12 Chown and chgrp with no take ownership permission fails:
15 > chown: changing ownership of `a': Operation not permitted
17 > chgrp: changing group of `a': Operation not permitted
18 $ nfs4acl --set 'daemon:rwo::allow' a
19 > a: Operation not permitted
21 Add the take_ownership permission. This is reflected in the file masks; the
22 file mode cannot show this though:
24 $ nfs4acl --set 'daemon:rwo::allow' a
26 Chown and chgrp to an arbitrary other user or group fails:
29 > chown: changing ownership of `a': Operation not permitted
31 > chgrp: changing group of `a': Operation not permitted
33 Changing the mode makes that an upper bound of the permissions granted, even
34 when the file mode stays the same:
36 $ ls -l a | cut -d ' ' -f1
40 Chown and chgrp to the same user or a group the process is in now fails
41 because the masks now do not grant change_ownership access:
44 > chown: changing ownership of `a': Operation not permitted
46 > chgrp: changing group of `a': Operation not permitted
48 > chgrp: changing group of `a': Operation not permitted
50 Add back change_ownership:
52 $ nfs4acl --set 'daemon:rwo::allow' a
54 Now, chgrp to one of the groups the process is in and chown to the same user