kernel-packages team mailing list archive

Thread
Date

[Bug 1478578] Re: "overlay" fs type not mountable in unprivileged containers

To: kernel-packages@xxxxxxxxxxxxxxxxxxx
From: Seth Forshee <seth.forshee+lp@xxxxxxxxxxxxx>
Date: Mon, 27 Jul 2015 14:16:10 -0000
Reply-to: Bug 1478578 <1478578@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Patch added: "0001-UBUNTU-SAUCE-overlayfs-Enable-user-namespace-mounts-.patch"
   https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1478578/+attachment/4434641/+files/0001-UBUNTU-SAUCE-overlayfs-Enable-user-namespace-mounts-.patch

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1478578

Title:
  "overlay" fs type not mountable in unprivileged containers

Status in linux package in Ubuntu:
  In Progress

Bug description:
  The "overlay" fstype is not mountable from within non-init user
  namespaces in wily. This is a regression wrt vivid and is causing LXC
  adt failures:

  https://jenkins.qa.ubuntu.com/job/wily-adt-lxc/lastBuild/

  To reproduce, assuming you have an unprivileged LXC container named
  u1:

   $ lxc-clone -s u1 u2
   $ lxc-start -n u2 --logfile=lxc.out --logpriority=DEBUG

  Starting u2 will fail, with the following in lxc.out:

   lxc-start 1438006183.232 ERROR    bdev - bdev.c:overlayfs_mount:2253
  - Operation not permitted - overlayfs: error mounting
  /home/ubuntu/.local/share/lxc/u1/rootfs onto /usr/lib/x86_64-linux-
  gnu/lxc options
  upperdir=/home/ubuntu/.local/share/lxc/u2/delta0,lowerdir=/home/ubuntu/.local/share/lxc/u1/rootfs,workdir=/home/ubuntu/.local/share/lxc/u2/olwork

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1478578/+subscriptions

References

[Bug 1478578] [NEW] "overlay" fs type not mountable in unprivileged containers
From: Seth Forshee, 2015-07-27