On Tue, 2021-01-19 at 14:18 +0100, Dominick Grift wrote: > Richard Haines <richard_c_haines@xxxxxxxxxxxxxx> writes: > > > Add a new section and supporting examples for embedded systems. > > Nice initiative, thanks. Looks pretty solid for a first iteration. > > I wrote a document for OpenWrt here [1]. Basically the instructions > needed > to assemble OpenWrt from modules applicable to a particular system, > but also how > to build on top of it, or now to just fork it so that you can use it > as > a base for your own policy. > > [1] > https://github.com/doverride/openwrt-selinux-policy/blob/master/README.md > > I am currently pretty happy with the results so far (its a work in > progress, and there are known loose ends) > > One of the differences compared with android is that SELinux is not > tightly integrated in OpenWrt, and so most of the tough aspects are > addressed in policy > rather than adding selinux-awareness all over. SELinux in OpenWrt is > therefore > fairly self-contained and considering the challenges fairly robust. > Thanks, I've worked these comments into the next version.
