In light of the recent queries regarding embedded systems, thought I would add this new section. This is an RFC patch as I've not been involved in embedded systems, therefore looking for feedback. There are a few TODO entries that need resolving. I've made an attempt to build a smaller Reference Policy that can be extended, does this seem reasonable ?. I'll issue an updated patch in a week or two. Richard Haines (1): selinux-notebook: Add new section for Embedded Systems src/embedded_systems.md | 517 ++++++++++++++++++ src/implementing_seaware_apps.md | 2 +- .../embedded-policy/android-policy/README.md | 34 ++ .../android-policy/android-4/Makefile | 32 ++ .../android-policy/android10/Makefile | 40 ++ .../android-policy/brillo-device/Makefile | 43 ++ .../android-policy/brillo/Makefile | 36 ++ .../reference-policy/README.md | 6 + .../reference-policy/build.conf | 84 +++ .../reference-policy/modules.conf | 236 ++++++++ src/seandroid.md | 6 +- src/section_list.txt | 1 + src/toc.md | 1 + 13 files changed, 1036 insertions(+), 2 deletions(-) create mode 100644 src/embedded_systems.md create mode 100644 src/notebook-examples/embedded-policy/android-policy/README.md create mode 100644 src/notebook-examples/embedded-policy/android-policy/android-4/Makefile create mode 100644 src/notebook-examples/embedded-policy/android-policy/android10/Makefile create mode 100644 src/notebook-examples/embedded-policy/android-policy/brillo-device/Makefile create mode 100644 src/notebook-examples/embedded-policy/android-policy/brillo/Makefile create mode 100644 src/notebook-examples/embedded-policy/reference-policy/README.md create mode 100644 src/notebook-examples/embedded-policy/reference-policy/build.conf create mode 100644 src/notebook-examples/embedded-policy/reference-policy/modules.conf -- 2.29.2
