Can I use SELinux with any file system?
SELinux requires access to a file’s security context to operate properly. To do so, SELinux uses extended file attributes which needs to be properly supported by the underlying file system. If the file system supports extended file attributes and you have configured your kernel to enable this support, then SELinux will work on those file systems. General Linux file systems, such as ext2, ext3, ext4, jfs, xfs and btrfs support extended attributes (but don’t forget to enable it in the kernel configuration) as well as tmpfs (for instance used by udev). If your file system collection is limited to this set, then you should have no issues. Ancillary file systems such as vfat and iso9660 are supported too, but with an important caveat: all files in each file system will have the same SELinux security context information since these file systems do not support extended file attributes. Network file systems can be supported in the same manner as ancillary file systems (all files share the same
