Hello fellow selinux users:
I am currently working on a system that uses embedded linux with a few jffs2 file systems on NAND flash. Each time my device boots, several flash partitions are mounted to various mount points throughout my root fs. Some are readonly, a couple are rw.
What I am seeing is that sometimes, when the mount happens on a rw partition, the label that shows for the mount point is "file_t". This is not the label that was contained in the xattr on the last boot. My selinux policy is set up to mark file systems which are missing the security.selinux attrs as file_t. In each subsequent boot/mount, the root directory of the mounted filesystem remains "file_t" until I manually chcon or restorecon (in premissive)
Furthermore, there are no domains in the selinux policy that have permissions to relabel directories of the type that I am mounting. So my first question is, does anyone have any idea as to how the label could disappear? Has anyone ever seen behavior like this on JFFS2?
Is this more of a jffs2 question? Other attrs like date modified, and DAC permissions remain intact.
I thank anyone for the consideration.
Judd
_______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
