[Samba] urgent problem with samba 4.13 and chown/chgrp
jra at samba.org
Wed Feb 10 21:52:15 UTC 2021
On Wed, Feb 10, 2021 at 03:49:57PM -0500, Jason Keltz via samba wrote:
>I'm trying to use chown/chgrp commands on files on NFS storage.
>Take a file "l" that I touched:
>-rw------- 1 jas tech 0 Feb 10 15:21 l
>(note that user and group mapping is working perfectly)
>% chgrp core l
>chgrp: changing group of ‘l’: Invalid argument
>The problem is not the group:
>% getent group core
>% wbinfo -n 'core'
>S-1-5-21-1981678738-1545235886-4256466701-6765 SID_DOM_GROUP (2)
>% wbinfo -Y 'S-1-5-21-1981678738-1545235886-4256466701-6765'
>The problem is not the user:
>% getent passwd jas
>When looking at an strace of the chgrp above, I see this odd call:
>fchownat(AT_FDCWD, "l", -1, 1001, 0) = -1 EINVAL (Invalid argument)
>Where the third argument should be my uid 1004 and is instead -1.
-1 means "no change".
From man fchownat:
"If the owner or group is specified as -1, then that ID is not changed."
>idmap config * : backend = tdb
>idmap config * : range = 1000000-1999999
># idmap config for the EECSYORKUCA domain
># range should match UNIX ID in AD
>idmap config EECSYORKUCA : backend = ad
>idmap config EECSYORKUCA : schema_mode = rfc2307
>idmap config EECSYORKUCA : range = 1000-999999
>idmap config EECSYORKUCA : unix_primary_group = yes
>idmap config EECSYORKUCA : unix_nss_info = yes
>Yes, and in /etc/nsswitch.conf:
>passwd: files winbind
>group: files winbind
>As a side note, if I try to change the ownership of the file, I get a
>This is a showstopper if I can't get this figured out. :( panic
>(I'm positive I used chown/chgrp with 4.11 successfully.)
You'll almost certainly need "root squash" on your NFS
Remember, Samba does activities as root which are by
default disallowed over NFS.
More information about the samba