Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add ability to set fscontext mounts points #196

Merged
merged 1 commit into from
Feb 8, 2023
Merged

Add ability to set fscontext mounts points #196

merged 1 commit into from
Feb 8, 2023

Conversation

rhatdan
Copy link
Collaborator

@rhatdan rhatdan commented Feb 7, 2023

SELinux supports mounting file systems with multiple different file system types, adding new interface FormatMountLabelByType, allows the caller to specify the SELinux context type to mount the file system with.

Mount supports multiple different file system types.

context, fscontext, rootcontext, defcontext.

Signed-off-by: Daniel J Walsh dwalsh@redhat.com

giuseppe
giuseppe reviewed Feb 7, 2023
View reviewed changes
go-selinux/label/label.go Outdated
@@ -78,19 +78,37 @@ func ReleaseLabel(label string) error {
// Deprecated: use selinux.DupSecOpt
var DupSecOpt = selinux.DupSecOpt

// FormatMountLabel returns a string to be used by the mount command. Using
// the SELinux `context` mount option. Changling labels of files on mount
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

typo in Changling

go-selinux/label/label_test.go Outdated
}

expected = `src,fscontext="foobar"`
if test := FormatMountLabel("src", "foobar", "fscontext"); test != expected {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

FormatMountLabelByType?

@rhatdan
Add ability to set fscontext mounts points
c78503f 
SELinux supports mounting file systems with multiple different file
system types, adding new interface FormatMountLabelByType, allows the
caller to specify the SELinux context type to mount the file system
with.

Mount supports multiple different file system types.

context, fscontext, rootcontext, defcontext.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
@rhatdan
Copy link
Collaborator Author

rhatdan commented Feb 8, 2023

@thaJeztah @kolyshkin @vrothberg PTAL

vrothberg
vrothberg approved these changes Feb 8, 2023
View reviewed changes
Copy link
Collaborator

@vrothberg vrothberg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

giuseppe
giuseppe approved these changes Feb 8, 2023
View reviewed changes
Copy link
Member

@giuseppe giuseppe left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@rhatdan rhatdan merged commit 861be7b into opencontainers:main Feb 8, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@giuseppe giuseppe giuseppe approved these changes

@vrothberg vrothberg vrothberg approved these changes

@kolyshkin kolyshkin Awaiting requested review from kolyshkin kolyshkin is a code owner

@mrunalp mrunalp Awaiting requested review from mrunalp mrunalp is a code owner

@runcom runcom Awaiting requested review from runcom runcom is a code owner

@thaJeztah thaJeztah Awaiting requested review from thaJeztah thaJeztah is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@rhatdan @giuseppe @vrothberg