[Devel] [PATCH RH7] kmod/whitelist: allow overlay fs module autoloading
Kirill Tkhai
ktkhai at virtuozzo.com
Mon Aug 29 06:00:01 PDT 2016
On 29.08.2016 15:50, Dmitry Safonov wrote:
> Note: overlayfs will not be allowed to mount in VE until admin hasn't
> enabled experimental fs. To do it, write to the process knob:
> [tracing]# echo 1 > /proc/sys/fs/experimental_fs_enable
>
> https://jira.sw.ru/browse/PSBM-51043
>
> Cc: Kirill Tkhai <ktkhai at virtuozzo.com>
> Signed-off-by: Dmitry Safonov <dsafonov at virtuozzo.com>
> ---
> kernel/kmod.c | 1 +
> 1 file changed, 1 insertion(+)
>
> diff --git a/kernel/kmod.c b/kernel/kmod.c
> index 5e5c2c6c8948..151f9f2eca39 100644
> --- a/kernel/kmod.c
> +++ b/kernel/kmod.c
> @@ -378,6 +378,7 @@ static inline int module_payload_iptable_allowed(const char *module)
> /* ve0 allowed modules */
> static const char * const ve0_allowed_mod[] = {
> "fs-binfmt_misc",
> + "fs-overlay",
I see in modules.alias:
alias fs-overlay overlay
Should we add "overlay" to allowed list, or fs-overlay only is enough?
> /* inet_diag, inet6_diag */
> "net-pf-16-proto-4-type-2", /* PF_NETLINK, NETLINK_SOCK_DIAG, AF_INET */
>
More information about the Devel
mailing list