Shares with strange ACL settings
I've thought some more about those strange shares I need to use that have inherited ACL that don't let me change the ACL at all and hence prevent Cygwin from fixing up the POSIX permissions. That generally ends up with permissions like these: % ll test total 10 d---rwx---+ 1 gratz Domain Users0 Aug 10 11:51 ./ d---rwx---+ 1 Administrators Administrators 0 Aug 10 11:50 ../ rwx---+ 1 gratz Domain Users 18 Aug 10 11:51 blafasel* rwx---+ 1 gratz Domain Users 18 Aug 10 11:51 blumblum* Some applications that know how POSIX ACL are supposed to work conclude that such directories or files are not readable: % cd test % perl -E 'say -r "." ? "readable" : "not readable";' not readable % perl -E 'say -r "blafasel" ? "readable" : "not readable";' not readable Other applications not using this shortcut and going all the way to faccessat correctly determine readability: % [ -r . ] && echo readable || echo not readable readable (1056)/mnt/upload/test > [ -r blafasel ] && echo readable || echo not readable readable If I access the files from another account (that has the same group memberships that give read/write access to the share) or change the owner, then the shortcut is never invoked: $ perl -E 'say -r "." ? "readable" : "not readable";' readable $ perl -E 'say -r "blafasel" ? "readable" : "not readable";' readable $ [ -r . ] && echo readable || echo not readable readable $ [ -r blafasel ] && echo readable || echo not readable readable So, it would probably help if I had a mount option to force the ownership to some account that I am never logged in as, either via a mount option or whenever the POSIX user modes are all cleared. I don't know if that might confuse applications when they check ownership on newly created files, though. Is that something that is implementable easily so it could be tested via a snapshot? Regards, Achim. -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
[ANNOUNCEMENT] Updated: {ming/libming1/libming-devel/python-ming/perl-ming/tcl-ming/php-ming}-0.4.7-1: A library for generating Macromedia Flash files
Hi New versions of 'ming/libming1/libming-devel/python-ming/perl-ming/tcl-ming/php-ming' have been uploaded to a server near you. o Build for cygwin 2.2.0 with gcc-4.9.3 o Updated to latest upstream release o Build against perl-5.22.0 ming NEWS: == Ming 0.4.7: Restore support for giflib 4.1.x Ming 0.4.6: Add support for building against giflib 5.1.1+ (PR #47). Fix support for bison 2.6+ (Issue #38, PR #40). Fix build on GNU/Hurd (PR #39). Fix possible buffer overflow in makeswf Change php bindings license from PHP to LGPL-2.1+ (Issue #42) Fix build of python binding with libgif (rather than libungif) CYGWIN-ANNOUNCE UNSUBSCRIBE INFO If you want to unsubscribe from the cygwin-announce mailing list, please use the automated form at: http://cygwin.com/lists.html#subscribe-unsubscribe If this does not work, then look at the "List-Unsubscribe: " tag in the email header of this message. Send email to the address specified there. It will be in the format: cygwin-announce-unsubscribe-you=yourdomain.com cygwin.com If you need more information on unsubscribing, start reading here: http://sourceware.org/lists.html#unsubscribe-simple Please read *all* of the information on unsubscribing that is available starting at this URL. -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
/bin/bash: Operation not permitted
Hello I have enabled sshd feature and key authentication. Ssh users that do not have authorized_keys received the message "/bin/bash: Operation not permitted" Here is permissions : $ ls -l /bin/bash -rwxr-xr-x+ 1 Administrateurs Utilisa. du domaine 700435 3 juin 14:09 /bin/bash User running sshd service is named "sshd". user@LOCALCOMPUTER~ $ cat /etc/passwd | grep sshd LOCALCOMPUTER+sshd:*:197619:197121:U-LOCALCOMPUTER\ sshd,S-1-5-21-310385243-3694341406-529650493-1011:/home/sshd:/bin/bash user@LOCALCOMPUTER ~ $ cat /etc/group | grep 197121 LOCALCOMPUTER+None:S-1-5-21-310385243-3694341406-529650493-513:197121: Could you help me please ? Regards, Stephane -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Re: Shares with strange ACL settings
