Changeset 236
- Timestamp:
- 08/12/08 15:47:05
(3 months ago)
- Author:
- slawrence
- Message:
Update README and INSTALL file
Update selinux toolchain makefile to copy rpms to the RPM dir and added an 'all' rule to quickly create all the rpms
-
Files:
-
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
| r28 |
r236 |
|
| 3 | 3 | |
|---|
| 4 | 4 | To begin installation of Certifiable Linux Integration Platform (clip), |
|---|
| 5 | | first obtain installation discs for Red Hat Enterprise Linux 4, |
|---|
| 6 | | Enterprise Server, Update 4. |
|---|
| | 5 | first obtain installation discs for Red Hat Enterprise Linux 5.2. |
|---|
| 7 | 6 | |
|---|
| 8 | 7 | Next, obtain the kickstart file from |
|---|
| 9 | 8 | http://oss.tresys.com/projects/clip/DownloadRelease. This file supplies |
|---|
| 10 | 9 | Red Hat's installer, anaconda, with various install-time parameters. |
|---|
| 11 | | Boot from Disc 1 of the RHEL4 ES installation discs, supplying the kickstart |
|---|
| | 10 | Boot from Disc 1 of the RHEL5.2 installation discs, supplying the kickstart |
|---|
| 12 | 11 | script as a kernel boot parameter: |
|---|
| 13 | 12 | |
|---|
| 14 | 13 | boot> linux ks=http://someserver/clip.ks |
|---|
| 15 | 14 | |
|---|
| 16 | | This will initiate the installation process. Prompts for locale information |
|---|
| 17 | | and hard disk partitioning information will appear; choose appropriate |
|---|
| 18 | | values for these settings. At this point, anaconda will install the operating |
|---|
| 19 | | system and a few packages. Once this completes, a reboot will be necessary. |
|---|
| | 15 | This will initiate the installation process. At this point, anaconda will |
|---|
| | 16 | install the operating system and a few packages. At the end of the |
|---|
| | 17 | installation you will be prompted for a password for the root and clipuser |
|---|
| | 18 | users. Once the installation completes, a reboot will be necessary. |
|---|
| 20 | 19 | |
|---|
| 21 | | After rebooting, login to the sytem with the root password 'password'. |
|---|
| | 20 | After rebooting, login to the sytem as the clipuser and su to root to perform |
|---|
| | 21 | any post instalation tasks. |
|---|
| | 22 | |
|---|
| 22 | 23 | Various RPM files are required for the userspace component of the Gold |
|---|
| 23 | 24 | Standard platform. Download and install these RPMs from |
|---|
| 24 | | http://oss.tresys.com/projects/clip/DownloadRelease |
|---|
| 25 | | in the order listed below, making sure to verify each file's SHA1 checksum: |
|---|
| | 25 | http://oss.tresys.com/projects/clip/wiki/DownloadRelease |
|---|
| 26 | 26 | |
|---|
| 27 | | libsepol-1.12.25-1.clip.i386.rpm |
|---|
| 28 | | libselinux-1.30.27-1.clip.i386.rpm |
|---|
| 29 | | libselinux-python-1.30.27-1.clip.i386.rpm |
|---|
| 30 | | libsemanage-1.6.16-1.clip.i386.rpm |
|---|
| 31 | | checkpolicy-1.30.10-1.clip.i386.rpm |
