Changeset 183

Show
Ignore:
Timestamp:
04/11/08 09:30:06 (8 months ago)
Author:
slawrence
Message:

- Add packages needed to build policy to the kickstart file
- Modify makefile and specfiles to allow building a modular policy

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/RHEL5.1/kickstart/clip.ks

    r171 r183  
    116116logvol /var --fstype ext3 --name=varVol --vgname=VolGroup00 --size=1024 --grow 
    117117logvol /home --fstype ext3 --name=homeVol --vgname=VolGroup00 --size=256 --grow 
    118 logvol /tmp --fstype ext3 --name=tmpVol --vgname=VolGroup00 --size=1024 --grow 
     118logvol /tmp --fstype ext3 --name=tmpVol --vgname=VolGroup00 --size=1024 
    119119 
    120120 
     
    271271-rsh 
    272272 
     273# needed to compile policy on RHEL5.1 
     274rpm-build 
     275gcc 
     276checkpolicy 
     277 
    273278%pre 
    274279 

  • trunk/RHEL5.1/refpolicy/build/Makefile

    r182 r183  
    5757CONF_DIR := $(ROOT_DIR)/conf 
    5858SUPPORT_DIR := $(ROOT_DIR)/support 
    59 POLICY_SPEC := $(CONF_DIR)/selinux-policy.spec 
    6059 
    6160RPM_TMPDIR := $(ROOT_DIR)/tmp 
     
    6665POL_TYPE := $(shell grep "^TYPE = " $(POLICY_DIR)/build.conf |awk ' { print $$3 } ') 
    6766OUTPUT_VER := $(shell grep "^OUTPUT_POLICY = " $(POLICY_DIR)/build.conf |awk ' { print $$3 } ') 
     67MONOLITHIC := $(shell grep "^MONOLITHIC" $(POLICY_DIR)/build.conf | grep -c "y" ) 
     68 
     69ifeq ($(MONOLITHIC),1) 
     70  POLICY_SPEC := $(CONF_DIR)/selinux-policy-monolithic.spec 
     71else 
     72  POLICY_SPEC := $(CONF_DIR)/selinux-policy-modular.spec 
     73endif 
    6874 
    6975ifeq ($(OUTPUT_VER),) 

  • trunk/RHEL5.1/refpolicy/src/selinux-policy-clip/Rules.modular

    r153 r183  
    33# Rules and Targets for building modular policies 
    44# 
     5 
     6appfiles += $(installdir)/booleans $(userpath)/local.users $(installdir)/seusers 
    57 
    68all_modules := $(base_mods) $(mod_mods) $(off_mods) 
     
    9294# Create a base module package 
    9395# 
    94 $(base_pkg): $(base_mod) $(base_fc) $(users_extra) $(tmpdir)/seusers 
     96$(base_pkg): $(base_mod) $(base_fc) $(users_extra) $(tmpdir)/seusers $(net_contexts) 
    9597        @echo "Creating $(NAME) base module package" 
    9698        @test -d $(builddir) || mkdir -p $(builddir) 
    97         $(verbose) $(SEMOD_PKG) -o $@ -m $(base_mod) -f $(base_fc) -u $(users_extra) -s $(tmpdir)/seusers 
     99        $(verbose) $(SEMOD_PKG) -o $@ -m $(base_mod) -f $(base_fc) -u $(users_extra) -s $(tmpdir)/seusers -n $(net_contexts) 
    98100 
    99101ifneq "$(UNK_PERMS)" "" 
     
    205207######################################## 
    206208# 
     209# Intall netfilter_contexts 
     210# 
     211$(ncpath): $(net_contexts) 
     212        @echo "Installing $(NAME) netfilter_contexts." 
     213        $(verbose) $(INSTALL) -m 0644 $^ $@ 
     214 
     215######################################## 
     216# 
    207217# Appconfig files 
    208218# 
     
    211221        $(verbose) $(GREP) '^[[:blank:]]*type .*customizable' $< | cut -d';' -f1 | cut -d',' -f1 | cut -d' ' -f2 | $(SORT) -u > $(tmpdir)/customizable_types 
    212222        $(verbose) $(INSTALL) -m 644 $(tmpdir)/customizable_types $@  
     223 
     224$(installdir)/seusers: $(seusers) 
     225        @mkdir -p $(tmpdir) 
     226        $(verbose) $(M4) $(M4PARAM) $(m4support) $^ | $(GREP) '^[a-z_]' > $(tmpdir)/seusers 
     227        $(verbose) $(INSTALL) -m 644 $(tmpdir)/seusers $(installdir)/seusers 
    213228 
    214229########################################