Allow loaded policy to be introspected
configname: CONFIG_SECURITY_APPARMOR_INTROSPECT_POLICY
Linux Kernel Configuration
└─>Security options
└─>Allow loaded policy to be introspected
In linux kernel since version 6 (release Date: 2022-10-02)
This option selects whether introspection of loaded policy
is available to userspace via the apparmor filesystem. This
adds to kernel memory usage. It is required for introspection
of loaded policy, and check point and restore support. It
can be disabled for embedded systems where reducing memory and
cpu is paramount.
is available to userspace via the apparmor filesystem. This
adds to kernel memory usage. It is required for introspection
of loaded policy, and check point and restore support. It
can be disabled for embedded systems where reducing memory and
cpu is paramount.