Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

/usr/bin/tar: Cannot change mode to rwxr-xr-x: Operation not permitted #1012

Closed
AshwinHIBM opened this issue Apr 10, 2024 · 3 comments · Fixed by #1013
Closed

/usr/bin/tar: Cannot change mode to rwxr-xr-x: Operation not permitted #1012

AshwinHIBM opened this issue Apr 10, 2024 · 3 comments · Fixed by #1013

Comments

@AshwinHIBM
Copy link

AshwinHIBM commented Apr 10, 2024
edited by thaJeztah
Loading

Description
I'm getting the above error for a number of files with Fedora-40 only on ppc64le at https://github.com/docker/docker-ce-packaging/blob/master/rpm/Makefile#L44 when it runs the instruction /usr/lib/rpm/rpmuncompress -x /root/rpmbuild/SOURCES/engine.tgz only while running with the default seccomp profile.

Steps to Reproduce
Run the instruction

docker run --rm -e PLATFORM -v /workspace/docker-ce-packaging/rpm/rpmbuild/SOURCES:/root/rpmbuild/SOURCES:ro -v /workspace/docker-ce-packaging/rpm/rpmbuild/fedora-40/RPMS:/root/rpmbuild/RPMS -v /workspace/docker-ce-packaging/rpm/rpmbuild/fedora-40/SRPMS:/root/rpmbuild/SRPMS  rpmbuild-fedora-40/ppc64le -ba --define '_gitcommit_cli 2ae903e' --define '_gitcommit_engine 8b79278' --define '_release 1' --define '_version 26.0.0' --define '_origversion v26.0.0' --define '_buildx_rpm_version 0.13.1' --define '_buildx_version v0.13.1' --define '_buildx_gitcommit 7884339' --define '_compose_rpm_version 2.25.0' --define '_compose_version v2.25.0'  SPECS/docker-ce.spec SPECS/docker-ce-cli.spec SPECS/docker-ce-rootless-extras.spec SPECS/docker-buildx-plugin.spec SPECS/docker-compose-plugin.spec`

I tried replacing the default profile with a custom one including the system calls obtained from strace but that didn't help so there might be a missing call.

@thaJeztah @neersighted Can you please advise?
@thaJeztah
Copy link
Member

What version of docker are you running on? And with Fedora 40, you mean you're building on Fedora 40, or building packages for Fedora 40 on your machine?

@AshwinHIBM
Copy link
Author

AshwinHIBM commented Apr 12, 2024
edited
Loading

What version of docker are you running on? And with Fedora 40, you mean you're building on Fedora 40, or building packages for Fedora 40 on your machine?

Trying to build packages for Fedora-40 on our system for Docker v26.0.0. Sorry for the ambiguous wording. The system is a Debian bookworm container.

@thaJeztah
Copy link
Member

Oh! Didn't even notice it was you (didn't look at who reported it). Hm.. yes, this looks like the same issue as we ran into with
armhf and Ubuntu 24.0.4; as we know what's running in these containers, and are running on ephemeral machines, we went for a "quick fix" there, and disabled seccomp;

But ultimately we need to update the seccomp profile;

I need to see if we can get consensus with the maintainers on that change, but let me open a PR to disable seccomp in the meantime.

@thaJeztah thaJeztah mentioned this issue Apr 12, 2024
Merged
@mtelvers mtelvers mentioned this issue May 23, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@thaJeztah @AshwinHIBM