Hey Tom,

By default, the host directories aren't SELinux labelled to be shared within a container in rootless mode, SELinux will prevent access.

To share the host directories within containers you need to use ":z" whereas to make a host directory private to a container you need to use ":Z"

For more clarity
https://blog.christophersmart.com/2021/01/31/podman-volumes-and-selinux/

Hope this helps
P.S: I'm no container expert

Regards,
Leon.

On Thu, Nov 4, 2021 at 2:44 PM Tom Deseyn <tdeseyn@redhat.com> wrote:
Hi friends of podman!

I'm updating an application that uses docker to work with podman on Fedora.
I run into the issue that the volumes are not accessible in the container.

I can make it work by adding the 'z' option to place the proper labels
on the content.
Is this the right way to go about it?

The docker documentation has some warnings ('use extreme caution') for
these options. This is not mentioned in the podman docs. Does it work
differently between podman and docker, so that the warning wouldn't
apply to podman?

Thanks,

Tom
_______________________________________________
Podman mailing list -- podman@lists.podman.io
To unsubscribe send an email to podman-leave@lists.podman.io