Ok algorithm. That’s cool. But it doesn’t help me figure out the account mapping issues I’m having trying to run docker inside an unpriveleged Alpine LXC. … I really want that tiny base size and overhead, but potentially allowing privileged access to kernels in my cluster would be nice to avoid.
I know a VM is the preferred choice for nesting type situations but I’m running most of my homelab on EOL systems and can’t rely on the memory overhead on nodes shared with Ceph services (same reason I don’t want to go unpriveleged).
I suppose I could just try Arch or fall back to lbuntu or debian or the new not CentOS RHEL upstream distro or whatever…. But….