I tried creating the rootfs on a local filesystem and then copying it to the NFS filesystem with "cp -Rp", and that works, so maybe it's an issue with tar? There's a discussion on the proxmox forums about tar setting acls here: https://forum.proxmox.com/threads/lxc-containers-have- extended-permissions-acl-by-default.25367/
But my host is running debian stretch (with a newer version of tar) and I don't see any acls set on the local filesystem, so I guess that's not the issue? On Mon, Jan 29, 2018 at 11:55 AM, Daniel Urist <[email protected]> wrote: > Is it possible to create unprivileged containers on NFS volumes? It seems > to work fine for a privileged container, but when I try it for an > unprivileged container I get the following errors: > > >> Using image from local cache >> Unpacking the rootfs >> tar: ./var/mail: Cannot change ownership to uid 0, gid 8: Operation not >> permitted >> tar: ./var/log/wtmp: Cannot change ownership to uid 0, gid 43: Operation >> not permitted >> tar: ./var/log/lastlog: Cannot change ownership to uid 0, gid 43: >> Operation not permitted >> tar: ./var/log/dmesg: Cannot change ownership to uid 0, gid 4: Operation >> not permitted >> tar: ./var/log/btmp: Cannot change ownership to uid 0, gid 43: Operation >> not permitted >> tar: ./var/log/fsck/checkroot: Cannot change ownership to uid 0, gid 4: >> Operation not permitted >> tar: ./var/log/fsck/checkfs: Cannot change ownership to uid 0, gid 4: >> Operation not permitted >> tar: ./var/log/apt/term.log: Cannot change ownership to uid 0, gid 4: >> Operation not permitted >> tar: ./var/local: Cannot change ownership to uid 0, gid 50: Operation not >> permitted > > >
_______________________________________________ lxc-users mailing list [email protected] http://lists.linuxcontainers.org/listinfo/lxc-users