Greetings, Achim Gratz! > I've thought some more about those strange shares I need to use that have > inherited ACL that don't let me change the ACL at all and hence prevent > Cygwin from fixing up the POSIX permissions. That generally ends up with > permissions like these: > % ll test > total 10 > d---rwx---+ 1 gratz Domain Users0 Aug 10 11:51 ./ > d---rwx---+ 1 Administrators Administrators 0 Aug 10 11:50 ../ > rwx---+ 1 gratz Domain Users 18 Aug 10 11:51 blafasel* > rwx---+ 1 gratz Domain Users 18 Aug 10 11:51 blumblum* > Some applications that know how POSIX ACL are supposed to work conclude that > such directories or files are not readable: > % cd test > % perl -E 'say -r "." ? "readable" : "not readable";' Perl is known to have "special" treatment of file permissions. This issue has been raised in the list before. > not readable > % perl -E 'say -r "blafasel" ? "readable" : "not readable";' > not readable > Other applications not using this shortcut and going all the way to > faccessat correctly determine readability: > % [ -r . ] && echo readable || echo not readable > readable > (1056)/mnt/upload/test > [ -r blafasel ] && echo readable || echo not readable > readable > If I access the files from another account (that has the same group > memberships that give read/write access to the share) or change the owner, > then the shortcut is never invoked: > $ perl -E 'say -r "." ? "readable" : "not readable";' > readable > $ perl -E 'say -r "blafasel" ? "readable" : "not readable";' > readable > $ [ -r . ] && echo readable || echo not readable > readable > $ [ -r blafasel ] && echo readable || echo not readable > readable > So, it would probably help if I had a mount option to force the ownership to > some account that I am never logged in as, either via a mount option or > whenever the POSIX user modes are all cleared. I don't know if that might > confuse applications when they check ownership on newly created files, > though. Is that something that is implementable easily so it could be > tested via a snapshot? -- With best regards, Andrey Repin Tuesday, August 11, 2015 20:04:58 Sorry for my terrible english... -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Re: Shares with strange ACL settings
Andrey Repin writes: > Perl is known to have "special" treatment of file permissions. It's perfectly valid to do this from a POSIX perspective and Perl is not the only program to do this (but it's easier to show the result with Perl). As far as POSIX is concerned, the mode bits that Cygwin presents are wrong given the actual access rights of the underlying Windows DACL. > This issue has been raised in the list before. By me, so yes I know. What's your point? Regards, Achim. -- +<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+ Samples for the Waldorf Blofeld: http://Synth.Stromeko.net/Downloads.html#BlofeldSamplesExtra -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Re: Somebody having access to a Windows machine with > 64 CPUs?
On 08/10/2015 12:05 PM, Achim Gratz wrote: Corinna Vinschen writes: I was referring to Windows 7 because that's the first OS (including it's 2008R2 server version) which supports more than 64 CPUs and the OS calls required to use and fetch info on them, GetLogicalProcessorInformationEx. I think the only practical use of this possibility might have been in the HPC space. I don't know anybody running such a system, though. In-memory databases also benefit from really large systems. Lots of RAM requires lots of sockets, which bring along lots of cores. Eg. http://www.sgi.com/company_info/newsroom/press_releases/2015/july/sap_hana.html I believe KVM will let you define a VM with > 64 CPUs, and recent versions provide some control over the NUMA layout of the virtual sockets/cores/threads. Maybe that will give you what you're looking for, Corinna. -- Brian J. Johnson My statements are my own, are not authorized by SGI, and do not necessarily represent SGI’s positions. -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
2.2.0: Python 2.7.10 subprocess.Popen + Thread causes SIGSEGV (Win 2012R2 - WOW64 on AMD64)
Hi,
First time mailing this list, so hopefully I followed the guidelines correctly.
I was able to simplify the problem I am having into a simple test.
I create a thread and in that thread use Popen to execute 'echo hello' but the
process ends up getting terminated with -11 most of the time and I end up with
no stdout or stderr. When it does work as expected, I get 'hello' on stdout.
This looks to only happen on Win 2012, I have tried 2008 and it did not
encounter the same problem. I also tested on Ubuntu 12.04 Python 2.7.
I tried rebaseall a few times but did not seem to help. I also looked at the
installed apps, but there is barely anything on the system.
Please find attached the cygcheck output and testcase below with output.
