[openwrt/openwrt] selinux-policy: adds new package
LEDE Commits
lede-commits at lists.infradead.org
Thu Oct 8 21:16:00 EDT 2020
dangole pushed a commit to openwrt/openwrt.git, branch master:
https://git.openwrt.org/bf12f05bbfd50ba6f8f9c49a8980239efcc29930
commit bf12f05bbfd50ba6f8f9c49a8980239efcc29930
Author: Dominick Grift <dominick.grift at defensec.nl>
AuthorDate: Wed Sep 30 12:21:19 2020 +0200
selinux-policy: adds new package
Signed-off-by: Dominick Grift <dominick.grift at defensec.nl>
---
package/system/selinux-policy/Makefile | 53 ++++++++++++++++++++++
package/system/selinux-policy/files/selinux-config | 2 +
2 files changed, 55 insertions(+)
diff --git a/package/system/selinux-policy/Makefile b/package/system/selinux-policy/Makefile
new file mode 100644
index 0000000000..3b887ff8d6
--- /dev/null
+++ b/package/system/selinux-policy/Makefile
@@ -0,0 +1,53 @@
+#
+# This is free software, licensed under the GNU General Public License v2.
+# See /LICENSE for more information.
+#
+
+include $(TOPDIR)/rules.mk
+
+PKG_NAME:=selinux-policy
+PKG_SOURCE_PROTO:=git
+PKG_SOURCE_URL:=https://git.defensec.nl/selinux-policy.git
+PKG_SOURCE_DATE:=2020-10-08
+PKG_SOURCE_VERSION:=cdedea73ecbb8968f9736c35c143b586c8371467
+PKG_MIRROR_HASH:=3d5a6d60b496b51ae272f7cb495a409c724ee193792f78652a2040b57fab56fe
+PKG_BUILD_DEPENDS:=secilc/host policycoreutils/host
+
+PKG_MAINTAINER:=Dominick Grift <dominick.grift at defensec.nl>
+PKG_CPE_ID:=cpe:/a:defensec:selinux-policy
+PKG_LICENSE:=Unlicense
+PKG_LICENSE_FILES:=LICENSE
+
+include $(INCLUDE_DIR)/package.mk
+
+define Package/selinux-policy
+ SECTION:=system
+ CATEGORY:=Base system
+ TITLE:=SELinux security policy for OpenWrt
+ URL:=https://git.defensec.nl/?p=selinux-policy.git;a=summary
+ PKGARCH:=all
+endef
+
+define Package/selinux-policy/description
+ Basic SELinux Security Policy designed specifically for
+ OpenWrt and written in Common Intermediate Language.
+endef
+
+define Build/Compile
+ $(call Build/Compile/Default,policy)
+endef
+
+define Package/selinux-policy/conffiles
+/etc/selinux/config
+endef
+
+define Package/selinux-policy/install
+ $(INSTALL_DIR) $(1)/etc/selinux/$(PKG_NAME)/contexts/files/
+ $(INSTALL_DIR) $(1)/etc/selinux/$(PKG_NAME)/policy/
+ $(INSTALL_DATA) $(PKG_BUILD_DIR)/file_contexts.subs_dist $(1)/etc/selinux/$(PKG_NAME)/contexts/files/
+ $(INSTALL_DATA) $(PKG_BUILD_DIR)/file_contexts $(1)/etc/selinux/$(PKG_NAME)/contexts/files/
+ $(INSTALL_CONF) $(PKG_BUILD_DIR)/policy.* $(1)/etc/selinux/$(PKG_NAME)/policy/
+ $(INSTALL_DATA) ./files/selinux-config $(1)/etc/selinux/config
+endef
+
+$(eval $(call BuildPackage,selinux-policy))
diff --git a/package/system/selinux-policy/files/selinux-config b/package/system/selinux-policy/files/selinux-config
new file mode 100644
index 0000000000..ae5188a839
--- /dev/null
+++ b/package/system/selinux-policy/files/selinux-config
@@ -0,0 +1,2 @@
+SELINUX=enforcing
+SELINUXTYPE=selinux-policy
More information about the lede-commits
mailing list