[Bug 1313550] Re: ping does not work as a normal user on trusty tarball cloud images.

Thu May 8 17:06:54 UTC 2014

Excerpts from Jason Gerard DeRose's message of 2014-05-08 16:45:23 UTC:
> Stéphane,
> 
> Gotcha, thanks for the feedback! So am I correct in thinking that the
> --xattrs option is currently broken in tar on 14.04? If so, is there any
> chance this could be fixed in an SRU?
> 

No, --xattrs works fine in 14.04. The problem is that it must be used.
Note that you also have to use --xattrs-include=* while creating the
tar to make use of it (which is, IMO, a bug, as if I said --xattrs,
I meant _USE XATTRS_. ;)

Anyway, another problem is that 12.04 tar does not support it, so the
tarball images are not consumable from the previous release, which is a
problem for a shop trying to upgrade. I think that may be a worthy SRU,
as tars with xattrs will start to become more and more commonplace over
the next 3 years that 12.04 is still a supported platform.

Certainly somebody should get 14.04's tar into precise-backports while
this SRU is debated.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to tar in Ubuntu.
https://bugs.launchpad.net/bugs/1313550

Title:
  ping does not work as a normal user on trusty tarball cloud images.

Status in The curt installer:
  Confirmed
Status in MAAS:
  Confirmed
Status in “curtin” package in Ubuntu:
  Confirmed
Status in “iputils” package in Ubuntu:
  Fix Released
Status in “lxc” package in Ubuntu:
  Confirmed
Status in “maas” package in Ubuntu:
  Confirmed
Status in “tar” package in Ubuntu:
  Fix Released
Status in “lxc” source package in Precise:
  Confirmed
Status in “tar” source package in Precise:
  Confirmed
Status in “curtin” source package in Saucy:
  Confirmed
Status in “lxc” source package in Saucy:
  Confirmed
Status in “maas” source package in Saucy:
  Confirmed
Status in “tar” source package in Saucy:
  Confirmed
Status in “curtin” source package in Trusty:
  Confirmed
Status in “lxc” source package in Trusty:
  Confirmed
Status in “maas” source package in Trusty:
  Confirmed
Status in “tar” source package in Trusty:
  Fix Released

Bug description:
  With trusty, /bin/ping relies on having extended attributes and kernel
  capabilities to gain the cap_net_raw+p capability. This allows
  removing the suid bit.

  However, the tarball cloud images do not preserve the extended
  attributes, and thus /bin/ping does not work on a system derived from
  them.

  Summary of problem per package:
   * lxc: ubuntu cloud template needs to extract
   * download template needs to extract with xattr flags
   * server side download creation tools need xattr flags
   * [unconfirmed] tarball caches need creation and extraction with xattr flags
   * tar: need the '--xattr' and '--acl' flags backported
   * maas: uec2roottgz needs to use xattr/acl flags 
   * curtin: extraction needs to use xattr/acl flags.
   * cloud-image-build: needs to create -root.tar.gz with xattr/acl flags

To manage notifications about this bug go to:
https://bugs.launchpad.net/curtin/+bug/1313550/+subscriptions