[ANNOUNCEMENT] TEST RELEASE: Cygwin 2.0.0-2

[ANNOUNCEMENT] TEST RELEASE: Cygwin 2.0.0-2

[Corinna Vinschen]

Hi Cygwin friends and users,


New 2.0.0-0.2 test release.  It just fixes a chmod permission mask typo
as described in https://cygwin.com/ml/cygwin/2015-04/msg00206.html
and https://cygwin.com/ml/cygwin/2015-04/msg00210.html

Other than that...

The important change in this release is the POSIX permission handling
change, a rewrite of the underlying routines reading and creating
Windows ACLs following POSIX permission rules and POSIX ACL creating
rules per POSIX 1003.1e draft 17, as on Linux.

For a description of POSIX ACLs, see http://linux.die.net/man/5/acl


All changes in this release so far:
===================================

- New, unified implementation of POSIX permission and ACL handling.  The
  new ACLs now store the POSIX ACL MASK/CLASS_OBJ permission mask, and
  they allow to inherit the S_ISGID bit.  ACL inheritance now really
  works as desired, in a limited, but theoretically equivalent fashion
  even for non-Cygwin processes.

  To accommodate Windows default ACLs, the new code ignores SYSTEM and
  Administrators group permissions when computing the MASK/CLASS_OBJ
  permission mask on old ACLs, and it doesn't deny access to SYSTEM and
  Administrators group based on the value of MASK/CLASS_OBJ when
  creating the new ACLs.
  
  The new code now handles the S_ISGID bit on directories as on Linux:
  Setting S_ISGID on a directory causes new files and subdirs created
  within to inherit its group, rather than the primary group of the user
  who created the file.  This only works for files and directories
  created by Cygwin processes.
  
- basename(3) now comes in two flavors, POSIX and GNU.  The POSIX version is
  the default.  You get the GNU version after
  
    #define _GNU_SOURCE
    #include <string.h> 

- The maximum number of PTYs has been raised from 64 to 128.


Bug Fixes
---------
  
- Fix potential hang in pseudo ttys when generating ECHO output while the slave
  is flooding the pty with output.
  Addresses: https://cygwin.com/ml/cygwin/2015-03/msg00019.html
  
- Fix potential premature SIGHUP in pty code.
  Addresses: https://cygwin.com/ml/cygwin/2015-03/msg00070.html
  
- Fix a name change from symlink to target name in calls to execvp, system, etc.
  Addresses: https://cygwin.com/ml/cygwin/2015-03/msg00270.html
      
- Fix internal error in pty -ONLCR handling.  Fix timing bug in pty OPOST 
  handling.
  Addresses: https://cygwin.com/ml/cygwin/2015-02/msg00929.html

  NOTE: This change introduces a not yet addressed regression.
  Native Windows tools generating output with Unix LF instead of
  Windows CRLF line endings will not get OPOST handling.  This
  prominently affects icacls.

- Avoid creating passwd and group records from fully qualified Windows
  account names (domain\name, name@domain).
  Addresses: https://cygwin.com/ml/cygwin/2015-03/msg00528.html

- Avoid potential crash at startup or in getgroups(2).
  Addresses: https://cygwin.com/ml/cygwin/2015-04/msg00010.html

- Fix UTF-16 surrogate handling in wctomb and friends.
  Addresses: https://cygwin.com/ml/cygwin/2015-03/msg00452.html


To install 32-bit Cygwin use https://cygwin.com/setup-x86.exe
To install 64 bit Cygwin use https://cygwin.com/setup-x86_64.exe

If you're already running a 32 bit version of Cygwin on 64 bit Windows
machines, you can continue to do so.  If you're planning a new install
of Cygwin on a 64 bit Windows machine, consider to use the new 64 bit
Cygwin version, unless you need certain packages not yet available in
the 64 bit release.


Have fun,
Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Maintainer                 cygwin AT cygwin DOT com
Red Hat

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

Re: [ANNOUNCEMENT] TEST RELEASE: Cygwin 2.0.0-2

[Achim Gratz]

THere seems to be a bug that causes sshd to be unable to change the new
PTY to mode "0600" (I'm using privilege separation).

~ (2001) ll /dev/pty0 ; getfacl /dev /dev/pty0
crw--w---- 1 ASSI Kein 136, 0 12. Apr 15:26 /dev/pty0
# file: /dev
# owner: ASSI
# group: Kein
user::rwx
group::---
group:SYSTEM:rwx
group:Administratoren:rwx
mask:rwx
other:---
default:user::rwx
default:user:ASSI:rwx
default:group::---
default:group:SYSTEM:rwx
default:group:Administratoren:rwx
default:mask:rwx
default:other:---

# file: /dev/pty0
# owner: ASSI
# group: Kein
user::rw-
group::rw-
other:rw-

Reverting to the 1.7.35-1 DLL gets sshd working correctly again.
Looking at the above I've questions about the permissions: on Linux the
PTY would be writable by the tty group, but having it writable by "None"
is surely a mistake an getfacl doesn't seem to report anything sensible
on PTY.


