All of lore.kernel.org
 help / color / mirror / Atom feed
* SE Linux savvy union FS?
@ 2015-03-16 14:13 Minear, Spencer
  2015-03-16 15:03 ` Stephen Smalley
  0 siblings, 1 reply; 2+ messages in thread
From: Minear, Spencer @ 2015-03-16 14:13 UTC (permalink / raw)
  To: SELinux (selinux@tycho.nsa.gov)

[-- Attachment #1: Type: text/plain, Size: 1057 bytes --]

I am looking for a union file system that can provide copy on write when overlaid on a SE Linux labeled read only  squash file system, that will provide the ability to manage the SE Linux file contexts using the same rules used when building the original SE Linux labeled squash file system.



I've found a number of pages on the topic of union file systems related to Linux.  However many appear to be out of data and none lead to a solution to my question.   I found at least one page that suggests that what I'm looking for has been or can be done, but I never found any specifics that suggested how to actually do it, and again it may have been out of date relative to the facilities that I am using.



So my questions are:



1.       Does this capability exists?

2.       Are there some how-to examples that show how to do it?



FYI, I am using a Debian distribution so information on that distribution of Linux would be most useful.



Thanks for any and all pointers that you may be able to provide.



Spencer Minear

[-- Attachment #2: Type: text/html, Size: 5294 bytes --]

^ permalink raw reply	[flat|nested] 2+ messages in thread
* Re: SE Linux savvy union FS?
  2015-03-16 14:13 SE Linux savvy union FS? Minear, Spencer
@ 2015-03-16 15:03 ` Stephen Smalley
  0 siblings, 0 replies; 2+ messages in thread
From: Stephen Smalley @ 2015-03-16 15:03 UTC (permalink / raw)
  To: Minear, Spencer, SELinux (selinux@tycho.nsa.gov)

On 03/16/2015 10:13 AM, Minear, Spencer wrote:
> I am looking for a union file system that can provide copy on write when
> overlaid on a SE Linux labeled read only  squash file system, that will
> provide the ability to manage the SE Linux file contexts using the same
> rules used when building the original SE Linux labeled squash file system.
> 
>  
> 
> I've found a number of pages on the topic of union file systems related
> to Linux.  However many appear to be out of data and none lead to a
> solution to my question.   I found at least one page that suggests that
> what I'm looking for has been or can be done, but I never found any
> specifics that suggested how to actually do it, and again it may have
> been out of date relative to the facilities that I am using.
> 
>  
> 
> So my questions are:
> 
>  
> 
> 1.       Does this capability exists?
> 
> 2.       Are there some how-to examples that show how to do it?
> 
>  
> 
> FYI, I am using a Debian distribution so information on that
> distribution of Linux would be most useful.
> 
>  
> 
> Thanks for any and all pointers that you may be able to provide.

You might try using overlayfs, as it is in mainline Linux (as of Linux
3.18) and it has logic for copying-up xattrs from the lower filesystem.
 That said, I have not tested it and do not know whether it truly works
well with SELinux.

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2015-03-16 15:03 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2015-03-16 14:13 SE Linux savvy union FS? Minear, Spencer
2015-03-16 15:03 ` Stephen Smalley

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.