| 1 |
######################################## |
|---|
| 2 |
# |
|---|
| 3 |
# Policy build options |
|---|
| 4 |
# |
|---|
| 5 |
|
|---|
| 6 |
# Policy version |
|---|
| 7 |
# By default, checkpolicy will create the highest |
|---|
| 8 |
# version policy it supports. Setting this will |
|---|
| 9 |
# override the version. This only has an |
|---|
| 10 |
# effect for monolithic policies. |
|---|
| 11 |
#OUTPUT_POLICY = 18 |
|---|
| 12 |
|
|---|
| 13 |
# Policy Type |
|---|
| 14 |
# standard, mls, mcs |
|---|
| 15 |
TYPE = standard |
|---|
| 16 |
|
|---|
| 17 |
# Policy Name |
|---|
| 18 |
# If set, this will be used as the policy |
|---|
| 19 |
# name. Otherwise the policy type will be |
|---|
| 20 |
# used for the name. |
|---|
| 21 |
NAME = refpolicy |
|---|
| 22 |
|
|---|
| 23 |
# Distribution |
|---|
| 24 |
# Some distributions have portions of policy |
|---|
| 25 |
# for programs or configurations specific to the |
|---|
| 26 |
# distribution. Setting this will enable options |
|---|
| 27 |
# for the distribution. |
|---|
| 28 |
# redhat, gentoo, debian, suse, and rhel4 are current options. |
|---|
| 29 |
# Fedora users should enable redhat. |
|---|
| 30 |
#DISTRO = redhat |
|---|
| 31 |
|
|---|
| 32 |
# Unknown Permissions Handling |
|---|
| 33 |
# The behavior for handling permissions defined in the |
|---|
| 34 |
# kernel but missing from the policy. The permissions |
|---|
| 35 |
# can either be allowed, denied, or the policy loading |
|---|
| 36 |
# can be rejected. |
|---|
| 37 |
# allow, deny, and reject are current options. |
|---|
| 38 |
#UNK_PERMS = deny |
|---|
| 39 |
|
|---|
| 40 |
# Direct admin init |
|---|
| 41 |
# Setting this will allow sysadm to directly |
|---|
| 42 |
# run init scripts, instead of requring run_init. |
|---|
| 43 |
# This is a build option, as role transitions do |
|---|
| 44 |
# not work in conditional policy. |
|---|
| 45 |
DIRECT_INITRC = n |
|---|
| 46 |
|
|---|
| 47 |
# Build monolithic policy. Putting n here |
|---|
| 48 |
# will build a loadable module policy. |
|---|
| 49 |
MONOLITHIC = y |
|---|
| 50 |
|
|---|
| 51 |
# User-based access control (UBAC) |
|---|
| 52 |
# Enable UBAC for role separations. |
|---|
| 53 |
UBAC = y |
|---|
| 54 |
|
|---|
| 55 |
# Number of MLS Sensitivities |
|---|
| 56 |
# The sensitivities will be s0 to s(MLS_SENS-1). |
|---|
| 57 |
# Dominance will be in increasing numerical order |
|---|
| 58 |
# with s0 being lowest. |
|---|
| 59 |
MLS_SENS = 16 |
|---|
| 60 |
|
|---|
| 61 |
# Number of MLS Categories |
|---|
| 62 |
# The categories will be c0 to c(MLS_CATS-1). |
|---|
| 63 |
MLS_CATS = 256 |
|---|
| 64 |
|
|---|
| 65 |
# Number of MCS Categories |
|---|
| 66 |
# The categories will be c0 to c(MLS_CATS-1). |
|---|
| 67 |
MCS_CATS = 256 |
|---|
| 68 |
|
|---|
| 69 |
# Set this to y to only display status messages |
|---|
| 70 |
# during build. |
|---|
| 71 |
QUIET = n |
|---|
