Alexander Mikhalitsyn
Alexander Mikhalitsyn
To set `security.*` xattr we need to have a `CAP_SYS_ADMIN` capability in the superblock's owner user namespace (ref https://github.com/torvalds/linux/blob/c763c43396883456ef57e5e78b64d3c259c4babc/security/commoncap.c#L1007 ). So if the filesystem we are trying to write to,...
Hi @MaxRower! Please, can you show: `lxc config show remotehost:samba -e`?
Hi @MaxRower, I guess it should be fixed now by https://github.com/canonical/lxd/pull/14231 thanks to @boltmark But it's not backported to LXD 5.20 yet. I guess @tomponline will port this for the...
See also: - https://github.com/lxc/lxc/pull/4539 - https://github.com/lxc/lxc/issues/4553
yeah, this is a nice thing to investigate and fix.
I believe it's because here https://github.com/canonical/lxd-pkg-snap/blob/4d919878699c4ee5c3ff9ea73fe2e153dab15214/snapcraft/commands/daemon.activate#L112: ``` if ! "${LXD}" activateifneeded; then
Hi @minhbq-99! > Let me handle this issue. @avagin and I looking into this right now we'll get back to you if any help is needed. LKML thread: https://lore.kernel.org/criu/zihwmp67m2lpuxbfktmztvjdyap7suzd75dowlw4eamu6bhjf3@6euydiqowc7h/T/#u
https://lore.kernel.org/linux-fsdevel/[email protected]/ I'll be working on a CRIU part.
Hi @laanwj, are you using LXC from Ubuntu package or source build?
Hi @jocado, thanks for reporting this. I can confirm that problem exists and can be reproduced in unprivileged container with mknod interception turned on. Like this: ``` $ unshare -m...