From a974fa76e481a1a4b1383d2b329310908f20c0bd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?St=C3=A9phane=20Graber?= <stgraber@ubuntu.com>
Date: Wed, 12 Feb 2014 11:58:15 -0500
Subject: [PATCH] lxc-start-ephemeral: Allow unprivileged run
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This allows running lxc-start-ephemeral using overlayfs. aufs remains
blocked as it hasn't been looked at and patched to work in the kernel at
this point (not sure if it ever wil).

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>
Acked-by: Serge E. Hallyn <serge.hallyn@ubuntu.com>
---
 src/lxc/lxc-start-ephemeral.in | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/lxc/lxc-start-ephemeral.in b/src/lxc/lxc-start-ephemeral.in
index 62a6194e8..33c713ad6 100644
--- a/src/lxc/lxc-start-ephemeral.in
+++ b/src/lxc/lxc-start-ephemeral.in
@@ -105,8 +105,9 @@ args = parser.parse_args()
 
 # Basic requirements check
 ## We only support privileged containers for now
-if os.geteuid() != 0:
-    parser.error(_("Unprivileged containers aren't supported at this time."))
+if os.geteuid() != 0 and args.union_type != "overlayfs":
+    parser.error(_("Unprivileged containers may only use "
+                   "overlayfs at this time."))
 
 ## Check that -d and CMD aren't used at the same time
 if args.command and args.daemon: