FS#59733 : [linux] enable AppArmor & SELinux

FS#59733 - [linux] enable AppArmor & SELinux

Attached to Project: Arch Linux
Opened by nl6720 (nl6720) - Tuesday, 21 August 2018, 07:45 GMT
Last edited by Jan Alexander Steffens (heftig) - Monday, 03 September 2018, 19:08 GMT

Task Type	Feature Request
Category	Packages: Core
Status	Closed
Assigned To	Tobias Powalowski (tpowa) Jan Alexander Steffens (heftig)
Architecture	All
Severity	Low
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	4 Tommy Schmitt (spinka) (2018-09-06) Francois (francoism90) (2018-09-05) Ed Svaded (svadkos) (2018-08-24) nl6720 (nl6720) (2018-08-21)
Private	No

Details

Description:
The main thing preventing AppArmor and SELinux inclusion used to be CONFIG_AUDIT.
Now that it is enabled, could AppArmor & SELinux also be enabled?

Additional info:
* package version(s)
* config and/or log files etc.
linux 4.18.3.arch1-1

Steps to reproduce:
zgrep -E 'CONFIG_SECURITY_(APPARMOR|SELINUX)' /proc/config.gz

This task depends upon

Closed by Jan Alexander Steffens (heftig)
Monday, 03 September 2018, 19:08 GMT
Reason for closing: Won't implement

Comment by Jan Alexander Steffens (heftig) - Monday, 03 September 2018, 19:08 GMT

All of these require significant userspace support. SELinux in particular requires linking against its library in numerous places, including coreutils. This makes making them available in the kernel of dubious value. Still, AppArmor and SELinux are available in linux-hardened for those who want it.

	Tasks related to this task (0)

Duplicate tasks of this task (1)
~~FS#59940 - [linux] Add support for AppArmor~~

Arch Linux

FS#59733 - [linux] enable AppArmor & SELinux

Details

Loading...