Skip to content
Snippets Groups Projects
Commit 90411729 authored by Stephen Smalley's avatar Stephen Smalley Committed by Ed Tam
Browse files

Enable setting security contexts on rootfs inodes.


rootfs (ramfs) can support setting of security contexts
by userspace due to the vfs fallback behavior of calling
the security module to set the in-core inode state
for security.* attributes when the filesystem does not
provide an xattr handler.  No xattr handler required
as the inodes are pinned in memory and have no backing
store.

This is useful in allowing early userspace to label individual
files within a rootfs while still providing a policy-defined
default via genfs.

Signed-off-by: default avatarStephen Smalley <sds@tycho.nsa.gov>
parent 565b635c
No related branches found
No related tags found
No related merge requests found
Loading
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment