-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_storage.patch
Additonal file context
Allow management of fixed_disk_device_t chr_file
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkmu86YACgkQrlYvE4MpobNkUgCfQTTagZy4JCtoLM4/yCAFAq/t
P1gAoMt8zPO41q0BrQZXnZWmdDa32iJ/
=xZHs
-----END PGP SIGNATURE-----
On Wed, 2009-03-04 at 16:33 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_storage.patch
>
> Additonal file context
>
> Allow management of fixed_disk_device_t chr_file
Are you sure about the MLS change of the FUSE device to system low, from
system high?
Otherwise merged.
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Christopher J. PeBenito wrote:
> On Wed, 2009-03-04 at 16:33 -0500, Daniel J Walsh wrote:
>> http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_storage.patch
>>
>> Additonal file context
>>
>> Allow management of fixed_disk_device_t chr_file
>
> Are you sure about the MLS change of the FUSE device to system low, from
> system high?
>
> Otherwise merged.
>
fuse file systems are mounted on users home directories by default in
F10/F11 so a MLS login as a user will only work if this is SystemLow.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkmwC78ACgkQrlYvE4MpobOE1ACfUUhjqh5NEwdTvc/brUd7Lq+m
OHYAn0gq/dCrp14b3cUtkGuogza/qt/i
=gxs+
-----END PGP SIGNATURE-----
On Thu, 2009-03-05 at 12:28 -0500, Daniel J Walsh wrote:
> Christopher J. PeBenito wrote:
> > On Wed, 2009-03-04 at 16:33 -0500, Daniel J Walsh wrote:
> >> http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_storage.patch
> >>
> >> Additonal file context
> >>
> >> Allow management of fixed_disk_device_t chr_file
> >
> > Are you sure about the MLS change of the FUSE device to system low, from
> > system high?
> >
> > Otherwise merged.
> >
> fuse file systems are mounted on users home directories by default in
> F10/F11 so a MLS login as a user will only work if this is SystemLow.
Can you describe more fully what the scenario is? I'm having trouble
seeing where the MLS issue is. It seems like mount should be able to
handle this fine.
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Christopher J. PeBenito wrote:
> On Thu, 2009-03-05 at 12:28 -0500, Daniel J Walsh wrote:
>> Christopher J. PeBenito wrote:
>>> On Wed, 2009-03-04 at 16:33 -0500, Daniel J Walsh wrote:
>>>> http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_storage.patch
>>>>
>>>> Additonal file context
>>>>
>>>> Allow management of fixed_disk_device_t chr_file
>>> Are you sure about the MLS change of the FUSE device to system low, from
>>> system high?
>>>
>>> Otherwise merged.
>>>
>> fuse file systems are mounted on users home directories by default in
>> F10/F11 so a MLS login as a user will only work if this is SystemLow.
>
> Can you describe more fully what the scenario is? I'm having trouble
> seeing where the MLS issue is. It seems like mount should be able to
> handle this fine.
>
I am not logged in as MLS right now so, I can't regenerate. It could be
that some app during the login was not running ranged and could not
execute a ranged mount.
Hold off on the label, and I will see try MLS on my laptop again and see
if I can get more info.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkmwJVUACgkQrlYvE4MpobPHBgCfShVtHRF3AhaUDLR/vPzH82TC
KCkAmwf16O5oxKiZvPBU+uRYhElOOdH8
=NYUV
-----END PGP SIGNATURE-----