1 // SPDX-License-Identifier: GPL-2.0-only
4 #include <linux/module.h>
5 #include <linux/namei.h>
6 #include <linux/fs_context.h>
7 #include <linux/fs_parser.h>
8 #include <linux/posix_acl_xattr.h>
9 #include <linux/seq_file.h>
10 #include <linux/xattr.h>
11 #include "overlayfs.h"
14 static bool ovl_redirect_dir_def = IS_ENABLED(CONFIG_OVERLAY_FS_REDIRECT_DIR);
15 module_param_named(redirect_dir, ovl_redirect_dir_def, bool, 0644);
16 MODULE_PARM_DESC(redirect_dir,
17 "Default to on or off for the redirect_dir feature");
19 static bool ovl_redirect_always_follow =
20 IS_ENABLED(CONFIG_OVERLAY_FS_REDIRECT_ALWAYS_FOLLOW);
21 module_param_named(redirect_always_follow, ovl_redirect_always_follow,
23 MODULE_PARM_DESC(redirect_always_follow,
24 "Follow redirects even if redirect_dir feature is turned off");
26 static bool ovl_xino_auto_def = IS_ENABLED(CONFIG_OVERLAY_FS_XINO_AUTO);
27 module_param_named(xino_auto, ovl_xino_auto_def, bool, 0644);
28 MODULE_PARM_DESC(xino_auto,
29 "Auto enable xino feature");
31 static bool ovl_index_def = IS_ENABLED(CONFIG_OVERLAY_FS_INDEX);
32 module_param_named(index, ovl_index_def, bool, 0644);
33 MODULE_PARM_DESC(index,
34 "Default to on or off for the inodes index feature");
36 static bool ovl_nfs_export_def = IS_ENABLED(CONFIG_OVERLAY_FS_NFS_EXPORT);
37 module_param_named(nfs_export, ovl_nfs_export_def, bool, 0644);
38 MODULE_PARM_DESC(nfs_export,
39 "Default to on or off for the NFS export feature");
41 static bool ovl_metacopy_def = IS_ENABLED(CONFIG_OVERLAY_FS_METACOPY);
42 module_param_named(metacopy, ovl_metacopy_def, bool, 0644);
43 MODULE_PARM_DESC(metacopy,
44 "Default to on or off for the metadata only copy up feature");
50 Opt_default_permissions,
62 static const struct constant_table ovl_parameter_bool[] = {
68 static const struct constant_table ovl_parameter_uuid[] = {
69 { "off", OVL_UUID_OFF },
70 { "null", OVL_UUID_NULL },
71 { "auto", OVL_UUID_AUTO },
72 { "on", OVL_UUID_ON },
76 static const char *ovl_uuid_mode(struct ovl_config *config)
78 return ovl_parameter_uuid[config->uuid].name;
81 static int ovl_uuid_def(void)
86 static const struct constant_table ovl_parameter_xino[] = {
87 { "off", OVL_XINO_OFF },
88 { "auto", OVL_XINO_AUTO },
89 { "on", OVL_XINO_ON },
93 const char *ovl_xino_mode(struct ovl_config *config)
95 return ovl_parameter_xino[config->xino].name;
98 static int ovl_xino_def(void)
100 return ovl_xino_auto_def ? OVL_XINO_AUTO : OVL_XINO_OFF;
103 const struct constant_table ovl_parameter_redirect_dir[] = {
104 { "off", OVL_REDIRECT_OFF },
105 { "follow", OVL_REDIRECT_FOLLOW },
106 { "nofollow", OVL_REDIRECT_NOFOLLOW },
107 { "on", OVL_REDIRECT_ON },
111 static const char *ovl_redirect_mode(struct ovl_config *config)
113 return ovl_parameter_redirect_dir[config->redirect_mode].name;
116 static int ovl_redirect_mode_def(void)
118 return ovl_redirect_dir_def ? OVL_REDIRECT_ON :
119 ovl_redirect_always_follow ? OVL_REDIRECT_FOLLOW :
120 OVL_REDIRECT_NOFOLLOW;
123 static const struct constant_table ovl_parameter_verity[] = {
