OrgACRN
/
acrn-kernel
mirror of https://github.com/projectacrn/acrn-kernel.git
1
0
Fork 0
Code Issues Releases Wiki Activity

apparmor: Update help description of policy hash for introspection 

Update help to note this option is not needed for small embedded systems
where regular policy introspection is not used.

Signed-off-by: John Johansen <john.johansen@canonical.com>
This commit is contained in:
John Johansen 2021-02-01 02:20:35 -08:00
parent 0fc6ab404c
commit 65cc9c391c
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
security/apparmor/Kconfig
View File

@ -25,7 +25,10 @@ config SECURITY_APPARMOR_HASH
default y default y
help help
This option selects whether introspection of loaded policy This option selects whether introspection of loaded policy
is available to userspace via the apparmor filesystem. hashes is available to userspace via the apparmor
filesystem. This option provides a light weight means of
checking loaded policy. This option adds to policy load
time and can be disabled for small embedded systems.
config SECURITY_APPARMOR_HASH_DEFAULT config SECURITY_APPARMOR_HASH_DEFAULT
bool "Enable policy hash introspection by default" bool "Enable policy hash introspection by default"