Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#59733 - [linux] enable AppArmor & SELinux
Attached to Project:
Arch Linux
Opened by nl6720 (nl6720) - Tuesday, 21 August 2018, 07:45 GMT
Last edited by Jan Alexander Steffens (heftig) - Monday, 03 September 2018, 19:08 GMT
Opened by nl6720 (nl6720) - Tuesday, 21 August 2018, 07:45 GMT
Last edited by Jan Alexander Steffens (heftig) - Monday, 03 September 2018, 19:08 GMT
|
DetailsDescription:
The main thing preventing AppArmor and SELinux inclusion used to be CONFIG_AUDIT. Now that it is enabled, could AppArmor & SELinux also be enabled? Additional info: * package version(s) * config and/or log files etc. linux 4.18.3.arch1-1 Steps to reproduce: zgrep -E 'CONFIG_SECURITY_(APPARMOR|SELINUX)' /proc/config.gz |
This task depends upon
Closed by Jan Alexander Steffens (heftig)
Monday, 03 September 2018, 19:08 GMT
Reason for closing: Won't implement
Monday, 03 September 2018, 19:08 GMT
Reason for closing: Won't implement
Comment by Jan Alexander Steffens (heftig) -
Monday, 03 September 2018, 19:08 GMT
All of these require significant userspace support. SELinux in particular requires linking against its library in numerous places, including coreutils. This makes making them available in the kernel of dubious value. Still, AppArmor and SELinux are available in linux-hardened for those who want it.