RFR: 8337966: (fs) Files.readAttributes fails with Operation not permitted on older docker releases
Alan Bateman
alanb at openjdk.org
Thu Aug 29 06:34:20 UTC 2024
On Thu, 29 Aug 2024 00:02:02 GMT, Brian Burkhalter <bpb at openjdk.org> wrote:
> I have updated the patch to verify EPERM at runtime for statx and copy_file_range syscalls
Why are you changing the copy_file_range usages? Is this the same docker or seccomp config issue or is it something else? The man page for copy_file_range documents EPERM for "fd_out refers to an immutable file". I don't know if it meant to say non-writable, in which case I assume a JDK bug if that were to happen.
As regards UnixNativeDispatcher_fstat0 and UnixNativeDispatcher_lstat0 to allow statx return EPERM. This is an undocumented error. My personal view is that we should not put this patch into the main line but if does go in then it needs a comment to explain why it handling an undocumented error.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/20484#issuecomment-2316814125
More information about the nio-dev
mailing list