Eric Paris wrote:
Currently if a FS is mounted for which SELinux policy does not define an fs_use_* that FS will either be genfs labeled or not labeled at all. This decision is based on the existence of a genfscon rule in policy and is irrespective of the capabilities of the filesystem itself. This patch allows the kernel to check if the filesystem supports security xattrs and if so will use those if there is no fs_use_* rule in policy. An fstype with a no fs_use_* rule but with a genfs rule will use xattrs if available and will follow the genfs rule
Have you tried this with ntfs-3g and unionfs? I don't think you'll have a problem with ntfs-3g, but if your code works properly on getxattr on unionfs I'd be mildly surprised. Pleased mind you, because then I could look at your code and see what I've done wrong, but surprised nonetheless. -- ---------------------- Casey Schaufler casey@xxxxxxxxxxxxxxxx 650.906.1780 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