|---|
| 32 | | policycoreutils-1.30.27-1.clip.i386.rpm |
|---|
| 33 | | python-xattr-0.2-1.2.el4.rf.i386.rpm |
|---|
| 34 | | setools-2.4-2.1.i386.rpm |
|---|
| 35 | | selinux-policy-clip-1.0-1.noarch.rpm |
|---|
| 36 | | clip-1.0-1.noarch.rpm |
|---|
| | 27 | libsepol-1.16.14-1 |
|---|
| | 28 | libselinux-1.34.15-1 |
|---|
| | 29 | libselinux-python-1.34.15-1 |
|---|
| | 30 | libsemanage-1.10.9-1 |
|---|
| | 31 | checkpolicy-1.34.7-1 |
|---|
| | 32 | policycoreutils-1.34.16-1 |
|---|
| | 33 | policycoreutils-newrole-1.34.16-1 |
|---|
| | 34 | selinux-policy-clip-2.0-3 |
|---|
| | 35 | clip-2.0-1 |
|---|
| 37 | 36 | |
|---|
| 38 | | |
|---|
| 39 | | |
|---|
| 40 | | |
|---|
| r234 |
r236 |
|
| 1 | 1 | To build RHEL 5.2 CLIP rpms use the following steps: |
|---|
| 2 | | |
|---|
| 3 | 2 | |
|---|
| 4 | 3 | == RPM Build Steps == |
|---|
| 5 | 4 | |
|---|
| 6 | | * Install the following packages from the RHEL5.2 cd |
|---|
| | 5 | * The following steps assume a standard RHEL5.2 installation |
|---|
| | 6 | |
|---|
| | 7 | * Use yum to install the following packages and their dependencies: |
|---|
| | 8 | |
|---|
| 7 | 9 | - audit-libs-devel |
|---|
| 8 | 10 | - bison |
|---|
| 9 | 11 | - byacc |
|---|
| 10 | 12 | - flex |
|---|
| | 13 | - gcc |
|---|
| 11 | 14 | - libcap-devel |
|---|
| 12 | 15 | - pam-devel |
|---|
| 13 | 16 | - python-devel |
|---|
| | 17 | - rpm-build |
|---|
| | 18 | - subversion |
|---|
| 14 | 19 | - swig |
|---|
| 15 | 20 | |
|---|
| | 21 | To have yum install the packages from the RHEL5.2 installation cd, perform |
|---|
| | 22 | the follow before running the yum install command: |
|---|
| | 23 | mkdir /mnt/rhel5.2 |
|---|
| | 24 | mount /dev/cdrom /mnt/rhel5.2 |
|---|
| | 25 | rpm --import /mnt/rhel5.2/RPM-GPG-KEY-redhat-release |
|---|
| | 26 | vi /etc/yum.repos.d/rhel5.2.repo |
|---|
| | 27 | [RHEL5.2 CD] |
|---|
| | 28 | baseurl=file:///mnt/rhel5.2/Server |
|---|
| | 29 | enabled=1 |
|---|
| | 30 | |
|---|
| | 31 | * Checkout clip |
|---|
| | 32 | |
|---|
| | 33 | svn co http://oss.tresys.com/repos/clip/trunk/RHEL5.2 clip |
|---|
| | 34 | |
|---|
| 16 | 35 | * Update the selinux toolchain |
|---|
| 17 | | cd RHEL5.2/selinux-usr |
|---|
| 18 | 36 | |
|---|
| | 37 | ARCH=`uname -i` |
|---|
| | 38 | |
|---|
| | 39 | cd clip/selinux-usr |
|---|
| | 40 | |
|---|
| 19 | 41 | make libsepol-rpm |
|---|
| 20 | 42 | rpm -Uvh --force rpm/RPMS/$ARCH/{libsepol,libsepol-devel}-1.16.14-1.$ARCH.rpm |
|---|
| … | … | |
| 27 | 49 | |
|---|
| 28 | 50 | make policycoreutils-rpm |
|---|
| 29 | | rpm -Uvh --force rpm/RPMS/$ARCH/{policycoreutils,policycoreutils-newrole |
|---|
| | 51 | rpm -Uvh --force rpm/RPMS/$ARCH/{policycoreutils,policycoreutils-newrole,policycoreutils-gui}-1.34.16-1.$ARCH.rpm |
|---|
| 30 | 52 | |
|---|
| 31 | 53 | make checkpolicy-rpm |
|---|
| 32 | 54 | rpm -Uvh --force rpm/RPMS/$ARCH/checkpolicy-1.34.7-1.$ARCH.rpm |
