-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_filesystem.patch
Add label for /dev/shm to be tmpfs_t
Add lots of interfaces for cifs, nfs, dos
to handle things like xdm appending .xsession-errors in homedirs if they are nfs, or cifs
Allow people to mounton cifs and nfs file systems (they do)
Interfaces to handle new fusefs in the homedir.
Fix sorting on btfs in filesystem.te
Add type for ecryptfs_t
Add types for vmblock file systems
Setup ncpfs and dazukofs as nfs_t
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkmsW6kACgkQrlYvE4MpobN24ACdHnBZXkm1TUSFi/nhaQ7wJG0r
btcAmweLsXCpdlmUxPc1uMcd6cC23S3f
=1CVf
-----END PGP SIGNATURE-----
On Mon, 2009-03-02 at 17:20 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_filesystem.patch
>
>
> Add label for /dev/shm to be tmpfs_t
I'm not sure we want this. If a tmpfs isn't mounted there, I think we
want the directory to remain device_t.
> Add lots of interfaces for cifs, nfs, dos
I did some rearrangement. I also dropped the
fs_dontaudit_list_cifs_dirs() as there already is a
fs_dontaudit_list_cifs().
Otherwise, merged.
> to handle things like xdm appending .xsession-errors in homedirs if they are nfs, or cifs
>
> Allow people to mounton cifs and nfs file systems (they do)
>
> Interfaces to handle new fusefs in the homedir.
>
> Fix sorting on btfs in filesystem.te
>
> Add type for ecryptfs_t
>
> Add types for vmblock file systems
>
> Setup ncpfs and dazukofs as nfs_t
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150