Add the lockdown class to selinux-policy. The permissions list is: integrity confidentiality
I've submitted a Fedora rawhide PR to add the class: https://github.com/fedora-selinux/selinux-policy/pull/538
Test coverage for this bug exists in a form of PR: * https://src.fedoraproject.org/tests/selinux/pull-request/171 The PR waits for review.
Some information about lockdown and examples: https://lwn.net/ml/linux-kernel/20190622000358.19895-3-matthewgarrett@google.com/ https://lwn.net/ml/linux-kernel/20190622000358.19895-4-matthewgarrett@google.com/ https://www.paul-moore.com/blog/d/2020/03/linux_v56.html
This bug appears to have been reported against 'rawhide' during the Fedora 34 development cycle. Changing version to 34.