<div dir="ltr"><br><br><div class="gmail_quote"><div dir="ltr">On Thu, Sep 1, 2016 at 4:24 PM arnaud gaboury <<a href="mailto:arnaud.gaboury@gmail.com">arnaud.gaboury@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div class="gmail_quote"><div dir="ltr">On Thu, Sep 1, 2016 at 2:02 PM Lennart Poettering <<a href="mailto:lennart@poettering.net" target="_blank">lennart@poettering.net</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On Thu, 01.09.16 10:47, arnaud gaboury (<a href="mailto:arnaud.gaboury@gmail.com" target="_blank">arnaud.gaboury@gmail.com</a>) wrote:<br> <br> > I have been moving directories and files between my host and my container<br> > many times since more than one year with no issues. Host is Archlinux and<br> > container Fedora 24 (upgrade to 24 is quite recent: no more than 2 months).<br> ><br> > I moved a directory today from host to container and this let me, for the<br> > first time, with a directory in the container owned by 65534:65534.<br> > <The UID 65534 is commonly reserved for *nobody*, a user with no system<br> > privileges, as opposed to an ordinary (i.e., *non-privileged*) user. This<br> > UID is often used for individuals accessing the system remotely via FTP or<br> > HTTP[0] ><br> <br> Uh, oh. My gues is this: you are using user namespaces (wich is the<br> default these days if you use systemd-nspawn@.service), and I nevre<br> updated the copy logic in machined to deal with that...<br></blockquote></div></div></blockquote><div><br></div><div>I rebuilt my kernel with removing user namespace (as it is set):<br> # CONFIG_USER_NS is not set<br><br></div><div>Here was my container output:<br>------------------------------------------------<br>[poisonivy@thetradinghall]/% ls -al<br>total 16K<br>dr-xr-xr-x 1 363397120 363397120 198 Sep 1 15:18 ./<br>dr-xr-xr-x 1 363397120 363397120 198 Sep 1 15:18 ../<br>dr-xr-xr-x 1 363397120 363397120 0 Feb 3 2016 boot/<br>drwxrwxr-x 1 363397120 363397120 62 Aug 26 19:59 db/<br>drwxr-xr-x 7 root root 440 Sep 1 17:33 dev/<br>drwxr-xr-x 1 363397120 363397120 4.1K Sep 1 15:34 etc/<br>drwxr-xr-x 1 363397120 363397120 76 Feb 3 2016 home/<br>drwxrwxrwx 1 363397120 363397120 0 Aug 28 13:47 keybase/<br>drwxr-xr-x 1 363397120 363397120 0 Feb 3 2016 media/<br>drwxr-xr-x 1 363397120 363397120 0 Feb 3 2016 mnt/<br>drwxr-xr-x 1 363397120 363397120 56 Feb 3 2016 opt/<br>dr-xr-xr-x 376 root root 0 Sep 1 17:33 proc/<br>dr-xr-x--- 1 363397120 363397120 378 Sep 1 15:32 root/<br>drwxr-xr-x 32 root root 800 Sep 1 17:34 run/<br>drwxr-xr-x 1 root root 6 Mar 3 17:43 share/<br>drwxr-xr-x 1 363397120 363397120 0 Feb 3 2016 srv/<br>drwxrwxr-x 1 363397120 363397130 242 Sep 1 16:34 storage/<br>drwxr-xr-x 9 root root 180 Sep 1 17:33 sys/<br>drwxrwxrwt 11 root root 220 Sep 1 17:39 tmp/<br>drwxr-xr-x 1 363397120 363397120 100 Dec 14 2015 usr/<br>drwxr-xr-x 1 363397120 363397120 194 Mar 19 18:29 var/<br>-rw-r--r-- 1 363397120 363397120 0 Sep 1 15:18 .autorelabel<br>lrwxrwxrwx 1 363397120 363397120 7 Feb 3 2016 bin -> usr/bin/<br>lrwxrwxrwx 1 363397120 363397120 7 Feb 3 2016 lib -> usr/lib/<br>lrwxrwxrwx 1 363397120 363397120 9 Feb 3 2016 lib64 -> usr/lib64/<br>lrwxrwxrwx 1 root root 8 Feb 3 2016 sbin -> usr/sbin/<br></div><div>-----------------------------------------------------------------------------<br><br></div><div>Back with user namespace set to Y, output is correct (except the nobody story).<br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> Or in other words, it's a bug in machined.<br> <br> I filed a github issue to keep track of this, so that we can get this<br> fixed:<br> <br> <a rel="noreferrer" href="https://github.com/systemd/systemd/issues/4078" target="_blank">https://github.com/systemd/systemd/issues/4078</a></blockquote><div><br></div></div></div><div dir="ltr"><div class="gmail_quote"><div>Thank you for opening the issue. I have been reading quite a lot about this on the past few hours. Most of such issues arise with NTFS, which is not my case <br></div><div># mount<br>/dev/sdb1 on / type btrfs (rw,noatime,compress=lzo,ssd,space_cache,autodefrag,subvolid=266,subvol=/rootvol)<br>...........<br></div><div><br></div><div> if it can help, from container:<br>-----------------------------------------------<br>root@thetradinghall ➤➤ / # lsattr <br>---------------- ./usr<br>lsattr: Inappropriate ioctl for device While reading flags on ./run<br>---------------- ./boot<br>lsattr: Inappropriate ioctl for device While reading flags on ./dev<br>---------------- ./home<br>---------------- ./media<br>---------------- ./mnt<br>---------------- ./opt<br>lsattr: Inappropriate ioctl for device While reading flags on ./proc<br>---------------- ./root<br>---------------- ./srv<br>lsattr: Inappropriate ioctl for device While reading flags on ./sys<br>lsattr: Inappropriate ioctl for device While reading flags on ./tmp<br>---------------- ./etc<br>---------------- ./var<br>---------------- ./db<br>---------------- ./storage<br>---------------- ./share<br>lsattr: Operation not supported While reading flags on ./sbin<br>---------------- ./keybase<br>lsattr: Operation not supported While reading flags on ./bin<br>lsattr: Operation not supported While reading flags on ./lib<br>lsattr: Operation not supported While reading flags on ./lib64<br>-----------------------------------------<br><br></div><div>This issue is new and have been able to cp/mv from host to container and preserve file/folders attributes until now. Something in my recent upgrades have done these changes.<br><br></div></div></div><div dir="ltr"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> <br> Lennart<br> <br> --<br> Lennart Poettering, Red Hat<br> </blockquote></div></div></blockquote></div></div>