[PATCH 6/9] security, overlayfs: Provide hook to correctly label newly created files

During a new file creation we need to make sure new file is created with the right label. New file is created in upper/ so effectively file should get label as if task had created file in upper/. We switched to mounter's creds for actual file creation. Also if there is a whiteout present, then fil

Re: [PATCH 6/9] security, overlayfs: Provide hook to correctly label newly created files

On 07/13/2016 10:44 AM, Vivek Goyal wrote: > During a new file creation we need to make sure new file is created with the > right label. New file is created in upper/ so effectively file should get > label as if task had created file in upper/. > > We switched to mounter's creds for actual file cr

Re: [PATCH 6/9] security, overlayfs: Provide hook to correctly label newly created files

On 07/13/2016 10:44 AM, Vivek Goyal wrote: > During a new file creation we need to make sure new file is created with the > right label. New file is created in upper/ so effectively file should get > label as if task had created file in upper/. > > We switched to mounter's creds for actual file cr

Re: [PATCH 6/9] security, overlayfs: Provide hook to correctly label newly created files

On 07/13/2016 10:57 AM, Stephen Smalley wrote: > On 07/13/2016 10:44 AM, Vivek Goyal wrote: >> During a new file creation we need to make sure new file is created with the >> right label. New file is created in upper/ so effectively file should get >> label as if task had created file in upper/. >>