|---|
| 33 | 55 | |
|---|
| 34 | | * Install clip and clip selinux policy |
|---|
| | 56 | * Build clip and clip selinux policy |
|---|
| 35 | 57 | |
|---|
| 36 | | cd RHEL5.2/build |
|---|
| 37 | | |
|---|
| | 58 | cd ../build |
|---|
| | 59 | |
|---|
| 38 | 60 | make clip-rpm selinux-policy-clip-rpm |
|---|
| 39 | 61 | |
|---|
| 40 | | * RPMs will be located in RHEL5.2/RPM directory |
|---|
| | 62 | * Copy the following rpms needed for the production system to a cd or usb drive: |
|---|
| 41 | 63 | |
|---|
| 42 | | cd RHEL5.2/RPM |
|---|
| | 64 | clip/RPM/clip-2.0-1.$ARCH.rpm |
|---|
| | 65 | clip/RPM/selinux-policy-clip-2.0-3.noarch.rpm |
|---|
| | 66 | clip/RPM/libsepol-1.16.14-1.$ARCH.rpm |
|---|
| | 67 | clip/RPM/libselinux-1.34.15-1.$ARCH.rpm |
|---|
| | 68 | clip/RPM/libselinux-python-1.34.15-1.$ARCH.rpm |
|---|
| | 69 | clip/RPM/libsemanage-1.10.9-1.$ARCH.rpm |
|---|
| | 70 | clip/RPM/policycoreutils-1.34.16-1.$ARCH.rpm |
|---|
| | 71 | clip/RPM/policycoreutils-newrole-1.34.16-1.$ARCH.rpm |
|---|
| | 72 | clip/RPM/checkpolicy-1.34.7-1.$ARCH.rpm |
|---|
| 43 | 73 | |
|---|
| 44 | | rpm -Uvh --force clip-2.0-1.$ARCH.rpm |
|---|
| 45 | | rpm -Uvh --force selinux-policy-clip-2.0-3.noarch.rpm |
|---|
| 46 | | |
|---|
| 47 | | |
|---|
| 48 | | |
|---|
| 49 | | == Build Dependencies == |
|---|
| 50 | | |
|---|
| 51 | | clip-2.0-1: |
|---|
| 52 | | audit-libs-devel |
|---|
| 53 | | pam-devel |
|---|
| 54 | | |
|---|
| 55 | | libsepol-1.16.14-1: |
|---|
| 56 | | none |
|---|
| 57 | | |
|---|
| 58 | | libselinux-1.34.15-1: |
|---|
| 59 | | libsepol-devel > 1.16.14-1 |
|---|
| 60 | | swig |
|---|
| 61 | | python-devel |
|---|
| 62 | | |
|---|
| 63 | | libsemanage-1.10.9-1: |
|---|
| 64 | | libselinux-devel > 1.34.15-1 |
|---|
| 65 | | swig |
|---|
| 66 | | libsepol-devel > 1.16.14-1 |
|---|
| 67 | | python-devel |
|---|
| 68 | | bison |
|---|
| 69 | | flex |
|---|
| 70 | | |
|---|
| 71 | | policycoreutils-1.34.16-1: |
|---|
| 72 | | libsepol-devel > 1.16.14-1 |
|---|
| 73 | | libsemanage-devel > 1.10.9-1 |
|---|
| 74 | | libselinux-devel 1.34.15-1 |
|---|
| 75 | | libcap-devel |
|---|
| 76 | | audit-libs-devel |
|---|
| 77 | | |
|---|
| 78 | | checkpolicy-1.34.7: |
|---|
| 79 | | byacc |
|---|
| 80 | | flex |
|---|
| 81 | | libsepol-devel > 1.16.14-1 |
|---|
| 82 | | libselinux-devel |
|---|
| 83 | | |
|---|
| 84 | | selinux-policy-clip-2.0-3: |
|---|
| 85 | | checkpolicy >= 1.34.7 |
|---|
| 86 | | |
|---|
| | 74 | * See the INSTALL file for installing the clip production system and the rpms |
|---|
| r234 |
r236 |
|
| 1 | | |
|---|
| | 1 | ARCH := $(shell uname -i) |
|---|
| 2 | 2 | ROOT_DIR := $(shell pwd) |
|---|
| 3 | 3 | INSTALL_DIR := $(ROOT_DIR)/install |
|---|
| … | … | |
| 8 | 8 | --define '_packager Tresys Technology, LLS' \ |
|---|
| 9 | 9 | --define '_url http://oss.tresys.com/projects/clip' |
|---|
| | 10 | OUTPUT_DIR := $(ROOT_DIR)/../RPM |
