[PULL][yakkety] overlayfs updates

Seth Forshee seth.forshee at canonical.com
Tue Sep 20 20:35:55 UTC 2016

This updates overlayfs in yakkety 4.8 with several patches dropped from
xenial. Two patches from xenial were superseded by upstream commits:

 UBUNTU: SAUCE: overlayfs: when copying up and reading directories ensure mounter had permissions V2
 UBUNTU: SAUCE: overlayfs: Use mounter's credentials instead of selectively raising caps

We also no longer need the patch to enable the backwards-compatible
overlayfs format. The remaining patches from xenial are ported forward
to enable safely mounting overlayfs in user namespace containers.


The following changes since commit 0caea0777d23b5aae36dbc677ccc55285e4942b7:

  UBUNTU: Ubuntu-4.8.0-13.14 (2016-09-20 11:17:41 -0600)

are available in the git repository at:

  git://git.launchpad.net/~sforshee/+git/ubuntu-yakkety overlayfs

for you to fetch changes up to b74468ff791cbdda20a2b3c3d5d2447f0ef33488:

  UBUNTU: SAUCE: overlayfs: Enable user namespace mounts (2016-09-20 14:38:53 -0500)

Seth Forshee (4):
      UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs
      UBUNTU: SAUCE: overlayfs: Be more careful about copying up sxid files
      UBUNTU: SAUCE: overlayfs: Propogate nosuid from lower and upper mounts
      UBUNTU: SAUCE: overlayfs: Enable user namespace mounts

 fs/exec.c                |  9 ++++++++-
 fs/overlayfs/copy_up.c   | 19 ++++++++++++++++++-
 fs/overlayfs/overlayfs.h | 16 ++++++++++++++--
 fs/overlayfs/super.c     |  7 +++++++
 fs/xattr.c               | 41 ++++++++++++++++++++++++++++++++---------
 include/linux/fs.h       |  2 ++
 include/linux/xattr.h    |  1 +
 security/commoncap.c     |  2 +-
 security/selinux/hooks.c |  2 +-
 9 files changed, 84 insertions(+), 15 deletions(-)

More information about the kernel-team mailing list