SELinux workgroup: Difference between revisions
imported>Etbe No edit summary |
imported>Etbe No edit summary |
||
| Line 8: | Line 8: | ||
boot.kernelParams = [ "security=selinux" ]; | boot.kernelParams = [ "security=selinux" ]; | ||
# not yet tested the kernel config | # not yet tested the kernel config | ||
boot.kernelPatches = [ { | boot.kernelPatches = [ { | ||
name = "selinux-config"; | name = "selinux-config"; | ||
| Line 19: | Line 19: | ||
''; | ''; | ||
} ]; | } ]; | ||
== Links == | |||
* [https://lore.kernel.org/selinux/7853167.K65cXu0y11@neuromancer/T/#u Proposed patch for subst file-contexts], this maps /nix/store/* directories to / for file labelling (both initial system labelling and dynamic labelling of new files). | |||
* [https://github.com/NixOS/nix/pull/2670 GitHub page for e-user's changes adding SE Linux support to NixOS]. | |||