So I just set up a couple of LSIO containers (I’ll use transmission as an example but there’s 6 LSIO containers with the same issue) and all of them have permission issues:
all the mounted volumes show proper perms (775, owned by abc:abc (1001:1001, matches host user)), but trying to create a file, to ls inside a mounted folder, read a file, etc just results in a permission denied error.
Here’s a snippet from my docker-compose:
transmission:
container_name: transmission
image: linuxserver/transmission
restart: unless-stopped
logging:
driver: json-file
network_mode: bridge
ports:
- '9091:9091'
- '51413:51413'
- '51413:51413/udp'
environment:
- 'PUID=${PUID}'
- 'PGID=${PGID}'
- 'TZ=${TZ}'
- TRANSMISSION_WEB_HOME=/flood-for-transmission/
volumes:
- '/var/mediarr/config/transmission:/config'
- '/var/mediarr/data/torrents:/downloads'
- '/var/mediarr/data/watch:/watch'
Also here’s the output when trying to do stuff on the host (output shortened for readability)
[mediarr@mediarr data]$ id
uid=1001(mediarr) gid=1001(mediarr)
[mediarr@mediarr data]$ ls -l
total 0
drwxrwxr-x. 2 mediarr mediarr 6 Feb 13 02:57 torrents
[mediarr@mediarr data]$ touch ./torrents/foobar #no errors
[mediarr@mediarr data]$ rm ./torrents/foobar #no errors
[mediarr@mediarr data]$ echo $?
0
and here’s output from docker exec
-ing into the container and trying to do the same thing (torrents on host is mounted to /downloads in container):
abc@b28bf18ce937:/$ id
uid=1001(abc) gid=1001(abc) groups=1001(abc)
abc@b28bf18ce937:/$ ls -l
drwxrwxr-x 2 abc abc 6 Feb 13 03:15 downloads
abc@b28bf18ce937:/$ ls ./downloads/
ls: cannot open directory './downloads/': Permission denied
abc@b28bf18ce937:/$ touch ./downloads/foobar
touch: cannot touch './downloads/foobar': Permission denied
note: I can cd into said directory, but can’t do anything in it
Also note: this is all running on Fedora CoreOS and the containers were set-up with portainer (which is running in privileged mode) in case that’s relevant.
Is this something I messed up or is there an issue here?