diff options
| author | Shrikant Bobade <shrikant_bobade@mentor.com> | 2015-08-03 19:05:21 +0530 |
|---|---|---|
| committer | Joe MacDonald <joe_macdonald@mentor.com> | 2015-08-07 17:33:21 -0400 |
| commit | 400c60cafb44642d41b76655142e8dfab11ef996 (patch) | |
| tree | 151131017d39e179934b7e5502959c509da3ddb4 | |
| parent | b76d7df5522d9e41fc3e25f07d7f2d55f9e90f56 (diff) | |
| download | meta-selinux-400c60cafb44642d41b76655142e8dfab11ef996.tar.gz | |
refpolicy-targeted: update base refpolicy to git repo
A simple forward-port of refpolicy-targeted to use the
refpolicy from git repository.
Signed-off-by: Shrikant Bobade <shrikant_bobade@mentor.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
| -rw-r--r-- | recipes-security/refpolicy/refpolicy-targeted_git.bb | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/recipes-security/refpolicy/refpolicy-targeted_git.bb b/recipes-security/refpolicy/refpolicy-targeted_git.bb new file mode 100644 index 0000000..b169604 --- /dev/null +++ b/recipes-security/refpolicy/refpolicy-targeted_git.bb | |||
| @@ -0,0 +1,20 @@ | |||
| 1 | SUMMARY = "SELinux targeted policy" | ||
| 2 | DESCRIPTION = "\ | ||
| 3 | This is the targeted variant of the SELinux reference policy. Most service \ | ||
| 4 | domains are locked down. Users and admins will login in with unconfined_t \ | ||
| 5 | domain, so they have the same access to the system as if SELinux was not \ | ||
| 6 | enabled. \ | ||
| 7 | " | ||
| 8 | |||
| 9 | FILESEXTRAPATHS_prepend := "${THISDIR}/refpolicy-${PV}:" | ||
| 10 | |||
| 11 | POLICY_NAME = "targeted" | ||
| 12 | POLICY_TYPE = "mcs" | ||
| 13 | POLICY_MLS_SENS = "0" | ||
| 14 | |||
| 15 | include refpolicy_${PV}.inc | ||
| 16 | |||
| 17 | SRC_URI += " \ | ||
| 18 | file://refpolicy-fix-optional-issue-on-sysadm-module.patch \ | ||
| 19 | file://refpolicy-unconfined_u-default-user.patch \ | ||
| 20 | " | ||