Solved Mounting ext4 USB drive to /mnt. How to fix the dermission denied error?

[zoltan]

Hello,
This is the ext4 drive:

Geom name: da0
Providers:
1. Name: da0
   Mediasize: 4037017600 (3.8G)
   Sectorsize: 512
   Mode: r1w0e0
   descr: Generic Flash Disk
   lunname: ALCOR   ALCOR
   lunid: 200049454505080f
   ident: A74100B4
   rotationrate: unknown
   fwsectors: 63
   fwheads: 255

And this command should mount the device read-only:

$ mount -r -t ext2fs /dev/da0p1 /mnt

However, when I access the /mnt folder with a regular user, I get this error:

$ cd /mnt
cd: /mnt: Permission denied

I can list the contents of the folder with root permissions, though:

doas ls -l  /mnt
total 76
drwx------  5 1000 1000   4096 Jan 18  2024 file1
-rw-r--r--  1 1000 1000    368 Jan 18  2024 file2
-rw-r--r--  1 1000 1000   8260 Aug 21  2023 file3

Here are my configurations:

/etc/sysctl.conf:

# Allow regular users to mount
vfs.usermount=1

/etc/devfs.conf

own da0 root:operator
perm da0 0660

/etc/devfs.rules

[system=10]
add path 'usb/*' mode 0660 group operator
add path 'da*' mode 0660 group operator

/etc/rc.conf:

devfs_system_ruleset="system"

Any idea what could be preventing the regular user from accessing the /mnt folder after mounting?

 

[cracauer@]

What does `ls -ld /mnt` say?

 

[zoltan]

What does `ls -ld /mnt` say?

$ ls -ld /mnt
drwx------  4 1000 1000 4096 Jan 18  2024 /mnt

 

[Kai Burghardt]

And the user in question is a member of the operator group? Remember to login again so group membership is evaluated anew. ?

 

[zoltan]

Yes, it is member of the operator group.

 

[cracauer@]

Only the user with numerical id 1000 can access the root directory on that disk.

You need to either:
- chown -R the whole disk
- or create a user with id 1000

 

[Kai Burghardt]

Oh, uhm… devfs.conf(5) states:​

[…] The devfs.conf file provides an easy way to set ownership and permissions […] for devices available at boot.

It does not work for devices plugged in and out after the system is up and running, e. g. USB devices. […]​

So: “Have you tried turning it off and on again?” ?​

 

[zoltan]

Only the user with numerical id 1000 can access the root directory on that disk.

You need to either:
- chown -R the whole disk
- or create a user with id 1000

Thanks. I learned something new, and you're right, looking at the output of "ls -ld /mnt". Unfortunately, I don't think I can use the chown command because the disk is ext4 and mounted as read-only. Maybe I can chown the drive "chown -R myuser:myuser" on a Linux machine?

 

[bakul]

In the past I have used sysutils/fusefs-ext2 without any trouble.

 

[T-Daemon]

And this command should mount the device read-only:

$ mount -r -t ext2fs /dev/da0p1 /mnt

I assume the mount command is executed as user, considered the configurations made to grant users permission to mount media devices.

How did you mange to mount as user on /mnt? Normally a user can not mount on a mount point not owned by the user.

 % ls -ld /mnt
drwxr-xr-x  2 root wheel 2 Jul 16 14:05 /mnt

Have you tried to mount as user on a mount point owned by the the user mounting?

 

[T-Daemon]

Oh, uhm… devfs.conf(5) states:

So: “Have you tried turning it off and on again?” ?​

A devfs.conf is not needed here anyway.

The devices default to file group "operator", the permissions are set by devfs.rules.

Without devfs.rules

 % ls -l /dev/da*
crw-r-----  1 root operator 0x69 Jul 29 07:27 /dev/da0
crw-r-----  1 root operator 0x6a Jul 29 07:27 /dev/da0p1

 

[blackbird9]

$ ls -ld /mnt
drwx------  4 1000 1000 4096 Jan 18  2024 /mnt

A user with uid and gid both 1000 is the default used by debian linux distributions and their derivatives, when you create the first user during installation. Can you put the stick into a linux machine, mount it and then chmod 777 the directory to change the permissions? Then unmount and take it back to your freebsd machine and mount it again. The ls -ld /mnt output should then show "drwxrwxrwx".

Either that or you have to create a user with user id 1000 on freebsd to have permission to read it, using the commands described in this section of the handbook https://www.freebsd.org/doc/handbook/users-synopsis.html. So try this:-

$ adduser -u 1000
and follow the prompts.

Once you have a user with uid of 1000 you should have access to the drive if you log in as that user.

 

[zoltan]

A user with uid and gid both 1000 is the default used by debian linux distributions and their derivatives, when you create the first user during installation. Can you put the stick into a linux machine, mount it and then chmod 777 the directory to change the permissions? Then unmount and take it back to your freebsd machine and mount it again. The ls -ld /mnt output should then show "drwxrwxrwx".

Either that or you have to create a user with user id 1000 on freebsd to have permission to read it, using the commands described in this section of the handbook https://www.freebsd.org/doc/handbook/users-synopsis.html. So try this:-

$ adduser -u 1000
and follow the prompts.

Once you have a user with uid of 1000 you should have access to the drive if you log in as that user.

Thank you. What you described is indeed the problem in my case. The USB drive was created on Debian. I'll try to switch to a Linux machine and fix it. I marked this thread solved for now.

 

[tingo]

It is useful to add your user on FreeBSD to a group that has the same numerical id as any groups on foreign file systems that you use.
Then it is simple to change group permission on any mounted (foreign) filesystems so that you can read (and write if needed) there. Just use sudo / doas.