search

docker-archive / for-aws

92 stars 26 forks source link

New docker conatiners are not inheriting mask from /var/lib/docker/containers directory #200

Open alpana17 opened 5 years ago

alpana17 commented 5 years ago

Expected behavior

mask should be inherited

Actual behavior

mask is not inherited

Information

file: var/lib/docker/containers getfacl for it owner: root group: root

user::rwx user:splunk:r-x group::--- mask::r-x other::--- default:user::rwx default:user:splunk:r-x default:group::--- default😷:r-x default:other::---

file: var/lib/docker/containers/0defb67a91a6ba373482c013194f2a1b1c3fb737e617d36f6897451b3e0be418 getfacl on it owner: root group: root

user::rwx user:splunk:r-x #effective:--- group::--- mask::--- other::--- default:user::rwx default:user:splunk:r-x default:group::--- default😷:r-x default:other::---

The newly created containers should properly inherent all perms (including mask!) from the parent directory, but they do not. It is not clear to me why this is happening.

Steps to reproduce the behavior

alpana17 commented 5 years ago

Gentle Reminder.. It is a blocker for us. Please guide us, how to proceed