[systemd-devel] container /proc/filesystems owned by nobody:can't upgrade
Anthony Joseph Messina
amessina at messinet.com
Tue Oct 3 14:35:25 UTC 2017
On Tuesday, October 3, 2017 3:01:25 AM CDT arnaud gaboury wrote:
> My host is Archlinux, nspawn container is Fedora 26. Kernel is 4.13.3
>
> I can't fully upgrade my container as some files are owned by
> nobody:nobody and can't change to root. An example is filesystems. When
> upgrading, it returns error:
> < error: unpacking of archive failed on file /proc: cpio: chown >
> $ ls -a /proc:
> /proc/filesystems -r--r--r-- 1 nobody nobody 0
> Oct 3 09:53 filesystems
>
> # chown root:root /proc/filesystems
> chown: changing ownership of '/proc/filesystems': Operation not permitted
>
> Same kind of error with a few other packages.
>
> Can someone please help me to find a solution? Thank you
In my experience, certain packages need to be installed/upgraded from outside
the container to work around this. httpd is another one (if using user
namespacing) since it sets file attributes on /usr/sbin/httpd.
On a Fedora host (and a Fedora container), I do something like
dnf --releasever=26 --nogpgcheck \
--installroot=/var/lib/machines/mymachine --disablerepo='*' \
--enablerepo=fedora --enablerepo=updates upgrade filesystem httpd
I'm think Arch will also have a command to install/update files in the
container from the outside.
--
Anthony - https://messinet.com/ - https://messinet.com/~amessina/gallery
F9B6 560E 68EA 037D 8C3D D1C9 FF31 3BDB D9D8 99B6
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.freedesktop.org/archives/systemd-devel/attachments/20171003/e5109e48/attachment.sig>
More information about the systemd-devel
mailing list