[Seedit-devel] create domain
Yuichi Nakamura
himainu-ynakam at miomio.jp
Thu May 15 15:14:45 BST 2008
Hi.
On Wed, 14 May 2008 17:16:05 -0700 (PDT)
run zhang wrote:
> Hi Yuichi,
> I tried, all domains started when booting are still in kernel_t, while comman-line started domains are in right domain names. (as before, with program-based domain transitions)
> I don't know if this is due to the nfs rootfs right now, ie., all files are lablled with nfs_t at booting, and I put a setfile /etc/selinux/seedit/contexts/files/file_contexts script to label in rc.d, after init.
> I will flash to the embededd device to try. Thanks.
NFS rootfile system does not work well with SELinux.
Because all files are labeled as nfs_t as you say.
But it is inconvenient..
Some development is going to assign label to nfs, but I do not know progress.
I will discuss NFS root filesystem with SELinux at Ottawa this July.
If anyone come up with good idea about NFS, please tell me.
--
Yuichi Nakamura
More information about the Seedit-devel
mailing list