This is the mail archive of the
cygwin
mailing list for the Cygwin project.
Re: Testers needed: New passwd/group handling in Cygwin
- From: Achim Gratz <Stromeko at NexGo dot DE>
- To: cygwin at cygwin dot com
- Date: Tue, 11 Mar 2014 17:05:47 +0000 (UTC)
- Subject: Re: Testers needed: New passwd/group handling in Cygwin
- Authentication-results: sourceware.org; auth=none
- References: <loom dot 20140310T181432-804 at post dot gmane dot org> <20140310181339 dot GF28681 at calimero dot vinschen dot de> <87mwgxsyac dot fsf at Rainer dot invalid> <20140310191603 dot GH28681 at calimero dot vinschen dot de> <87iorlsvvn dot fsf at Rainer dot invalid> <loom dot 20140311T081705-682 at post dot gmane dot org> <20140311102007 dot GJ28681 at calimero dot vinschen dot de> <loom dot 20140311T125212-440 at post dot gmane dot org> <20140311130716 dot GB21306 at calimero dot vinschen dot de> <loom dot 20140311T152430-775 at post dot gmane dot org> <20140311154750 dot GP28681 at calimero dot vinschen dot de>
Corinna Vinschen <corinna-cygwin <at> cygwin.com> writes:
> > With the original passwd and group file in place and nsswitch.conf set to
> > either "files" or "files db" the test fails. With just "files" getfacl
> > doesn't show the group ACL at all,
>
> How does it look with any non-AD integrated Cygwin?
... doesn't show the group ACL until I add them to the group file. That
part is consistent with the AD enabled snapshot. Actually... if I create a
group file with those two groups added, the access again doesn't get
granted. Which finally reveals that I also need to have the administrators
group present in that file (which mkpasswd had been doing) -- then it works.
I can even leave out the two ACL groups again and it still works.
> Hmm. So you're saying that the groups in question are not in
> /etc/groups, but it works with the non-AD Cygwin but not with the
> AD-Cygwin?
Exactly. But as revealed above, what was really missing is the
Administrators group. Somehow, when "files" is in effect, that mapping
doesn't seem to exist unless it is explicitly listed in the file. It does
get auto-created when I use _only_ the "db". I hope that somehow makes sense...
> > So, Perl somehow uses the gid/uid mapping and relies on those to be working,
No, it seems to balk on not being able to map the Administrator group (which
is my egid).
Regards,
Achim.
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple