ACK: [linux-aws][PATCH 0/1] LP:#1864669 - overlayfs regression - internal getxattr operations without sepolicy checking

Colin Ian King colin.king at
Thu Jul 9 21:20:17 UTC 2020

On 09/07/2020 19:14, Marcelo Henrique Cerri wrote:
> BugLink:
> As bug description.
> AWS users are also affected by this bug. This fix is already applied
> to the azure kernels for some time now without any regressions.
> This patch was submitted to upstream as part of a bigger patchset that
> proposes to fix several individual issues. Since the patchset is
> currently stalled with no ETA to be accepted, I decided to backport
> just the necessary fix.
> 4.15 required bigger changes since some of the affected pieces of code
> were missing or were different than upstream and I applied the
> equivalent changes to the corresponding area in that kernel. Besides
> that, all patches required a small change to remove XATTR_NOSECURITY
> since that was added by a previous patch on the same series.
> That's a fix that potentially can be included to our main kernels. But
> consideroing this fix wasn't accepted upstream yet believe it might be
> safer to introduce this fix only to the affected kernels for now. That
> way we can reduce the regression potential.
> ---
> Mark Salyzyn (1):
>   UBUNTU: SAUCE: overlayfs: internal getxattr operations without
>     sepolicy checking
>  fs/overlayfs/namei.c     | 19 ++++++++++---------
>  fs/overlayfs/overlayfs.h |  7 +++++++
>  fs/overlayfs/util.c      |  8 ++++----
>  3 files changed, 21 insertions(+), 13 deletions(-)
Looks OK to me.

Thanks Marcelo.

Acked-by: Colin Ian King <colin.king at>

More information about the kernel-team mailing list