context not inherited on mounted FS

Dovydas Sankauskas laisve at gmail.com
Thu Feb 23 15:22:08 UTC 2006


Thanks you for bringing some light! :))

I think I will wait for 2.6.16 kernel and by now I will turn off SELinux.

2006/2/23, Stephen Smalley <sds at tycho.nsa.gov>:
> On Thu, 2006-02-23 at 13:08 +0000, Dovydas Sankauskas wrote:
> > I have dir
> > $ l -dZ /home/dovydas/muzika
> > drwxrwxr-x  dovydas  dovydas  user_u:object_r:user_home_t
> > /home/dovydas/muzika/
> >
> > I mount here external usb hdd
> > $ mount
> > /dev/sda1 on /home/dovydas/muzika type xfs (rw,noexec)
> >
> > When I do
> > $ touch /home/dovydas/muzika/sample
> > I get
> > $ l -Z /home/dovydas/muzika/sample
> > -rw-rw-r--  dovydas  dovydas  system_u:object_r:file_t
> > /home/dovydas/muzika/sample
> >
> > Why context is not inherited? How can I solve this problem? I saw this
> > problem, when I tried to connect to my computer via ftp. I simply can
> > not see file "sample" via ftp. I can create a subdir, but i can not
> > see it. All other dirs are allright, except this one
> > /home/dovydas/muzika, which is mounted external hdd.
>
> First, a mounted directory won't inherit from the mount point directory
> - it has its own extended attribute.  Second, xfs has a known issue with
> SELinux labeling in 2.6.14 and 2.6.15, which has been fixed upstream for
> 2.6.16.  See:
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=176600
>
> You might want to add a comment to that bug noting that you need
> xfs/SELinux support and asking about getting the xfs patches
> incorporated into a future FC4 kernel update (assuming you are using
> FC4).  But they might just wait until 2.6.16 comes out.
>
> --
> Stephen Smalley
> National Security Agency
>
>


--

Dovydas Sankauskas




More information about the fedora-selinux-list mailing list