Skip to content

miraclelinux/miraclewhiteknight

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
data
data
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.rst
README.rst
 
 
meson.build
meson.build
 
 
meson_options.txt
meson_options.txt
 
 

Repository files navigation

MiracleWhiteKnight

What is MiracleWhiteKnight

This is a a project which provides mandatory access control based on allow list and protects the list in Trusted Execution Environment.

Requirements

Name When Version
openssl build & runtime 1.1.1c or later
meson build 0.49 or later
ninja build  
pkg-config build  
gcc build  

How to install

  1. Build binaries.

    $ meson build
$ ninja -C build

  2. Install the built binaries.

    $ ninja -C build install

How to use

MiracleWhiteKnight provides 2 management methods for allow list.

  1. Do not use TEE
  2. Use TEE

Do not use TEE

  1. Make a list of directories to search executables

    $ echo '/usr' > in.txt

  2. Generate allow list of your root filesystem

    # mkag rootfs.wl in.txt
# mv rootfs.wl /usr/share/whiteknight/wl.d/

  3. Generate a list of mount points

    # echo '/' > /usr/share/whiteknight/ml.d/rootfs.ml

  4. Run MiracleWhiteKnight

    # systemctl start whiteknight

Use TEE

Coming soon...

Contribution

Please send PRs via GitHub. We are waiting for your contribution anytime!

About

No description, website, or topics provided.

Resources

Readme

License

GPL-2.0 license
Activity
Custom properties

Stars

4 stars

Watchers

5 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages