Difference between revisions of "SELinux"
(→Codes about embedded SELinux) |
(→Related presentations) |
||
| Line 33: | Line 33: | ||
If you prefer fine grained configuration, | If you prefer fine grained configuration, | ||
Reference policy[http://oss.tresys.com/projects/refpolicy] is better. | Reference policy[http://oss.tresys.com/projects/refpolicy] is better. | ||
| + | |||
| + | = Example of porting = | ||
| + | == Openmoko port == | ||
| + | http://code.google.com/p/selinux-openmoko/ | ||
| + | |||
| + | http://www.cse.psu.edu/~mhassan/openmoko_se/ | ||
= Related presentations = | = Related presentations = | ||
| − | |||
Example of porting to SH(Super H) was reported in CELF Jambolee #18: [http://tree.celinuxforum.org/CelfPubWiki/JapanTechnicalJamboree18]. | Example of porting to SH(Super H) was reported in CELF Jambolee #18: [http://tree.celinuxforum.org/CelfPubWiki/JapanTechnicalJamboree18]. | ||
Revision as of 00:48, 18 July 2008
SELinux -- Security Enhanced Linux
Contents |
Current works about embedded SELinux
Many codes are submitted to Linux and userland community.
Linux kernel
2.6.18
Xattr support for jffs2
2.6.24
Reducing read/write overhead[1]
Reducing memory usage:[2]
Improving performance in AVC miss:[3]
2.6.25
Audit support for SH:[4]
SELinux userland
Reducing size of library: Merged to libselinux 2.0.35: [5]
BusyBox
Applets related to SELinux are merged to BusyBox in 1.8.0.
Support to assign domain to applets is merged to 1.8.0: [6]
Policy
SELinux Policy Editor will be helpful. See [7].
If you prefer fine grained configuration, Reference policy[8] is better.
Example of porting
Openmoko port
http://code.google.com/p/selinux-openmoko/
http://www.cse.psu.edu/~mhassan/openmoko_se/
Related presentations
Example of porting to SH(Super H) was reported in CELF Jambolee #18: [9].
Xattr port to jffs2(Japanese)[10]
Remaining issues
Policy
xattr
logfs, yaffs, cramfs do not support xattr yet.
