unlabeled_t types for files
Stephen Smalley
sds at tycho.nsa.gov
Thu Oct 18 19:53:52 UTC 2012
On 10/18/2012 03:49 PM, Anamitra Dutta Majumdar (anmajumd) wrote:
> Hi Stephen,
>
> Alternatively can we set the filesystem type to start with? So that the
> initial label is not
> unlabeled_t. If so where can we do this?
That would require a modified policy, to define a labeling behavior for
dbcfs via a genfscon statement in policy/modules/kernel/filesystem.te.
But that has to be built into the base policy module; you can't add it
via a non-base policy module. Likely simpler to just allow mount_t to
do this.
More information about the selinux
mailing list