Regards,
Achim.
-- 
+<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+

Factory and User Sound Singles for Waldorf Q+, Q and microQ:
http://Synth.Stromeko.net/Downloads.html#WaldorfSounds

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

Re: [ANNOUNCEMENT] TEST RELEASE: Cygwin 2.0.0-2

[Corinna Vinschen]

[-- Attachment #1: Type: text/plain, Size: 1224 bytes --]

On Apr 12 15:31, Achim Gratz wrote:
> 
> THere seems to be a bug that causes sshd to be unable to change the new
> PTY to mode "0600" (I'm using privilege separation).
> 
> ~ (2001) ll /dev/pty0 ; getfacl /dev /dev/pty0
> crw--w---- 1 ASSI Kein 136, 0 12. Apr 15:26 /dev/pty0

Hmm, works on the command line...

  $ ll /dev/pty0
  crw--w---- 1 corinna vinschen 136, 0 Apr 12 16:28 /dev/pty0
  $ chmod 600 !$
  chmod 600 /dev/pty0
  $ ll /dev/pty0
  crw------- 1 corinna vinschen 136, 0 Apr 12 16:28 /dev/pty0

...but I can easily reproduce it from sshd.  I'll have a look this week.

> # file: /dev/pty0
> # owner: ASSI
> # group: Kein
> user::rw-
> group::rw-
> other:rw-
> 
> Reverting to the 1.7.35-1 DLL gets sshd working correctly again.
> Looking at the above I've questions about the permissions: on Linux the
> PTY would be writable by the tty group, but having it writable by "None"
> is surely a mistake an getfacl doesn't seem to report anything sensible
> on PTY.

The acl(2) function is not implemented for ptys.  


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Maintainer                 cygwin AT cygwin DOT com
Red Hat

[-- Attachment #2: Type: application/pgp-signature, Size: 819 bytes --]

Re: [ANNOUNCEMENT] TEST RELEASE: Cygwin 2.0.0-2

[Corinna Vinschen]

[-- Attachment #1: Type: text/plain, Size: 951 bytes --]

On Apr 12 16:53, Corinna Vinschen wrote:
> On Apr 12 15:31, Achim Gratz wrote:
> > 
> > THere seems to be a bug that causes sshd to be unable to change the new
> > PTY to mode "0600" (I'm using privilege separation).
> > 
> > ~ (2001) ll /dev/pty0 ; getfacl /dev /dev/pty0
> > crw--w---- 1 ASSI Kein 136, 0 12. Apr 15:26 /dev/pty0
> 
> Hmm, works on the command line...
> 
>   $ ll /dev/pty0
>   crw--w---- 1 corinna vinschen 136, 0 Apr 12 16:28 /dev/pty0
>   $ chmod 600 !$
>   chmod 600 /dev/pty0
>   $ ll /dev/pty0
>   crw------- 1 corinna vinschen 136, 0 Apr 12 16:28 /dev/pty0
> 
> ...but I can easily reproduce it from sshd.  I'll have a look this week.

I think I fixed it.  Please try the latest developer snapshot or
wait for 2.0.0-0.3.  I'm just building.


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Maintainer                 cygwin AT cygwin DOT com
Red Hat

[-- Attachment #2: Type: application/pgp-signature, Size: 819 bytes --]

Re: [ANNOUNCEMENT] TEST RELEASE: Cygwin 2.0.0-2

[Achim Gratz]

Corinna Vinschen writes:
> I think I fixed it.  Please try the latest developer snapshot or
> wait for 2.0.0-0.3.  I'm just building.

Fix confirmed (both architectures).


Regards,
Achim.
-- 
+<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+

Wavetables for the Terratec KOMPLEXER:
http://Synth.Stromeko.net/Downloads.html#KomplexerWaves

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

Re: [ANNOUNCEMENT] TEST RELEASE: Cygwin 2.0.0-2

[Corinna Vinschen]

[-- Attachment #1: Type: text/plain, Size: 397 bytes --]

On Apr 13 21:51, Achim Gratz wrote:
> Corinna Vinschen writes:
> > I think I fixed it.  Please try the latest developer snapshot or
> > wait for 2.0.0-0.3.  I'm just building.
> 
> Fix confirmed (both architectures).

Thanks!


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Maintainer                 cygwin AT cygwin DOT com
Red Hat

[-- Attachment #2: Type: application/pgp-signature, Size: 819 bytes --]