F2FS selinux contexts

Mon Jun 23 11:29:09 UTC 2014

I just checked this change into Fedora Rawhide Policy.

diff --git a/policy/modules/kernel/filesystem.te
b/policy/modules/kernel/filesys
index 089cc7a..c0b17f8 100644
--- a/policy/modules/kernel/filesystem.te
+++ b/policy/modules/kernel/filesystem.te
@@ -26,6 +26,7 @@ fs_use_xattr ext2 gen_context(system_u:object_r:fs_t,s0);
 fs_use_xattr ext3 gen_context(system_u:object_r:fs_t,s0);
 fs_use_xattr ext4 gen_context(system_u:object_r:fs_t,s0);
 fs_use_xattr ext4dev gen_context(system_u:object_r:fs_t,s0);
+fs_use_xattr f2fs gen_context(system_u:object_r:fs_t,s0);
 fs_use_xattr gfs gen_context(system_u:object_r:fs_t,s0);
 fs_use_xattr gfs2 gen_context(system_u:object_r:fs_t,s0);
 fs_use_xattr gpfs gen_context(system_u:object_r:fs_t,s0);


What RedHat/Fedora OS will be using f2fs?


On 06/22/2014 01:09 AM, Brian Chadwick wrote:
> Hi ... Fedora 20 here ... I am trying to get selinux-contexts working
> with a F2FS filesystem . .
>
> I have recompiled the kernel with f2fs security labels selected.
>
>
>  on mounting dmesg reports: .[ 8575.016144] SELinux: initialized (dev
> sda6, type f2fs), not configured for labeling ... and consequently
> file contexts aren't working
>
> Is this something to do with fs_use_xattr in filesystem.te in
> selinux-policy?
>
>  ... is there a runtime fix or does this require recoding sections of
> selinux-policy and recompiling.
>
> someone also mentioned to e something about "ocontext" ... I have no
> idea what that is
>
>  Thanks in advance
>
> Brian
> -- 
> selinux mailing list
> selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux

