[PATCH RFC 04/17] Add security policy support
Sascha Hauer
s.hauer at pengutronix.de
Mon Aug 18 06:28:46 PDT 2025
On Thu, Aug 14, 2025 at 03:06:49PM +0200, Ahmad Fatoum wrote:
> +if SECURITY_POLICY
> +
> +config SECURITY_POLICY_INIT
> + string
> + prompt "Initial security policy"
> + help
> + The policy named here will be automatically selected the first
> + time a security policy is to be consulted.
> + It's recommended to use a restrictive policy here and remove
> + the restrictions if needed instead of the other way round.
> +
> +choice
> + prompt "Initial Security Policy"
> + default SECURITY_POLICY_DEFAULT_PERMISSIVE
This ends up showing:
(lockdown) Initial security policy
Initial Security Policy (Panic)
How about "Missing security policy behaviour" instead for the choice
description?
Sascha
--
Pengutronix e.K. | |
Steuerwalder Str. 21 | http://www.pengutronix.de/ |
31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |
More information about the barebox
mailing list