LXC unpreviliged problem with aufs mounted on nfs

2020-03-20 Thread hom...@163.com
Hi, Mr. Okajima, I am working on my project that needs to use aufs as a backend for the LXC. If I set the local branch as the first rw branch for aufs, as: mount -t aufs -o br=/home/{lxcname}/data=rw:/home/base/rootfs=ro none /var/lib/lxc/containers/{lxcname}/r

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
Hi,Mr. Okajima, Below attached is the /var/log/kern.log and /var/log/syslog, which logs the info from nfs client side ubuntu-v18.04 reboot to the LXC rootfs mount by aufs and LXC startup . I didn't find any info about XATTR. Did I miss any thing? or Should I show you th

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
an use "--options" option Looking forward to you reply. Thanks. BR. ______ Michael Mao From: [2]hom...@163.com Date: 2020-03-21 17:29 To: [3]hooanon05g CC: [4]aufs-users Subject: Re: Re:

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
BR. __ Michael Mao From: [1]J. R. Okajima Date: 2020-03-21 20:35 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs "hom...@163.com": > Below attached is the /var/log/kern.log and /var/log/syslog, which

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
1:56 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs "hom...@163.com": > Attachments is the output in the unpreviliged container and parent server. I cannot see any error in your "strace t

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
: 2020-03-21 22:26 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs "hom...@163.com": > I run the command : useradd 1234, and got the warning: useradd: failure while writing changes to /etc/shadow >

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
Hi, Okajima San, I have the AppArmor and Seccomp closed, but still got the warning. __ Michael Mao From: [1]hom...@163.com Date: 2020-03-21 22:45 To: [2]hooanon05g CC: [3]aufs-users Subject: Re

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
. __ Michael Mao From: [2]J. R. Okajima Date: 2020-03-21 23:20 To: [3]hom...@163.com CC: [4]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs "hom...@163.com": > I have the AppArmor and Seccomp closed,

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
Hi,Okajima San, Please refer to the attachment. __ Michael Mao From: [1]J. R. Okajima Date: 2020-03-22 09:17 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
ion" pid=31683 comm="apparmor_parser" Mar 22 10:23:19 zss-node1 kernel: [62487.116326] audit: type=1400 audit(1584843799.408:379): apparmor="STATUS" operation="profile_load" label="lxd-aaa_//&:lxd-aaa_:unconfined" name="/usr/lib

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
. Maybe we can add each other to communicate online. BR. __ Michael Mao From: [1]J. R. Okajima Date: 2020-03-22 10:54 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
g in kernel log. __ Michael Mao From: [3]J. R. Okajima Date: 2020-03-22 11:25 To: [4]hom...@163.com CC: [5]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs "hom...@163.com": > About the xino,

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
packet data needed? __ Michael Mao From: [1]J. R. Okajima Date: 2020-03-22 11:59 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs "hom...@16

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
Sorry, fix this: That will be easier for me to manage the aufs mount without the xino option. __ Michael Mao From: [1]hom...@163.com Date: 2020-03-22 12:35 To: [2]hooanon05g CC: [3]aufs-users

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
: chown: changing ownership of './aaae': Operation not permitted __ Michael Mao From: [1]hom...@163.com Date: 2020-03-22 13:10 To: [2]hooanon05g CC: [3]aufs-users Subject: Re: Re: LXC unpreviliged pr

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-21 Thread hom...@163.com
side, no fuse filesystem using, so the remote container( relate to the nfs server side) can't do setattr to the nfs server file? __ Michael Mao From: [1]hom...@163.com Date: 2020-03-22 13:15 To: [2]hooan

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-22 Thread hom...@163.com
Date: 2020-03-22 13:58 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs "hom...@163.com": > I found the error in packetdump2: setattr ERROR: Operation not permitted I was going to write exact same thing

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-23 Thread hom...@163.com
e client permission validation. __ Michael Mao From: [1]J. R. Okajima Date: 2020-03-22 13:58 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs "hom...@163.com": > I found the error in packetdump2

Re: Re: LXC unpreviliged problem with aufs mounted on nfs

2020-03-23 Thread hom...@163.com
OK, thanks a lot. BR. __ Michael Mao From: [1]J. R. Okajima Date: 2020-03-23 23:36 To: [2]hom...@163.com CC: [3]aufs-users Subject: Re: LXC unpreviliged problem with aufs mounted on nfs &quo