On 05/12/2018 12:13, George Kiagiadakis wrote:
Hi,
Hi George,
I've been studying the security framework recently and I am wondering, how can one actually test SMACK policies on the demo image? From what I have seen, every process on the demo image runs as root with all capabilities enabled, therefore everything runs with CAP_MAC_ADMIN and bypasses SMACK.
To test the system you can use my sandbox "sandbox/jobol/wip-mu" of meta-agl. You then have to set "LOGIN_USER=1001" in the local.conf of the yocto build and then you login as user 1001.
Note that I have tickets for that issue: SPEC-545 and SPEC 1016 Best regards José Bollo _______________________________________________ automotive-discussions mailing list automotive-discussions@xxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linuxfoundation.org/mailman/listinfo/automotive-discussions
