kernel-packages team mailing list archive

Thread
Date

[Bug 1478578] [NEW] "overlay" fs type not mountable in unprivileged containers

To: kernel-packages@xxxxxxxxxxxxxxxxxxx
From: Seth Forshee <seth.forshee+lp@xxxxxxxxxxxxx>
Date: Mon, 27 Jul 2015 14:13:00 -0000
Reply-to: Bug 1478578 <1478578@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

The "overlay" fstype is not mountable from within non-init user
namespaces in wily. This is a regression wrt vivid and is causing LXC
adt failures:

https://jenkins.qa.ubuntu.com/job/wily-adt-lxc/lastBuild/

To reproduce, assuming you have an unprivileged LXC container named u1:

 $ lxc-clone -s u1 u2
 $ lxc-start -n u2 --logfile=lxc.out --logpriority=DEBUG

Starting u2 will fail, with the following in lxc.out:

 lxc-start 1438006183.232 ERROR    bdev - bdev.c:overlayfs_mount:2253 -
Operation not permitted - overlayfs: error mounting
/home/ubuntu/.local/share/lxc/u1/rootfs onto /usr/lib/x86_64-linux-
gnu/lxc options
upperdir=/home/ubuntu/.local/share/lxc/u2/delta0,lowerdir=/home/ubuntu/.local/share/lxc/u1/rootfs,workdir=/home/ubuntu/.local/share/lxc/u2/olwork

** Affects: linux (Ubuntu)
     Importance: High
     Assignee: Seth Forshee (sforshee)
         Status: In Progress


** Tags: bot-stop-nagging

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1478578

Title:
  "overlay" fs type not mountable in unprivileged containers

Status in linux package in Ubuntu:
  In Progress

Bug description:
  The "overlay" fstype is not mountable from within non-init user
  namespaces in wily. This is a regression wrt vivid and is causing LXC
  adt failures:

  https://jenkins.qa.ubuntu.com/job/wily-adt-lxc/lastBuild/

  To reproduce, assuming you have an unprivileged LXC container named
  u1:

   $ lxc-clone -s u1 u2
   $ lxc-start -n u2 --logfile=lxc.out --logpriority=DEBUG

  Starting u2 will fail, with the following in lxc.out:

   lxc-start 1438006183.232 ERROR    bdev - bdev.c:overlayfs_mount:2253
  - Operation not permitted - overlayfs: error mounting
  /home/ubuntu/.local/share/lxc/u1/rootfs onto /usr/lib/x86_64-linux-
  gnu/lxc options
  upperdir=/home/ubuntu/.local/share/lxc/u2/delta0,lowerdir=/home/ubuntu/.local/share/lxc/u1/rootfs,workdir=/home/ubuntu/.local/share/lxc/u2/olwork

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1478578/+subscriptions

Follow ups

[Bug 1478578] Re: "overlay" fs type not mountable in unprivileged containers
From: Launchpad Bug Tracker, 2015-07-31
[Bug 1478578] Re: "overlay" fs type not mountable in unprivileged containers
From: Andy Whitcroft, 2015-07-28
[Bug 1478578] Re: "overlay" fs type not mountable in unprivileged containers
From: Seth Forshee, 2015-07-27