2 files changed, 28 insertions, 0 deletions
diff --git a/Documentation/DocBook/kernel-api.tmpl b/Documentation/DocBook/kernel-api.tmpl
index f5696ba9ae96..9d0058e788e5 100644
--- a/Documentation/DocBook/kernel-api.tmpl
+++ b/Documentation/DocBook/kernel-api.tmpl
@@ -283,6 +283,7 @@ X!Earch/x86/kernel/mca_32.c
  <chapter id="security">
     <title>Security Framework</title>
 !Isecurity/security.c
+!Esecurity/inode.c
  </chapter>
  <chapter id="audit">
diff --git a/Documentation/SELinux.txt b/Documentation/SELinux.txt
new file mode 100644
index 000000000000..07eae00f3314
--- /dev/null
+++ b/Documentation/SELinux.txt
@@ -0,0 +1,27 @@
+If you want to use SELinux, chances are you will want
+to use the distro-provided policies, or install the
+latest reference policy release from
+        http://oss.tresys.com/projects/refpolicy
+However, if you want to install a dummy policy for
+testing, you can do using 'mdp' provided under
+scripts/selinux.  Note that this requires the selinux
+userspace to be installed - in particular you will
+need checkpolicy to compile a kernel, and setfiles and
+fixfiles to label the filesystem.
+        1. Compile the kernel with selinux enabled.
+        2. Type 'make' to compile mdp.
+        3. Make sure that you are not running with
+           SELinux enabled and a real policy.  If
+           you are, reboot with selinux disabled
+           before continuing.
+        4. Run install_policy.sh:
+                cd scripts/selinux
+                sh install_policy.sh
+Step 4 will create a new dummy policy valid for your
+kernel, with a single selinux user, role, and type.
+It will compile the policy, will set your SELINUXTYPE to
+dummy in /etc/selinux/config, install the compiled policy
+as 'dummy', and relabel your filesystem.

diff --git a/Documentation/DocBook/kernel-api.tmpl b/Documentation/DocBook/kernel-api.tmpl index f5696ba9ae96..9d0058e788e5 100644 --- a/Documentation/DocBook/kernel-api.tmpl +++ b/Documentation/DocBook/kernel-api.tmpl
@@ -283,6 +283,7 @@ X!Earch/x86/kernel/mca_32.c
283	<chapter id="security">	283	<chapter id="security">
284	<title>Security Framework</title>	284	<title>Security Framework</title>
285	!Isecurity/security.c	285	!Isecurity/security.c
		286	!Esecurity/inode.c
286	</chapter>	287	</chapter>
287		288
288	<chapter id="audit">	289	<chapter id="audit">


diff --git a/Documentation/SELinux.txt b/Documentation/SELinux.txt new file mode 100644 index 000000000000..07eae00f3314 --- /dev/null +++ b/Documentation/SELinux.txt
@@ -0,0 +1,27 @@
		1	If you want to use SELinux, chances are you will want
		2	to use the distro-provided policies, or install the
		3	latest reference policy release from
		4	http://oss.tresys.com/projects/refpolicy
		5
		6	However, if you want to install a dummy policy for
		7	testing, you can do using 'mdp' provided under
		8	scripts/selinux. Note that this requires the selinux
		9	userspace to be installed - in particular you will
		10	need checkpolicy to compile a kernel, and setfiles and
		11	fixfiles to label the filesystem.
		12
		13	1. Compile the kernel with selinux enabled.
		14	2. Type 'make' to compile mdp.
		15	3. Make sure that you are not running with
		16	SELinux enabled and a real policy. If
		17	you are, reboot with selinux disabled
		18	before continuing.
		19	4. Run install_policy.sh:
		20	cd scripts/selinux
		21	sh install_policy.sh
		22
		23	Step 4 will create a new dummy policy valid for your
		24	kernel, with a single selinux user, role, and type.
		25	It will compile the policy, will set your SELINUXTYPE to
		26	dummy in /etc/selinux/config, install the compiled policy
		27	as 'dummy', and relabel your filesystem.