Startsida Utforska Hjälp
Registrera dig Logga in
OpenWrt
/
openwrt
spegling av https://github.com/openwrt/openwrt.git
2
0
Fork 0
Filer Ärenden 0 Wiki
Bläddra i källkod

image.mk: evaluate /etc/selinux/config to choose SELinux policy

Instead of hardcoding 'targeted' policy, evaluate /etc/selinux/config
in rootfs to choose according to which policy files in the rootfs got
to be labeled.

Signed-off-by: Daniel Golle <[email protected]>
Daniel Golle 5 år sedan
förälder
96d1dc5ebf
incheckning
26aa7952d5
1 ändrade filer med 3 tillägg och 2 borttagningar
Delad Vy Visa Diff Statistik
  1. 3 2
      include/image.mk

+ 3 - 2
include/image.mk
Visa fil 

@@ -243,10 +243,11 @@ endef
 
 
 ifeq ($(CONFIG_TARGET_ROOTFS_SECURITY_LABELS),y)
 
 define Image/mkfs/squashfs
 
+	echo ". $(call mkfs_target_dir,$(1))/etc/selinux/config" > [email protected]
 
 	echo "$(STAGING_DIR_HOST)/bin/setfiles -r" \
 
 	     "$(call mkfs_target_dir,$(1))" \
 
-	     "$(call mkfs_target_dir,$(1))/etc/selinux/targeted/contexts/files/file_contexts " \
 
-	     "$(call mkfs_target_dir,$(1))" > [email protected]
 
+	     "$(call mkfs_target_dir,$(1))/etc/selinux/\$${SELINUXTYPE}/contexts/files/file_contexts " \
 
+	     "$(call mkfs_target_dir,$(1))" >> [email protected]
 
 	echo "$(Image/mkfs/squashfs-common)" >> [email protected]
 
 	chmod +x [email protected]
 
 	$(FAKEROOT) "[email protected]"