git.baikalelectronics.ru Git - kernel.git/commit

author	Eric Paris <eparis@parisplace.org>
	Mon, 10 Jul 2006 11:43:53 +0000 (04:43 -0700)
committer	Linus Torvalds <torvalds@g5.osdl.org>
	Mon, 10 Jul 2006 20:24:13 +0000 (13:24 -0700)
commit	e42cc8677e0dca3c0876d4b8818f1652893b44bf
tree	dd985aa4dd0b759690af9557a5170dabf589d87f	tree \| snapshot
parent	2d0d2e73af57f5b0dc50ca4eef97b50ed42d2732	commit \| diff

[PATCH] SELinux: decouple fscontext/context mount options

Remove the conflict between fscontext and context mount options. If
context= is specified without fscontext it will operate just as before, if
both are specified we will use mount point labeling and all inodes will get
the label specified by context=. The superblock will be labeled with the
label of fscontext=, thus affecting operations which check the superblock
security context, such as associate permissions.

Signed-off-by: Eric Paris <eparis@parisplace.org>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
Signed-off-by: Andrew Morton <akpm@osdl.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>

security/selinux/hooks.c		diff \| blob \| history
security/selinux/include/objsec.h		diff \| blob \| history