Thanks for any help,
Gump
---
import subprocess
import shlex
from threading import Thread
def execute():
cmd = 'echo hello'
def exc():
for x in range(10):
p = subprocess.Popen(shlex.split(cmd),
stdout=subprocess.PIPE)
print p.communicate()
print p.poll()
t = Thread(target=exc)
t.start()
t.join()
if __name__ == '__main__':
execute()
OUTPUT:
('hello\n', None)
0
('hello\n', None)
0
('hello\n', None)
0
('', None)
-11
('', None)
-11
('', None)
-11
cygcheck.out
Description: cygcheck.out
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
RE: 2.2.0: Python 2.7.10 subprocess.Popen + Thread causes SIGSEGV (Win 2012R2 - WOW64 on AMD64)
Forgot to say that I was running Cygwin 32bit, not 64bit. 64bit doesn't seem to have the same problem. -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
[ANNOUNCEMENT] Updated: pcre-8.37-2
The following packages have been updated for the Cygwin distribution: * pcre-8.37-2 * libpcre1-8.37-2 * libpcre16_0-8.37-2 * libpcre32_0-8.37-2 * libpcrecpp0-8.37-2 * libpcreposix0-8.37-2 * libpcre-devel-8.37-2 The PCRE library implements regular expression pattern matching using the same syntax and semantics as Perl. This release includes upstream patches for several buffer overflows: https://bugs.exim.org/show_bug.cgi?id=1636 https://bugs.exim.org/show_bug.cgi?id=1651 https://bugs.exim.org/show_bug.cgi?id=1667 -- Yaakov -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
[ANNOUNCEMENT] Updated: php-5.6.12-1
The following packages have been updated in the Cygwin distribution: * php-5.6.12-1 * httpd-mod_php5-5.6.12-1 * php-bcmath-5.6.12-1 * php-bz2-5.6.12-1 * php-calendar-5.6.12-1 * php-ctype-5.6.12-1 * php-curl-5.6.12-1 * php-dba-5.6.12-1 * php-devel-5.6.12-1 * php-enchant-5.6.12-1 * php-exif-5.6.12-1 * php-fileinfo-5.6.12-1 * php-ftp-5.6.12-1 * php-gd-5.6.12-1 * php-gettext-5.6.12-1 * php-gmp-5.6.12-1 * php-iconv-5.6.12-1 * php-imap-5.6.12-1 * php-intl-5.6.12-1 * php-ldap-5.6.12-1 * php-mbstring-5.6.12-1 * php-mcrypt-5.6.12-1 * php-mssql-5.6.12-1 * php-mysql-5.6.12-1 * php-mysqli-5.6.12-1 * php-odbc-5.6.12-1 * php-opcache-5.6.12-1 * php-pdo_dblib-5.6.12-1 * php-pdo_mysql-5.6.12-1 * php-pdo_odbc-5.6.12-1 * php-pdo_sqlite-5.6.12-1 * php-pgsql-5.6.12-1 * php-phar-5.6.12-1 * php-posix-5.6.12-1 * php-pspell-5.6.12-1 * php-recode-5.6.12-1 * php-shmop-5.6.12-1 * php-simplexml-5.6.12-1 * php-soap-5.6.12-1 * php-sockets-5.6.12-1 * php-sqlite3-5.6.12-1 * php-sybase_ct-5.6.12-1 * php-sysvmsg-5.6.12-1 * php-sysvsem-5.6.12-1 * php-sysvshm-5.6.12-1 * php-tidy-5.6.12-1 * php-tokenizer-5.6.12-1 * php-wddx-5.6.12-1 * php-xmlreader-5.6.12-1 * php-xmlrpc-5.6.12-1 * php-xmlwriter-5.6.12-1 * php-xsl-5.6.12-1 * php-zip-5.6.12-1 * php-zlib-5.6.12-1 PHP (recursive acronym for 'PHP: Hypertext Preprocessor') is a widely-used Open Source general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. This is an update to the latest upstream stable release: http://php.net/ChangeLog-5.php#5.6.12 -- Yaakov -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Re: X: Authorization required, but no authorization protocol specified
At 2015-08-07 11:26, Jon TURNEY was heard to say: On 06/08/2015 17:56, Markus Hoenicka wrote: I've upgraded my setup yesterday and ran into a problem running the X server. X ran just fine before the upgrade, just like any X client I threw at it. I'm aware that some defaults have changed in the couple of months since I upgraded, and I hope I've done everything the FAQ recommends to accommodate these changes. However, no joy. Starting the X server now is noticeably slower, regardless of how I start it (Windows start menu, startx, or my hitherto preferred method startxwin). Biggest problem though is that local X clients cannot connect. The server output is like this: $ startxwin /usr/bin/xterm xauth: file /home/markus.hoenicka/.Xauthority does not exist xauth: file /home/markus.hoenicka/.Xauthority does not exist xauth: file /home/markus.hoenicka/.Xauthority does not exist xauth: file /home/markus.hoenicka/.Xauthority does not exist startxwin is just a shell script (based on the standard startx), which invokes xauth to add an authorization cookie to ~/Xauthority (which is also passed to the server using the -auth option) The file ~/.Xauthority is created during startup, and it is empty after the server shuts down. It does not make any difference if I remove the empty file before restarting the X server. It should have some (binary) content while the server is running, but that seems to be failing to happen, for some reason. As a workaround I can start XWin manually like this: /usr/bin/XWin :0 -multiwindow This works, of course, because this doesn't use -auth. However, I suppose the default behaviour of startx and startxwin was not intended to perform like this. Did I miss something obvious? Indeed. Is there anything unusual about your home directory? You might try modifying startxwin to remove the -q from xauth -q to see if that reveals a bit more information. I finally got round to run this suggested test too. The first time I try to start X I get the following output: $ XAUTHORITY="" startxwin /usr/bin/emacs Using authority file /home//.serverauth.1076 Writing authority file /home//.serverauth.1076 Using authority file /home//.Xauthority Writing authority file /home//.Xauthority xauth: file /home//.Xauthority does not exist xauth: file /home//.Xauthority does not exist Using authority file /home//.Xauthority Writing authority file /home//.Xauthority Welcome to the XWin X Server Vendor: The Cygwin/X Project Release: 1.17.2.0 OS: CYGWIN_NT-6.1 SBHC123 2.2.0(0.289/5/3) 2015-08-03 12:51 x86_64 OS: Windows 7 Service Pack 1 [Windows NT 6.1 build 7601] (Win64) Package: version 1.17.2-1 built 2015-07-09 XWin was started with the following command line: /usr/bin/XWin :0 -multiwindow -auth /home//.serverauth.1076 [...nothing interesting here...] cat: /home//.serverauth.1076: No such file or directory winProcEstablishConnection - winInitClipboard returned. winClipboardThreadProc - DISPLAY=:0.0 OS maintains clipboard viewer chain: yes winInitMultiWindowWM - XOpenDisplay () returned and successfully opened the display. winMultiWindowXMsgProc - XOpenDisplay () returned and successfully opened the display. winClipboardProc - XOpenDisplay () returned and successfully opened the display. winMultiWindowXMsgProcErrorHandler - ERROR: BadMatch (invalid parameter attributes) ** (emacs:2996): WARNING **: Error retrieving accessibility bus address: org.freedesktop.DBus.Error.Spawn.ChildExited: Process org.a11y.Bus exited with status 1 Authorization required, but no authorization protocol specified Unable to init server: Could not connect: Abstract UNIX domain socket addresses not supported on this system (emacs:2996): Gtk-WARNING **: cannot open display: :0 xinit: connection to X server lost [...normal shutdown sequence...] Emacs does not manage to open an X window during this process. I tried to spot .server* in a second MinTTY console during startup, but no such file would show up although xauth claims to have written the .serverauth. file. Now if I run exactly the same startxwin command a second time, Emacs *does* start up in an X window, although the startxwin output also claims this: cat: /home//.serverauth.2212: No such file or directory This time, the second MinTTY console confirms the presence of that file: $ ls -al .server* -rw-rwx---+ 1 52 Aug 12 08:03 .serverauth.2212 Could this be a timing issue while writing to a network drive? Remember that we use roaming profiles here. In any case, starting additional X applications still does not work, even in the presence of that .serverauth. file. Trying to start another xterm from the X systray menu results in: executing 'xterm', pid 1316 (pid 1316 stderr) Authorization required, but no authorization protocol specified (pid 1316 stderr) xterm: Xt error: Can't open display: :0.0 So, for some reason, the existence of both .Xauthority and .serverauth. in my $HOME is still not sufficient to st
