Worked on security hardening and policy automation for functionfs within the torvalds/linux repository, focusing on SELinux integration at the kernel level. Developed and delivered per-endpoint SELinux labeling for functionfs, allowing distinct access control for each endpoint and enabling userspace to apply labels after endpoint creation. This approach improved security by reducing privilege escalation risks and enhanced policy manageability for scalable deployments. The work leveraged C programming, SELinux policy mechanisms, and kernel development practices to introduce granular file labeling, aligning with broader SELinux hardening efforts and laying the foundation for future endpoint policy auditing and more flexible access management workflows.