From mboxrd@z Thu Jan 1 00:00:00 1970 From: Daniel J Walsh Subject: Re: [RFC PATCH 0/9][V3] Overlayfs SELinux Support Date: Wed, 10 Aug 2016 08:52:17 -0400 Message-ID: <0dcbfc0b-11bd-061e-f679-91346ddc5ac1@redhat.com> References: <1468421095-22322-1-git-send-email-vgoyal@redhat.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: Sender: linux-kernel-owner@vger.kernel.org To: Paul Moore , Miklos Szeredi , Vivek Goyal Cc: Stephen Smalley , Paul Moore , James Morris , Casey Schaufler , linux-kernel@vger.kernel.org, "linux-unionfs@vger.kernel.org" , LSM , David Howells , Al Viro , linux-fsdevel@vger.kernel.org List-Id: linux-unionfs@vger.kernel.org On 08/10/2016 08:32 AM, Paul Moore wrote: > On Wed, Aug 10, 2016 at 5:11 AM, Miklos Szeredi wrote: >> On Tue, Aug 9, 2016 at 3:19 AM, Paul Moore wrote: >>> Okay, I just merged these patches into selinux#next. With the >>> exception of some changes to restore the mode argument to >>> ovl_create_or_link() and to fix some whitespace damage the patches >>> were merged cleanly. >> Don't need to add the back the mode argument, just use stat->mode. > Thanks for the pointer (I'm on vacation at the moment and trying to do > this quickly). Since it was a merge issue, and the branch hasn't been > pulled by Linus, I didn't bother with a new patch, I simply updated > the existing patch from Vivek and re-pushed to selinux#next. If you > see anything else, please let me know. > > For Fedora folks, I'm currently rebuilding the COPR > pcmoore/kernel-secnext kernel packages with this update; assuming > there are no problems with the COPR infrastructure the kernel should > be ready in a couple of hours. > > * https://copr.fedorainfracloud.org/coprs/pcmoore/kernel-secnext > Cool once there is a kernel with ovlerlay fs/selinux support I will run it on my laptop and attempt the selinux test suite, if everything goes well I will start running docker on overlay with selinux enforcing mode.