|---|
| 10 | 11 | |
|---|
| 11 | | CHECKPOLICY_TAR := $(RPM_TOPDIR)/SOURCES/checkpolicy-$(CHECKPOLICY_VERSION).tgz |
|---|
| | 12 | |
|---|
| 12 | 13 | CHECKPOLICY_SPEC := $(RPM_TOPDIR)/SPECS/checkpolicy.spec |
|---|
| 13 | | |
|---|
| 14 | | LIBSELINUX_TAR := $(RPM_TOPDIR)/SOURCES/libselinux-$(LIBSELINUX_VERSION).tgz |
|---|
| 15 | 14 | LIBSELINUX_SPEC := $(RPM_TOPDIR)/SPECS/libselinux.spec |
|---|
| 16 | | |
|---|
| 17 | | LIBSEMANAGE_TAR := $(RPM_TOPDIR)/SOURCES/libsemanage-$(LIBSEMANAGE_VERSION).tgz |
|---|
| 18 | 15 | LIBSEMANAGE_SPEC := $(RPM_TOPDIR)/SPECS/libsemanage.spec |
|---|
| 19 | | |
|---|
| 20 | | LIBSEPOL_TAR := $(RPM_TOPDIR)/SOURCES/libsepol-$(LIBSEPOL_VERSION).tgz |
|---|
| 21 | 16 | LIBSEPOL_SPEC := $(RPM_TOPDIR)/SPECS/libsepol.spec |
|---|
| 22 | | |
|---|
| 23 | | POLICYCOREUTILS_TAR := $(RPM_TOPDIR)/SOURCES/policycoreutils-$(POLICYCOREUTILS_VERSION).tgz |
|---|
| 24 | 17 | POLICYCOREUTILS_SPEC := $(RPM_TOPDIR)/SPECS/policycoreutils.spec |
|---|
| 25 | 18 | |
|---|
| | 19 | all: |
|---|
| | 20 | make libsepol-rpm |
|---|
| | 21 | rpm -Uvh --force rpm/RPMS/$(ARCH)/libsepol*.rpm |
|---|
| | 22 | make libselinux-rpm |
|---|
| | 23 | rpm -Uvh --force rpm/RPMS/$(ARCH)/libselinux*.rpm |
|---|
| | 24 | make libsemanage-rpm |
|---|
| | 25 | rpm -Uvh --force rpm/RPMS/$(ARCH)/libsemanage*.rpm |
|---|
| | 26 | make policycoreutils-rpm |
|---|
| | 27 | rpm -Uvh --force rpm/RPMS/$(ARCH)/policycoreutils*.rpm |
|---|
| | 28 | make checkpolicy-rpm |
|---|
| | 29 | rpm -Uvh --force rpm/RPMS/$(ARCH)/checkpolicy*.rpm |
|---|
| 26 | 30 | |
|---|
| 27 | 31 | checkpolicy-rpm: |
|---|
| 28 | 32 | rpmbuild $(RPM_BUILD_FLAGS) -ba $(CHECKPOLICY_SPEC) |
|---|
| | 33 | cp $(RPM_TOPDIR)/RPMS/$(ARCH)/checkpolicy*.rpm $(OUTPUT_DIR) |
|---|
| 29 | 34 | |
|---|
| 30 | 35 | libselinux-rpm: |
|---|
| 31 | 36 | rpmbuild $(RPM_BUILD_FLAGS) -ba $(LIBSELINUX_SPEC) |
|---|
| | 37 | cp $(RPM_TOPDIR)/RPMS/$(ARCH)/libselinux*.rpm $(OUTPUT_DIR) |
|---|
| 32 | 38 | |
|---|
| 33 | 39 | libsemanage-rpm: |
|---|
| 34 | 40 | rpmbuild $(RPM_BUILD_FLAGS) -ba $(LIBSEMANAGE_SPEC) |
|---|
| | 41 | cp $(RPM_TOPDIR)/RPMS/$(ARCH)/libsemanage*.rpm $(OUTPUT_DIR) |
|---|
| 35 | 42 | |
|---|
| 36 | 43 | libsepol-rpm: |
|---|
| 37 | 44 | rpmbuild $(RPM_BUILD_FLAGS) -ba $(LIBSEPOL_SPEC) |
|---|
| | 45 | cp $(RPM_TOPDIR)/RPMS/$(ARCH)/libsepol*.rpm $(OUTPUT_DIR) |
|---|
| 38 | 46 | |
|---|
| 39 | 47 | policycoreutils-rpm: |
|---|
| 40 | 48 | rpmbuild $(RPM_BUILD_FLAGS) -ba $(POLICYCOREUTILS_SPEC) |
|---|
| | 49 | cp $(RPM_TOPDIR)/RPMS/$(ARCH)/policycoreutils*.rpm $(OUTPUT_DIR) |
|---|
| 41 | 50 | |
|---|
| 42 | 51 | clean: |
|---|
| … | … | |
| 47 | 56 | mkdir $(INSTALL_DIR) |
|---|
| 48 | 57 | |
|---|
| | 58 | .PHONY: all checkpolicy-rpm libselinux-rpm libsemanage-rpm libsepol-rpm policycoreutils-rpm clean |
|---|
Download in other formats:
* Generating other formats may take time.
