[refpolicy] Make refpolicy aware of the secure_firmware avperm of the capability2 security class

Stephen Smalley sds at tycho.nsa.gov
Mon Sep 10 09:50:58 CDT 2012


On Sat, 2012-09-08 at 10:33 +0200, Dominick Grift wrote:
> Can we define that in refpolicy because vbetool needs it
> 
> http://git.fedorahosted.org/cgit/selinux-policy.git/commit/?h=master_contrib&id=ede99cf27691bc1f3ddb95059388315f31c5210b

Not until it gets defined in the mainline kernel.  Discussions on lkml
suggest that it won't have that name if/when it gets merged.

-- 
Stephen Smalley
National Security Agency



More information about the refpolicy mailing list