Does SElinux resolve loop mounts?

asked 2015-01-18 08:08:02 -0500

theonlyandy gravatar image

I'm using an entirely encrypted home folder with ecryptfs.

SElinux is telling me that plugin-container is trying to access files on /home/.ecryptfs/andy/.Private …

Is something going wrong and plugin-container is really trying to access that files directly, or is SElinux resolving the access attempt because /home/andy is mounted to /home/.ecryptfs/andy/.Private?

Thanks.

edit retag flag offensive close merge delete

Comments

After some reading on the mailing lists it seems that permissions are checked twice for looped mounts like ecryptfs: It's mentioned that the contexts need to be the same on the encrypted and the decrypted directorie.

theonlyandy gravatar imagetheonlyandy ( 2015-01-18 10:17:18 -0500 )edit