Being responsible for the ZFS kernel modules, I thought that I would forward a request on behalf of upstream: "we need convince the major distributions which enable SELinux by default to add ZFS as a known filesystem type which supports xattrs." https://github.com/zfsonlinux/zfs/issues/220 Currently, the upstream code needs to be patched to build on Gentoo Hardened, but I wanted to open dialogue with the SELinux herd about ZFS support in advance of that. https://github.com/zfsonlinux/zfs/issues/484
I don't mind giving ZFS a go in a vm to see if it works out fine. If it does (with the patches you mention in the post) we'll have to make sure the patches are either added by gentoo, or by upstream. I can then update docs to refer to ZFS as a supported file system as well.
Haven't forgotten this one, just want to finish the 2.20120215 release first.
Okay, any good pointers on getting ZFS to work on Gentoo Linux (without SELinux)?
All of my current usable work on ZFS is now available from an overlay: https://github.com/gentoofan/zfs-overlay It will live there until certain features are merged upstream. There are notes for installing Gentoo in the zfs-install document.
It seems that the policy in Fedora has been changed to support ZFS: https://github.com/zfsonlinux/zfs/issues/220#issuecomment-5953792
Here is the line from Fedora's policy that adds SELinux support: fs_use_xattr zfs gen_context(system_u:object_r:fs_t,s0); They apply it to policy/modules/kernel/filesystem.te.
Created attachment 322529 [details, diff] zfs filesystem support Here would be initial support for zfs.
Long overdue, but committed. Strange that it still hasn't found the upstream repo, but as it's a small one-liner, I've added it in ours already anyway.
Sorry Matt, taking this one on me ;)
r7 is now in hardened-dev
In main tree, ~arch'ed
r8 is now stable