124 { "off", OVL_VERITY_OFF },
125 { "on", OVL_VERITY_ON },
126 { "require", OVL_VERITY_REQUIRE },
130 static const char *ovl_verity_mode(struct ovl_config *config)
132 return ovl_parameter_verity[config->verity_mode].name;
135 static int ovl_verity_mode_def(void)
137 return OVL_VERITY_OFF;
140 #define fsparam_string_empty(NAME, OPT) \
141 __fsparam(fs_param_is_string, NAME, OPT, fs_param_can_be_empty, NULL)
143 const struct fs_parameter_spec ovl_parameter_spec[] = {
144 fsparam_string_empty("lowerdir", Opt_lowerdir),
145 fsparam_string("upperdir", Opt_upperdir),
146 fsparam_string("workdir", Opt_workdir),
147 fsparam_flag("default_permissions", Opt_default_permissions),
148 fsparam_enum("redirect_dir", Opt_redirect_dir, ovl_parameter_redirect_dir),
149 fsparam_enum("index", Opt_index, ovl_parameter_bool),
150 fsparam_enum("uuid", Opt_uuid, ovl_parameter_uuid),
151 fsparam_enum("nfs_export", Opt_nfs_export, ovl_parameter_bool),
152 fsparam_flag("userxattr", Opt_userxattr),
153 fsparam_enum("xino", Opt_xino, ovl_parameter_xino),
154 fsparam_enum("metacopy", Opt_metacopy, ovl_parameter_bool),
155 fsparam_enum("verity", Opt_verity, ovl_parameter_verity),
156 fsparam_flag("volatile", Opt_volatile),
160 static char *ovl_next_opt(char **s)
168 for (p = sbegin; *p; p++) {
173 } else if (*p == ',') {
183 static int ovl_parse_monolithic(struct fs_context *fc, void *data)
185 return vfs_parse_monolithic_sep(fc, data, ovl_next_opt);
188 static ssize_t ovl_parse_param_split_lowerdirs(char *str)
190 ssize_t nr_layers = 1, nr_colons = 0;
193 for (s = d = str;; s++, d++) {
196 } else if (*s == ':') {
197 bool next_colon = (*(s + 1) == ':');
200 if (nr_colons == 2 && next_colon) {
201 pr_err("only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed.\n");
204 /* count layers, not colons */
214 /* trailing colons */
216 pr_err("unescaped trailing colons in lowerdir mount option.\n");
227 static int ovl_mount_dir_noesc(const char *name, struct path *path)
232 pr_err("empty lowerdir\n");
235 err = kern_path(name, LOOKUP_FOLLOW, path);
237 pr_err("failed to resolve '%s': %i\n", name, err);
241 if (ovl_dentry_weird(path->dentry)) {
242 pr_err("filesystem on '%s' not supported\n", name);
245 if (!d_is_dir(path->dentry)) {
246 pr_err("'%s' not a directory\n", name);
257 static void ovl_unescape(char *s)
270 static int ovl_mount_dir(const char *name, struct path *path)
273 char *tmp = kstrdup(name, GFP_KERNEL);
277 err = ovl_mount_dir_noesc(tmp, path);
279 if (!err && path->dentry->d_flags & DCACHE_OP_REAL) {
280 pr_err("filesystem on '%s' not supported as upperdir\n",
290 static int ovl_parse_param_upperdir(const char *name, struct fs_context *fc,
294 struct ovl_fs *ofs = fc->s_fs_info;
295 struct ovl_config *config = &ofs->config;
296 struct ovl_fs_context *ctx = fc->fs_private;
300 err = ovl_mount_dir(name, &path);
305 * Check whether upper path is read-only here to report failures
306 * early. Don't forget to recheck when the superblock is created
307 * as the mount attributes could change.
