** Description changed: - Some docker users are getting a "permission denied" error with overlayfs - in some situations. When a user has search permissions on the upper dir - but not the lower dir they may get this error, where having search - permissions for the upper dir should be sufficient. This is fixed by - upstream commit 38b78a5f18584db6fa7441e0f4531b283b0e6725. + SRU Justification + + Impact: Under some conditions docker users using the overlay2 storage + driver with xenial kernels will get "permission denied" errors when they + should not. This is due to a bug in overlayfs. + + Fix: Backport upstream commits from 4.6. + + Regression Potential: Upstream the patches have been present since 4.6 + so they should be well tested at this point. The backports don't exactly + match the upstream patches so there's some potential for error there, + however no problems were seen in brief testng with docker. + + --- + + Due to an issue in overlayfs, in some scenrios docker users can get + erroneous "permission denied" errors when using the overlay2 storage + driver. When a user has search permissions on the upper dir but not the + lower dir they may get this error, where having search permissions for + the upper dir should be sufficient. This is fixed by upstream commit + 38b78a5f18584db6fa7441e0f4531b283b0e6725. Originally reported at https://github.com/docker/docker/issues/28391.
-- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1659417 Title: docker permission issues with overlay2 storage driver Status in linux package in Ubuntu: Fix Released Status in linux source package in Xenial: In Progress Bug description: SRU Justification Impact: Under some conditions docker users using the overlay2 storage driver with xenial kernels will get "permission denied" errors when they should not. This is due to a bug in overlayfs. Fix: Backport upstream commits from 4.6. Regression Potential: Upstream the patches have been present since 4.6 so they should be well tested at this point. The backports don't exactly match the upstream patches so there's some potential for error there, however no problems were seen in brief testng with docker. --- Due to an issue in overlayfs, in some scenrios docker users can get erroneous "permission denied" errors when using the overlay2 storage driver. When a user has search permissions on the upper dir but not the lower dir they may get this error, where having search permissions for the upper dir should be sufficient. This is fixed by upstream commit 38b78a5f18584db6fa7441e0f4531b283b0e6725. Originally reported at https://github.com/docker/docker/issues/28391. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1659417/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
