rpms/selinux-policy
6
0
Fork 0
Code Issues Pull Requests Releases Activity

fix expansion of interfaces from disabled modules.

Browse Source
This commit is contained in:
Chris PeBenito 2006-01-12 16:07:59 +00:00
parent de940877f1
commit e0a9001b86
3 changed files with 10 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
refpolicy/Changelog
View File

@ -1,3 +1,5 @@
- Fix expansion of interfaces from disabled
modules.
- Rsync can be long running from init, - Rsync can be long running from init,
added rules to allow this. added rules to allow this.
- Add polyinstantiation build option. - Add polyinstantiation build option.

6
refpolicy/Makefile
View File

@ -159,12 +159,16 @@ DETECTED_MODS := $(sort $(foreach dir,$(ALL_LAYERS),$(wildcard $(dir)/*.te)) $(G
# modules.conf setting for base module # modules.conf setting for base module
MODBASE := base MODBASE := base
# modules.conf setting for module # modules.conf setting for loadable module
MODMOD := module MODMOD := module
# modules.conf setting for unused module
MODUNUSED := off
# extract settings from modules.conf # extract settings from modules.conf
BASE_MODS := $(addsuffix .te,$(shell awk '/^[[:blank:]]*[[:alpha:]]/{ if ($$3 == "$(MODBASE)") print $$1 }' $(MOD_CONF) 2> /dev/null)) BASE_MODS := $(addsuffix .te,$(shell awk '/^[[:blank:]]*[[:alpha:]]/{ if ($$3 == "$(MODBASE)") print $$1 }' $(MOD_CONF) 2> /dev/null))
MOD_MODS := $(addsuffix .te,$(shell awk '/^[[:blank:]]*[[:alpha:]]/{ if ($$3 == "$(MODMOD)") print $$1 }' $(MOD_CONF) 2> /dev/null)) MOD_MODS := $(addsuffix .te,$(shell awk '/^[[:blank:]]*[[:alpha:]]/{ if ($$3 == "$(MODMOD)") print $$1 }' $(MOD_CONF) 2> /dev/null))
OFF_MODS := $(addsuffix .te,$(shell awk '/^[[:blank:]]*[[:alpha:]]/{ if ($$3 == "$(MODUNUSED)") print $$1 }' $(MOD_CONF) 2> /dev/null))
######################################## ########################################
# #

6
refpolicy/Rules.modular
View File

@ -3,7 +3,7 @@
# Rules and Targets for building modular policies # Rules and Targets for building modular policies
# #
ALL_MODULES := $(BASE_MODS) $(MOD_MODS) ALL_MODULES := $(BASE_MODS) $(MOD_MODS) $(OFF_MODS)
ALL_INTERFACES := $(ALL_MODULES:.te=.if) ALL_INTERFACES := $(ALL_MODULES:.te=.if)
BASE_PKG := base.pp BASE_PKG := base.pp
@ -17,7 +17,7 @@ BASE_POST_TE_FILES := $(USER_FILES) $(POLDIR)/constraints
BASE_FC_FILES := $(BASE_MODS:.te=.fc) BASE_FC_FILES := $(BASE_MODS:.te=.fc)
MOD_MODULES := $(MOD_MODS:.te=.mod) MOD_MODULES := $(MOD_MODS:.te=.mod)
MOD_PKGS := $(notdir $(MOD_MODS:.te=.pp)) MOD_PKGS := $(MOD_MODS:.te=.pp)
# policy packages to install # policy packages to install
INSTPKG := $(addprefix $(MODPKGDIR)/,$(BASE_PKG) $(MOD_PKGS)) INSTPKG := $(addprefix $(MODPKGDIR)/,$(BASE_PKG) $(MOD_PKGS))
@ -110,7 +110,7 @@ tmp/generated_definitions.conf: $(ALL_LAYERS) $(BASE_TE_FILES)
$(QUIET) $(GENPERM) $(AVS) $(SECCLASS) > $@ $(QUIET) $(GENPERM) $(AVS) $(SECCLASS) > $@
# per-userdomain templates # per-userdomain templates
$(QUIET) echo "define(\`per_userdomain_templates',\`" >> $@ $(QUIET) echo "define(\`per_userdomain_templates',\`" >> $@
$(QUIET) for i in $(patsubst %.te,%,$(notdir $(ALL_MODULES))); do \ $(QUIET) for i in $(patsubst %.te,%,$(BASE_MODS) $(MOD_MODS)); do \
echo "ifdef(\`""$$i""_per_userdomain_template',\`""$$i""_per_userdomain_template("'$$*'")')" \ echo "ifdef(\`""$$i""_per_userdomain_template',\`""$$i""_per_userdomain_template("'$$*'")')" \
>> $@ ;\ >> $@ ;\
done done