309 if (__mnt_is_readonly(path.mnt)) {
314 dup = kstrdup(name, GFP_KERNEL);
321 kfree(config->workdir);
322 config->workdir = dup;
323 path_put(&ctx->work);
326 kfree(config->upperdir);
327 config->upperdir = dup;
328 path_put(&ctx->upper);
334 static void ovl_parse_param_drop_lowerdir(struct ovl_fs_context *ctx)
336 for (size_t nr = 0; nr < ctx->nr; nr++) {
337 path_put(&ctx->lower[nr].path);
338 kfree(ctx->lower[nr].name);
339 ctx->lower[nr].name = NULL;
346 * Parse lowerdir= mount option:
348 * (1) lowerdir=/lower1:/lower2:/lower3::/data1::/data2
349 * Set "/lower1", "/lower2", and "/lower3" as lower layers and
350 * "/data1" and "/data2" as data lower layers. Any existing lower
351 * layers are replaced.
352 * (2) lowerdir=:/lower4
353 * Append "/lower4" to current stack of lower layers. This requires
354 * that there already is at least one lower layer configured.
355 * (3) lowerdir=::/lower5
356 * Append data "/lower5" as data lower layer. This requires that
357 * there's at least one regular lower layer present.
359 static int ovl_parse_param_lowerdir(const char *name, struct fs_context *fc)
362 struct ovl_fs_context *ctx = fc->fs_private;
363 struct ovl_fs_context_layer *l;
364 char *dup = NULL, *dup_iter;
365 ssize_t nr_lower = 0, nr = 0, nr_data = 0;
366 bool append = false, data_layer = false;
369 * Ensure we're backwards compatible with mount(2)
370 * by allowing relative paths.
373 /* drop all existing lower layers */
375 ovl_parse_param_drop_lowerdir(ctx);
379 if (strncmp(name, "::", 2) == 0) {
381 * This is a data layer.
382 * There must be at least one regular lower layer
386 pr_err("data lower layers without regular lower layers not allowed");
390 /* Skip the leading "::". */
394 * A data layer is automatically an append as there
395 * must've been at least one regular lower layer.
398 } else if (*name == ':') {
400 * This is a regular lower layer.
401 * If users want to append a layer enforce that they
402 * have already specified a first layer before. It's
403 * better to be strict.
406 pr_err("cannot append layer if no previous layer has been specified");
411 * Once a sequence of data layers has started regular
412 * lower layers are forbidden.
414 if (ctx->nr_data > 0) {
415 pr_err("regular lower layers cannot follow data lower layers");
419 /* Skip the leading ":". */
424 dup = kstrdup(name, GFP_KERNEL);
429 nr_lower = ovl_parse_param_split_lowerdirs(dup);
433 if ((nr_lower > OVL_MAX_STACK) ||
434 (append && (size_add(ctx->nr, nr_lower) > OVL_MAX_STACK))) {
435 pr_err("too many lower directories, limit is %d\n", OVL_MAX_STACK);
440 ovl_parse_param_drop_lowerdir(ctx);
445 * We want nr <= nr_lower <= capacity We know nr > 0 and nr <=
446 * capacity. If nr == 0 this wouldn't be append. If nr +
447 * nr_lower is <= capacity then nr <= nr_lower <= capacity
448 * already holds. If nr + nr_lower exceeds capacity, we realloc.
452 * Ensure we're backwards compatible with mount(2) which allows
453 * "lowerdir=/a:/b:/c,lowerdir=/d:/e:/f" causing the last
454 * specified lowerdir mount option to win.
456 * We want nr <= nr_lower <= capacity We know either (i) nr == 0
457 * or (ii) nr > 0. We also know nr_lower > 0. The capacity
458 * could've been changed multiple times already so we only know
459 * nr <= capacity. If nr + nr_lower > capacity we realloc,
460 * otherwise nr <= nr_lower <= capacity holds already.
463 if (nr_lower > ctx->capacity) {
465 l = krealloc_array(ctx->lower, nr_lower, sizeof(*ctx->lower),
471 ctx->capacity = nr_lower;
475 * (3) By (1) and (2) we know nr <= nr_lower <= capacity.
