On Thu, 2008-06-12 at 13:26 -0400, Eric Paris wrote: > Currently if a fs is mounted for which selinux policy does not define an > fs_use_* or a genfscon statement that FS will not support labeling of > any kind. This patch allows the kernel to check if the filesystem > supports security xattrs and if so will use those if there is no > fs_use_* rule in policy. An fstype with a genfs rule will use xattrs if > available and will follow the genfs rule if they are not. Let met verify what I think I read in the patch. The filesystem labeling behavior (filesystem class) is unchanged, right? i.e. 1. no fs_use + genfs + security xattr on fs = genfs type for fs 2. no fs_use + no genfs + security xattr on fs = unlabeled isid for fs -- Chris PeBenito Tresys Technology, LLC (410) 290-1411 x150 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
