From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 44799 invoked by alias); 14 Aug 2015 13:45:57 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 44788 invoked by uid 89); 14 Aug 2015 13:45:56 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-4.7 required=5.0 tests=AWL,BAYES_05,KAM_LAZY_DOMAIN_SECURITY autolearn=no version=3.3.2 X-HELO: calimero.vinschen.de Received: from aquarius.hirmke.de (HELO calimero.vinschen.de) (217.91.18.234) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Fri, 14 Aug 2015 13:45:55 +0000 Received: by calimero.vinschen.de (Postfix, from userid 500) id D9FA6A808BB; Fri, 14 Aug 2015 15:45:52 +0200 (CEST) Date: Fri, 14 Aug 2015 13:45:00 -0000 From: Corinna Vinschen To: cygwin@cygwin.com Subject: Re: Shares with strange ACL settings Message-ID: <20150814134552.GG28349@calimero.vinschen.de> Reply-To: cygwin@cygwin.com Mail-Followup-To: cygwin@cygwin.com References: <20150812152601.GL13029@calimero.vinschen.de> <20150812155817.GN13029@calimero.vinschen.de> <878u9g9y6b.fsf@Rainer.invalid> <20150812183220.GO13029@calimero.vinschen.de> <87vbck8h92.fsf@Rainer.invalid> <20150813163302.GB28349@calimero.vinschen.de> <20150813175302.GD28349@calimero.vinschen.de> <20150814082959.GE28349@calimero.vinschen.de> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="WlEyl6ow+jlIgNUh" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.23 (2014-03-12) X-SW-Source: 2015-08/txt/msg00209.txt.bz2 --WlEyl6ow+jlIgNUh Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Content-length: 2019 Marco, please see below in terms of L3 cache info. Thanks, On Aug 14 10:56, Achim Gratz wrote: > Corinna Vinschen cygwin.com> writes: > > I checked in the change we were talking about. Please give the latest > > snapshot from https://cygwin.com/snapshots/ a try. >=20 > I've had a quick look and things look good. I'll have to roll out the > snapshot to our server and revert the script changes, but it seems like t= his > should solve the problems I've had (and that forced noacl mounts in most > cases -- I've kept additional mounts without noacl for testing purposes t= hat > will now come in handy). Cool, thanks for your quick feedback. We should just be aware that this is ultimately a kludge. I think I now finally understand what would have to be done to get a generic solution which results in correct POSIX permission evaluation for any current user and any file ACL. However, from some preliminary testing it seems the generic solution has at least two downsides: - It's slow (AuthZ code, setting up and breaking down user/group contexts for each checked file...) - It would always contact the AD when trying to fetch info for AD users, which is bad for remote machines not or slowly connected to the AD server. Anyway, this isn't pressing so it would be nice if you keep on testing. I'm planning to update to 2.2.1 only after a certain pipe problem just discussed on the #cygwin IRC channel is either fixed or settled any other way,=20 Btw., can you please also check /proc/cpuinfo? As discussed, Cygwin's emulation fell short on L3 cache info. I now added code to fetch L3 cache info as well as correct processor topology information on Intel CPUs. For AMD CPUs the topology and cache info was already fine. Linux does not show L3 cache info for AMD CPUs afaics, so I also didn't add that to Cygwin. Thanks, Corinna --=20 Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Maintainer cygwin AT cygwin DOT com Red Hat --WlEyl6ow+jlIgNUh Content-Type: application/pgp-signature Content-length: 819 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJVzfEQAAoJEPU2Bp2uRE+gn2EP/393LOv3WNujZJ9CU8THQpvQ aK7rHH/dehql0tngV28heAM8bUYbWC12WwgjhZFI8XARS832YM32iMm9hGLvG/fO 1mW6wnAmuniYFxxW0ZDwC95mjL4QuG4ZR6BGnFAl23/lvlNajflW7ug7NoQxoHWF FxzJ7PPGRiMgDxbWfq38xywiQscOYPKppF+xPeKtnBd7AY6WWQLEnhf+LJ8WEtcH fuqWnY0nAGguIOATua2YZ0BDJjLHHmZT0qA6fiVLvhY/uGSHUXXoKNxQtfa220pH GL/tPvXYkCjKCoaB6lTEJhO1wbucOxgQZJpRsrMiL7v8A4YWPwhIFZrd+3RN6NR/ GIBdz0ei5pw7Zib95yInwNjK1ZuwhStn1Jkxi8+cuH+CmcJCUAXZq7aX01LI6OoG /X8YxezHpF23z+VNlcD8fkNmbkGnLdiDPUAm2W22XD6DaBSHS4EyMPzPhDelYRXn 09ChvOXLgMEAVL9QXmszWMD79HSDWhzYvgwXr4vcOca8Ni8BeeQzoAQKW5EZ3CYb nk6lsVKxCNS/gZBFRL40d4tnfiPDN8ypG9IiHIh7sPqEz6ssDNRDD5AFDg4wFjmB WX0XnvrKzGupCIhqIGlJGM6qBXmfjojCSh9PZn/cuVt2vyPEmOlo/x5owXcPwRDj nFX5OW6FlruGuweAmNvx =5HLA -----END PGP SIGNATURE----- --WlEyl6ow+jlIgNUh--