476 * (4) If ctx->nr == 0 => replace
477 * We have verified above that the lowerdir mount option
478 * isn't an append, i.e., the lowerdir mount option
479 * doesn't start with ":" or "::".
480 * (4.1) The lowerdir mount options only contains regular lower
482 * => Nothing to verify.
483 * (4.2) The lowerdir mount options contains regular ":" and
485 * => We need to verify that data lower layers "::" aren't
486 * followed by regular ":" lower layers
487 * (5) If ctx->nr > 0 => append
488 * We know that there's at least one regular layer
489 * otherwise we would've failed when parsing the previous
490 * lowerdir mount option.
491 * (5.1) The lowerdir mount option is a regular layer ":" append
492 * => We need to verify that no data layers have been
494 * (5.2) The lowerdir mount option is a data layer "::" append
495 * We know that there's at least one regular layer or
496 * other data layers. => There's nothing to verify.
499 for (nr = ctx->nr; nr < nr_lower; nr++) {
501 memset(l, 0, sizeof(*l));
503 err = ovl_mount_dir_noesc(dup_iter, &l->path);
508 l->name = kstrdup(dup_iter, GFP_KERNEL_ACCOUNT);
515 /* Calling strchr() again would overrun. */
516 if ((nr + 1) == nr_lower)
520 dup_iter = strchr(dup_iter, '\0') + 1;
523 * This is a regular layer so we require that
524 * there are no data layers.
526 if ((ctx->nr_data + nr_data) > 0) {
527 pr_err("regular lower layers cannot follow data lower layers");
535 /* This is a data lower layer. */
540 ctx->nr_data += nr_data;
546 * We know nr >= ctx->nr < nr_lower. If we failed somewhere
547 * we want to undo until nr == ctx->nr. This is correct for
548 * both ctx->nr == 0 and ctx->nr > 0.
550 for (; nr >= ctx->nr; nr--) {
564 /* Intentionally don't realloc to a smaller size. */
568 static int ovl_parse_param(struct fs_context *fc, struct fs_parameter *param)
571 struct fs_parse_result result;
572 struct ovl_fs *ofs = fc->s_fs_info;
573 struct ovl_config *config = &ofs->config;
574 struct ovl_fs_context *ctx = fc->fs_private;
577 if (fc->purpose == FS_CONTEXT_FOR_RECONFIGURE) {
579 * On remount overlayfs has always ignored all mount
580 * options no matter if malformed or not so for
581 * backwards compatibility we do the same here.
587 * Give us the freedom to allow changing mount options
588 * with the new mount api in the future. So instead of
589 * silently ignoring everything we report a proper
590 * error. This is only visible for users of the new
593 return invalfc(fc, "No changes allowed in reconfigure");
596 opt = fs_parse(fc, ovl_parameter_spec, param, &result);
602 err = ovl_parse_param_lowerdir(param->string, fc);
607 err = ovl_parse_param_upperdir(param->string, fc,
608 (Opt_workdir == opt));
610 case Opt_default_permissions:
611 config->default_permissions = true;
613 case Opt_redirect_dir:
614 config->redirect_mode = result.uint_32;
615 if (config->redirect_mode == OVL_REDIRECT_OFF) {
616 config->redirect_mode = ovl_redirect_always_follow ?
617 OVL_REDIRECT_FOLLOW :
618 OVL_REDIRECT_NOFOLLOW;
620 ctx->set.redirect = true;
623 config->index = result.uint_32;
624 ctx->set.index = true;
627 config->uuid = result.uint_32;
630 config->nfs_export = result.uint_32;
631 ctx->set.nfs_export = true;
634 config->xino = result.uint_32;
637 config->metacopy = result.uint_32;
638 ctx->set.metacopy = true;
641 config->verity_mode = result.uint_32;
644 config->ovl_volatile = true;
647 config->userxattr = true;
650 pr_err("unrecognized mount option \"%s\" or missing value\n",
658 static int ovl_get_tree(struct fs_context *fc)
660 return get_tree_nodev(fc, ovl_fill_super);
663 static inline void ovl_fs_context_free(struct ovl_fs_context *ctx)
665 ovl_parse_param_drop_lowerdir(ctx);
666 path_put(&ctx->upper);
667 path_put(&ctx->work);
672 static void ovl_free(struct fs_context *fc)
674 struct ovl_fs *ofs = fc->s_fs_info;
675 struct ovl_fs_context *ctx = fc->fs_private;
678 * ofs is stored in the fs_context when it is initialized.
