What were you trying to do that didn't work?

Building a container image on AWS where we download an xz archive and unpack it with tar. It doesn't happen with Stream 10 or on my local Fedora machine. Not sure if this is actually a podman issue or a kernel configuration.

What is the impact of this issue to you?

We can't unpack any xz archives in containers at the moment

Please provide the package NVR for which the bug is seen:

I don't know what a package NVR is

How reproducible is this bug?:

Always

Steps to reproduce

1. Launch AWS VM with Stream 9 with links from here, in our case with `m6a.xlarge` instance (didn't test with local VM)
2. sudo dnf install podman
3. podman build -t test -f Dockerfile . with this file:

FROM registry.fedoraproject.org/fedora:42 AS vips-builder

ENV LIBVIPS_VERSION=8.15.5
RUN curl L -o /root/vips${LIBVIPS_VERSION}.tar.xz https://github.com/libvips/libvips/releases/download/v${LIBVIPS_VERSION}/vips-${LIBVIPS_VERSION}.tar.xz
RUN cd /root && tar xvf vips-${LIBVIPS_VERSION}.tar.xz --no-same-owner

Expected results

Downloaded and unpacked the archive

Actual results

STEP 4/4: RUN cd /root && tar xvf vips-${LIBVIPS_VERSION}.tar.xz --no-same-owner
xz: Failed to enable the sandbox
tar: Child returned status 1
tar: Error is not recoverable: exiting now