Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Chown permission denied using convoy-nfs #6452

Closed
keepwn opened this Issue Oct 31, 2016 · 2 comments

Comments

Projects
None yet
5 participants
@keepwn
Copy link

keepwn commented Oct 31, 2016

Rancher Version: 1.1.4

Docker Version: 1.12.1

OS and where are the hosts located? (cloud, bare metal, etc): RancherOS, ESXI

Setup Details: (single node rancher vs. HA rancher, internal DB vs. external DB) single node rancher, internal DB

Environment Type: (Cattle/Kubernetes/Swarm/Mesos) Cattle

Steps to Reproduce:

  1. create a test volume using convoy-nfs
  2. in rancher ui, create a container Test1 from ubuntu, and -v test:/data
  • success
  1. use rancher ui, create a container Test2 from ubuntu, and -v test:/tmp
  • error, msg is chown xxxx operation not permitted
  1. not use rancher, create a container Test3 from ubuntu, and -v /mnt/test:/tmp
  • success

I guess convoy-nfs maybe try to chown membership of mounted volume when mounting volume.
But, my nfs server's config is all_squash=nobody that means could not use chown in client.

It is a bug or feature? And how to fix this?
Thanks!

@will-chan will-chan added this to the Unscheduled milestone Nov 1, 2016

@aemneina

This comment has been minimized.

Copy link

aemneina commented Nov 11, 2016

I believe this is expected in that /tmp is an immutable folder and convoy-nfs does try to chown the mount point. . @cjellick does that sound about right?

@aYuan

This comment has been minimized.

Copy link

aYuan commented Nov 26, 2016

nfs-server:
/volume1/nfs *(rw,async,no_wdelay,crossmnt,insecure,all_squash,insecure_locks,sec=sys,anonuid=0,anongid=0)

Turn off root squashing. This option is mainly useful for diskless clients.

@vincent99 vincent99 closed this Sep 19, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.