679 * ofs is transferred to the superblock on a successful mount,
680 * but if an error occurs before the transfer we have to free
687 ovl_fs_context_free(ctx);
690 static int ovl_reconfigure(struct fs_context *fc)
692 struct super_block *sb = fc->root->d_sb;
693 struct ovl_fs *ofs = OVL_FS(sb);
694 struct super_block *upper_sb;
697 if (!(fc->sb_flags & SB_RDONLY) && ovl_force_readonly(ofs))
700 if (fc->sb_flags & SB_RDONLY && !sb_rdonly(sb)) {
701 upper_sb = ovl_upper_mnt(ofs)->mnt_sb;
702 if (ovl_should_sync(ofs)) {
703 down_read(&upper_sb->s_umount);
704 ret = sync_filesystem(upper_sb);
705 up_read(&upper_sb->s_umount);
712 static const struct fs_context_operations ovl_context_ops = {
713 .parse_monolithic = ovl_parse_monolithic,
714 .parse_param = ovl_parse_param,
715 .get_tree = ovl_get_tree,
716 .reconfigure = ovl_reconfigure,
721 * This is called during fsopen() and will record the user namespace of
722 * the caller in fc->user_ns since we've raised FS_USERNS_MOUNT. We'll
723 * need it when we actually create the superblock to verify that the
724 * process creating the superblock is in the same user namespace as
725 * process that called fsopen().
727 int ovl_init_fs_context(struct fs_context *fc)
729 struct ovl_fs_context *ctx;
732 ctx = kzalloc(sizeof(*ctx), GFP_KERNEL_ACCOUNT);
737 * By default we allocate for three lower layers. It's likely
738 * that it'll cover most users.
740 ctx->lower = kmalloc_array(3, sizeof(*ctx->lower), GFP_KERNEL_ACCOUNT);
745 ofs = kzalloc(sizeof(struct ovl_fs), GFP_KERNEL);
749 ofs->config.redirect_mode = ovl_redirect_mode_def();
750 ofs->config.index = ovl_index_def;
751 ofs->config.uuid = ovl_uuid_def();
752 ofs->config.nfs_export = ovl_nfs_export_def;
753 ofs->config.xino = ovl_xino_def();
754 ofs->config.metacopy = ovl_metacopy_def;
757 fc->fs_private = ctx;
758 fc->ops = &ovl_context_ops;
762 ovl_fs_context_free(ctx);
767 void ovl_free_fs(struct ovl_fs *ofs)
769 struct vfsmount **mounts;
772 iput(ofs->workbasedir_trap);
773 iput(ofs->indexdir_trap);
774 iput(ofs->workdir_trap);
778 if (ofs->workdir_locked)
779 ovl_inuse_unlock(ofs->workbasedir);
780 dput(ofs->workbasedir);
781 if (ofs->upperdir_locked)
782 ovl_inuse_unlock(ovl_upper_mnt(ofs)->mnt_root);
784 /* Reuse ofs->config.lowerdirs as a vfsmount array before freeing it */
785 mounts = (struct vfsmount **) ofs->config.lowerdirs;
786 for (i = 0; i < ofs->numlayer; i++) {
787 iput(ofs->layers[i].trap);
788 kfree(ofs->config.lowerdirs[i]);
789 mounts[i] = ofs->layers[i].mnt;
791 kern_unmount_array(mounts, ofs->numlayer);
793 for (i = 0; i < ofs->numfs; i++)
794 free_anon_bdev(ofs->fs[i].pseudo_dev);
797 kfree(ofs->config.lowerdirs);
798 kfree(ofs->config.upperdir);
799 kfree(ofs->config.workdir);
800 if (ofs->creator_cred)
801 put_cred(ofs->creator_cred);
805 int ovl_fs_params_verify(const struct ovl_fs_context *ctx,
806 struct ovl_config *config)
808 struct ovl_opt_set set = ctx->set;
810 if (ctx->nr_data > 0 && !config->metacopy) {
811 pr_err("lower data-only dirs require metacopy support.\n");
815 /* Workdir/index are useless in non-upper mount */
816 if (!config->upperdir) {
817 if (config->workdir) {
818 pr_info("option \"workdir=%s\" is useless in a non-upper mount, ignore\n",
820 kfree(config->workdir);
821 config->workdir = NULL;
823 if (config->index && set.index) {
824 pr_info("option \"index=on\" is useless in a non-upper mount, ignore\n");
827 config->index = false;
830 if (!config->upperdir && config->ovl_volatile) {
