1 files changed, 20 insertions, 0 deletions
diff --git a/src/firejail/usage.c b/src/firejail/usage.c
index ebe1c8830..d4eab7802 100644
--- a/src/firejail/usage.c
+++ b/src/firejail/usage.c
@@ -185,10 +185,30 @@ void usage(void) {
        printf("\t$HOME/.firejail/<NAME> directory. (OverlayFS support is required in\n");
        printf("\tLinux kernel for this option to work). \n\n");
+#if 0 // disabled for now, it could be used to overwrite system directories     
        printf("    --overlay-path=path - mount a filesystem overlay on top of the current\n");
        printf("\tfilesystem. The upper filesystem layer is persistent, and stored in\n");
        printf("\tthe specified path. (OverlayFS support is required in Linux kernel for\n");
        printf("\tthis option to work). \n\n");
+        
+.TP
+\fB\-\-overlay-path=path
+Mount a filesystem overlay on top of the current filesystem.  Unlike the regular filesystem container,
+the system directories are mounted read-write. All filesystem modifications go into the overlay.
+The overlay is stored in the specified path. The created overlay can be reused between multiple sessions.
+.br
+.br
+OverlayFS support is required in Linux kernel for this option to work.
+OverlayFS was officially introduced in Linux kernel version 3.18.
+This option is not available on Grsecurity systems.
+.br
+.br
+Example:
+.br
+$ firejail \-\-overlay-path=~/jails/jail1 firefox
+#endif
        printf("    --overlay-tmpfs - mount a filesystem overlay on top of the current\n");
        printf("\tfilesystem. The upper layer is stored in a tmpfs filesystem,\n");

diff --git a/src/firejail/usage.c b/src/firejail/usage.c index ebe1c8830..d4eab7802 100644 --- a/src/firejail/usage.c +++ b/src/firejail/usage.c
@@ -185,10 +185,30 @@ void usage(void) {
185	printf("\t$HOME/.firejail/<NAME> directory. (OverlayFS support is required in\n");	185	printf("\t$HOME/.firejail/<NAME> directory. (OverlayFS support is required in\n");
186	printf("\tLinux kernel for this option to work). \n\n");	186	printf("\tLinux kernel for this option to work). \n\n");
187		187
		188	#if 0 // disabled for now, it could be used to overwrite system directories
188	printf(" --overlay-path=path - mount a filesystem overlay on top of the current\n");	189	printf(" --overlay-path=path - mount a filesystem overlay on top of the current\n");
189	printf("\tfilesystem. The upper filesystem layer is persistent, and stored in\n");	190	printf("\tfilesystem. The upper filesystem layer is persistent, and stored in\n");
190	printf("\tthe specified path. (OverlayFS support is required in Linux kernel for\n");	191	printf("\tthe specified path. (OverlayFS support is required in Linux kernel for\n");
191	printf("\tthis option to work). \n\n");	192	printf("\tthis option to work). \n\n");
		193
		194	.TP
		195	\fB\-\-overlay-path=path
		196	Mount a filesystem overlay on top of the current filesystem. Unlike the regular filesystem container,
		197	the system directories are mounted read-write. All filesystem modifications go into the overlay.
		198	The overlay is stored in the specified path. The created overlay can be reused between multiple sessions.
		199	.br
		200
		201	.br
		202	OverlayFS support is required in Linux kernel for this option to work.
		203	OverlayFS was officially introduced in Linux kernel version 3.18.
		204	This option is not available on Grsecurity systems.
		205	.br
		206
		207	.br
		208	Example:
		209	.br
		210	$ firejail \-\-overlay-path=~/jails/jail1 firefox
		211	#endif
192		212
193	printf(" --overlay-tmpfs - mount a filesystem overlay on top of the current\n");	213	printf(" --overlay-tmpfs - mount a filesystem overlay on top of the current\n");
194	printf("\tfilesystem. The upper layer is stored in a tmpfs filesystem,\n");	214	printf("\tfilesystem. The upper layer is stored in a tmpfs filesystem,\n");