1 # SPDX-License-Identifier: GPL-2.0-only
2 config SECURITY_SMACK
3 bool "Simplified Mandatory Access Cont
4 depends on NET
5 depends on INET
6 depends on SECURITY
7 select NETLABEL
8 select SECURITY_NETWORK
9 default n
10 help
11 This selects the Simplified Mandator
12 Smack is useful for sensitivity, int
13 of other mandatory security schemes.
14 If you are unsure how to answer this
15
16 config SECURITY_SMACK_BRINGUP
17 bool "Reporting on access granted by S
18 depends on SECURITY_SMACK
19 default n
20 help
21 Enable the bring-up ("b") access mod
22 When access is granted by a rule wit
23 message about the access requested i
24 intention is that a process can be g
25 of access initially with the bringup
26 rules. The developer can use the inf
27 identify which rules are necessary a
28 may be inappropriate. The developer
29 access rule set once the behavior is
30 This is a superior mechanism to the
31 "permissive" mode of other systems.
32 If you are unsure how to answer this
33
34 config SECURITY_SMACK_NETFILTER
35 bool "Packet marking using secmarks fo
36 depends on SECURITY_SMACK
37 depends on NETWORK_SECMARK
38 depends on NETFILTER
39 default n
40 help
41 This enables security marking of net
42 Smack labels.
43 If you are unsure how to answer this
44
45 config SECURITY_SMACK_APPEND_SIGNALS
46 bool "Treat delivering signals as an a
47 depends on SECURITY_SMACK
48 default n
49 help
50 Sending a signal has been treated as
51 receiving process. If this option is
52 will be an append operation instead.
53 to differentiate between delivering
54 delivering a signal in the Smack rul
55 If you are unsure how to answer this
Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.