831 pr_info("option \"volatile\" is meaningless in a non-upper mount, ignoring it.\n");
832 config->ovl_volatile = false;
835 if (!config->upperdir && config->uuid == OVL_UUID_ON) {
836 pr_info("option \"uuid=on\" requires an upper fs, falling back to uuid=null.\n");
837 config->uuid = OVL_UUID_NULL;
840 /* Resolve verity -> metacopy dependency */
841 if (config->verity_mode && !config->metacopy) {
842 /* Don't allow explicit specified conflicting combinations */
844 pr_err("conflicting options: metacopy=off,verity=%s\n",
845 ovl_verity_mode(config));
848 /* Otherwise automatically enable metacopy. */
849 config->metacopy = true;
853 * This is to make the logic below simpler. It doesn't make any other
854 * difference, since redirect_dir=on is only used for upper.
856 if (!config->upperdir && config->redirect_mode == OVL_REDIRECT_FOLLOW)
857 config->redirect_mode = OVL_REDIRECT_ON;
859 /* Resolve verity -> metacopy -> redirect_dir dependency */
860 if (config->metacopy && config->redirect_mode != OVL_REDIRECT_ON) {
861 if (set.metacopy && set.redirect) {
862 pr_err("conflicting options: metacopy=on,redirect_dir=%s\n",
863 ovl_redirect_mode(config));
866 if (config->verity_mode && set.redirect) {
867 pr_err("conflicting options: verity=%s,redirect_dir=%s\n",
868 ovl_verity_mode(config), ovl_redirect_mode(config));
873 * There was an explicit redirect_dir=... that resulted
876 pr_info("disabling metacopy due to redirect_dir=%s\n",
877 ovl_redirect_mode(config));
878 config->metacopy = false;
880 /* Automatically enable redirect otherwise. */
881 config->redirect_mode = OVL_REDIRECT_ON;
885 /* Resolve nfs_export -> index dependency */
886 if (config->nfs_export && !config->index) {
887 if (!config->upperdir &&
888 config->redirect_mode != OVL_REDIRECT_NOFOLLOW) {
889 pr_info("NFS export requires \"redirect_dir=nofollow\" on non-upper mount, falling back to nfs_export=off.\n");
890 config->nfs_export = false;
891 } else if (set.nfs_export && set.index) {
892 pr_err("conflicting options: nfs_export=on,index=off\n");
894 } else if (set.index) {
896 * There was an explicit index=off that resulted
899 pr_info("disabling nfs_export due to index=off\n");
900 config->nfs_export = false;
902 /* Automatically enable index otherwise. */
903 config->index = true;
907 /* Resolve nfs_export -> !metacopy && !verity dependency */
908 if (config->nfs_export && config->metacopy) {
909 if (set.nfs_export && set.metacopy) {
910 pr_err("conflicting options: nfs_export=on,metacopy=on\n");
915 * There was an explicit metacopy=on that resulted
918 pr_info("disabling nfs_export due to metacopy=on\n");
919 config->nfs_export = false;
920 } else if (config->verity_mode) {
922 * There was an explicit verity=.. that resulted
925 pr_info("disabling nfs_export due to verity=%s\n",
926 ovl_verity_mode(config));
927 config->nfs_export = false;
930 * There was an explicit nfs_export=on that resulted
933 pr_info("disabling metacopy due to nfs_export=on\n");
934 config->metacopy = false;
939 /* Resolve userxattr -> !redirect && !metacopy && !verity dependency */
940 if (config->userxattr) {
942 config->redirect_mode != OVL_REDIRECT_NOFOLLOW) {
943 pr_err("conflicting options: userxattr,redirect_dir=%s\n",
944 ovl_redirect_mode(config));
947 if (config->metacopy && set.metacopy) {
948 pr_err("conflicting options: userxattr,metacopy=on\n");
951 if (config->verity_mode) {
952 pr_err("conflicting options: userxattr,verity=%s\n",
953 ovl_verity_mode(config));
957 * Silently disable default setting of redirect and metacopy.
