Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Date: Fri, 12 Apr 2002 11:21:32 -0400 From: Jason Tishler Subject: sshd/cron seteuid() problem in latest CVS To: Cygwin Mail-followup-to: Cygwin Message-id: <20020412152132.GC948@tishler.net> MIME-version: 1.0 Content-type: multipart/mixed; boundary="Boundary_(ID_QOIWTAfwyLIPAC/qgzBm8g)" User-Agent: Mutt/1.3.24i --Boundary_(ID_QOIWTAfwyLIPAC/qgzBm8g) Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Content-disposition: inline Using the latest CVS, I am getting the following Event Log error messages: o fatal: setuid 19695: Operation not permitted o (CRON) error (can't switch user context) with sshd and cron, respectively. After some debugging, I determined that the following patch is causing the problem: http://cygwin.com/ml/cygwin-cvs/2002-q1/msg00218.html The above patch needs to be reverted or reworked. See attached for an strace snippet. Note that I'm operating in a domain environment. My WAG is that this problem may not be apparent in a workgroup environment. Thanks, Jason --Boundary_(ID_QOIWTAfwyLIPAC/qgzBm8g) Content-type: text/plain; charset=us-ascii; NAME=seteuid.err Content-transfer-encoding: 7BIT Content-disposition: attachment; filename=seteuid.err 1602 25198850 [main] sshd 836 seteuid: myself->gid: 513, gr: 268637752 2300 25201150 [main] sshd 836 set_process_privilege: 0 = set_process_privilege (SeCreateTokenPrivilege, 1) 5127879 30329029 [main] sshd 836 get_user_groups: 123 = NetUserGetGroups () 979 30330008 [main] sshd 836 set_process_privilege: 1 = set_process_privilege (SeCreateTokenPrivilege, 0) 522 30330530 [main] sshd 836 create_token: -1 = create_token () 206 30330736 [main] sshd 836 seteuid: create token failed, try subauthentication. 1212 30331948 [main] sshd 836 set_process_privilege: 0 = set_process_privilege (SeTcbPrivilege, 1) 60911 30392859 [main] sshd 836 extract_nt_dom_user: pw_gecos = 1003198A (U-TISHLERJASON\Administrator,S-1-5-21-1571110079-60108220-2047483585-500) 4446 30397305 [main] sshd 836 subauth: LsaLogonUser: -1073741702 1663 30398968 [main] sshd 836 set_process_privilege: 0 = set_process_privilege (SeTcbPrivilege, 0) 1127 30400095 [main] sshd 836 internal_getlogin: GetUserName() = SYSTEM 1271 30401366 [main] sshd 836 internal_getlogin: Domain: (null), Logon Server: \\PALO-ALTO-PDC, Windows Username: SYSTEM 225771 30627137 [main] sshd 836 internal_getlogin: Cygwins Username: SYSTEM 177 30627314 [main] sshd 836 seteuid: Diffs!!! token: -1, cur: 18, new: 500, orig: 18 439 30627753 [main] sshd 836 setuid: real: 18, effective: 18 --Boundary_(ID_QOIWTAfwyLIPAC/qgzBm8g) Content-Type: text/plain; charset=us-ascii -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/ --Boundary_(ID_QOIWTAfwyLIPAC/qgzBm8g)--