git://ftp.safe.ca / safe / jmp / linux-2.6 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 11689d4) | patch
SELinux: Unify context mount and genfs behavior
authorDavid P. Quigley <dpquigl@tycho.nsa.gov>
Fri, 16 Jan 2009 14:22:04 +0000 (09:22 -0500)
committerJames Morris <jmorris@macbook.localdomain>
Sun, 18 Jan 2009 22:47:14 +0000 (09:47 +1100)
commitcd89596f0ccfa3ccb8a81ce47782231cf7ea7296
treed91149851e14a21d1e535c325aa93ebd15130f51tree | snapshot
parent11689d47f0957121920c9ec646eb5d838755853acommit | diff
SELinux: Unify context mount and genfs behavior

Context mounts and genfs labeled file systems behave differently with respect to
setting file system labels. This patch brings genfs labeled file systems in line
with context mounts in that setxattr calls to them should return EOPNOTSUPP and
fscreate calls will be ignored.

Signed-off-by: David P. Quigley <dpquigl@tycho.nsa.gov>
Acked-by: Eric Paris <eparis@redhat.com>
Signed-off-by: James Morris <jmorris@macbook.localdomain>
security/selinux/hooks.c diff | blob | history
Full containers within linux kernel