Hi Heinrich!
On 10/14/20 6:51 PM, Heinrich Schuchardt wrote:
> Hello Matthew,
>
> With commit 000d388ed3bbed ("security: Add a static lockdown policy
> LSM") you added the following line to security/lockdown/lockdown.c:
>
> pr_notice("Kernel is locked down from %s; see man kernel_lockdown.7\n"
This feature was in limbo for a very long time, but now I see that
it was finally merged last year:
commit 000d388ed3bbed745f366ce71b2bb7c2ee70f449
Author: Matthew Garrett <matthewgarrett@xxxxxxxxxx>
Date: Mon Aug 19 17:17:39 2019 -0700
security: Add a static lockdown policy LSM
I missed that that had been merged.
> The manpage is not available on
>
> https://git.kernel.org/pub/scm/docs/man-pages/man-pages.git.
>
> I found a rather outdated draft by David here:
>
> https://lwn.net/Articles/735564/
I see that my Fedora system has a slightly different version
of that page (obviously added a Fedora patch). I'm not sure
which is more up to date; probably the Fedora page.
> Is anybody working on it?
Not so far. I suppose the simple thing would be to just merge
the page that exists on Fedora. But I've no idea how much it
needs tobe updated to reflect reality. Perhaps someone in CC
can comment. Do you have any time to drive this along?
Thanks,
Michael
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
