHqu48O6P2t4UMuDnP3LdmcCPftGtkuz16VkfKqLKd/ny9+ZvbZkbqtlru8+aV hY4R/R0HzeZW5h0iE/1cND0psCJHowPVJS0kEPeRatCwcEGmDUWprOmvDjuWlyjg kgoUSzvmkU/x5DmMB9wsZro3ZngsK5yL8yPINUDhyJpbW+zXj7Q1xVNn6hSaXKQW WZLyt1w1ZpE3jpQr7vSQmPgG7LH0idR9HKrOMgLThG+YdioIgDbNyhhrE/Si/Dhn rObnXNlwVdbAhNVl7Lu+fSZTHSHB9p0XgM/rLMDefYDF/4Y5Wr6RKA0NOkiD4/EW UpX9qXxNk8tZFkQHPF6UEwRsoe1WLy6eyrU/50r19LOBdGby3BGFY4MHcBhDB4Gl 7rDc8Q3lyhoxbpl/egbL =PCtd -----END PGP SIGNATURE----- --UugvWAfsgieZRqgk--