958 * This shall be the default in the future as well: these
959 * options must be explicitly enabled if used together with
962 config->redirect_mode = OVL_REDIRECT_NOFOLLOW;
963 config->metacopy = false;
971 * @m: the seq_file handle
972 * @dentry: The dentry to query
974 * Prints the mount options for a given superblock.
975 * Returns zero; does not fail.
977 int ovl_show_options(struct seq_file *m, struct dentry *dentry)
979 struct super_block *sb = dentry->d_sb;
980 struct ovl_fs *ofs = OVL_FS(sb);
981 size_t nr, nr_merged_lower = ofs->numlayer - ofs->numdatalayer;
982 char **lowerdatadirs = &ofs->config.lowerdirs[nr_merged_lower];
984 /* lowerdirs[] starts from offset 1 */
985 seq_printf(m, ",lowerdir=%s", ofs->config.lowerdirs[1]);
986 /* dump regular lower layers */
987 for (nr = 2; nr < nr_merged_lower; nr++)
988 seq_printf(m, ":%s", ofs->config.lowerdirs[nr]);
989 /* dump data lower layers */
990 for (nr = 0; nr < ofs->numdatalayer; nr++)
991 seq_printf(m, "::%s", lowerdatadirs[nr]);
992 if (ofs->config.upperdir) {
993 seq_show_option(m, "upperdir", ofs->config.upperdir);
994 seq_show_option(m, "workdir", ofs->config.workdir);
996 if (ofs->config.default_permissions)
997 seq_puts(m, ",default_permissions");
998 if (ofs->config.redirect_mode != ovl_redirect_mode_def())
999 seq_printf(m, ",redirect_dir=%s",
1000 ovl_redirect_mode(&ofs->config));
1001 if (ofs->config.index != ovl_index_def)
1002 seq_printf(m, ",index=%s", ofs->config.index ? "on" : "off");
1003 if (ofs->config.uuid != ovl_uuid_def())
1004 seq_printf(m, ",uuid=%s", ovl_uuid_mode(&ofs->config));
1005 if (ofs->config.nfs_export != ovl_nfs_export_def)
1006 seq_printf(m, ",nfs_export=%s", ofs->config.nfs_export ?
1008 if (ofs->config.xino != ovl_xino_def() && !ovl_same_fs(ofs))
1009 seq_printf(m, ",xino=%s", ovl_xino_mode(&ofs->config));
1010 if (ofs->config.metacopy != ovl_metacopy_def)
1011 seq_printf(m, ",metacopy=%s",
1012 ofs->config.metacopy ? "on" : "off");
1013 if (ofs->config.ovl_volatile)
1014 seq_puts(m, ",volatile");
1015 if (ofs->config.userxattr)
1016 seq_puts(m, ",userxattr");
1017 if (ofs->config.verity_mode != ovl_verity_mode_def())
1018 seq_printf(m, ",verity=%s",
1019 ovl_verity_mode(&ofs->config));