[PATCH RFC 04/17] Add security policy support
Ahmad Fatoum
a.fatoum at pengutronix.de
Mon Aug 18 07:08:19 PDT 2025
On 8/18/25 15:28, Sascha Hauer wrote:
> On Thu, Aug 14, 2025 at 03:06:49PM +0200, Ahmad Fatoum wrote:
>> +if SECURITY_POLICY
>> +
>> +config SECURITY_POLICY_INIT
>> + string
>> + prompt "Initial security policy"
>> + help
>> + The policy named here will be automatically selected the first
>> + time a security policy is to be consulted.
>> + It's recommended to use a restrictive policy here and remove
>> + the restrictions if needed instead of the other way round.
>> +
>> +choice
>> + prompt "Initial Security Policy"
>> + default SECURITY_POLICY_DEFAULT_PERMISSIVE
>
> This ends up showing:
>
> (lockdown) Initial security policy
> Initial Security Policy (Panic)
>
> How about "Missing security policy behaviour" instead for the choice
> description?
Yes, will adapt for v2.
Thanks,
Ahmad
>
> Sascha
>
>
--
Pengutronix e.K. | |
Steuerwalder Str. 21 | http://www.pengutronix.de/ |
31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |
More information about the barebox
mailing list