mock SELinux policy as RPM package
Clark Williams
williams at redhat.com
Thu Aug 17 20:24:59 UTC 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Michael_E_Brown at dell.com wrote:
>> -----Original Message-----
>> From: fedora-buildsys-list-bounces at redhat.com
>> [mailto:fedora-buildsys-list-bounces at redhat.com] On Behalf Of
>> Clark Williams
>> Sent: Thursday, August 17, 2006 10:56 AM
>> To: Discussion of Fedora build system
>> Subject: Re: mock SELinux policy as RPM package
>>
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> Hans Ulrich Niedermann wrote:
>>> Hi,
>>>
>>> the question of a package of the mock SELinux policy from
>>>
>>> http://fedoraproject.org/wiki/Extras/MockTricks
>>>
>>> has come up a few times in the past, and I have made an RPM
>> package for
>>> my own use some time ago:
>>>
>>> http://n-dimensional.de/software/mock-selinux-policy/
>>>
>>> It doesn't have all the bells and whistles Paul Howarth has
>> mentioned in
>> http://fedoraproject.org/wiki/PackagingDrafts/SELinux/PolicyMo
>> dules yet
>>> (my package predates that document by several weeks), but
>> should be too
>>> difficult to adapt if someone is interested.
>>>
>>> (This is my second try to post here as my last message seems to have
>>> been eaten by the moderation system.)
>>>
>>> Gruß,
>>>
>>
>> - From a quick read of the Wiki, it looks like there are packages that
>> fail to build on FC5 hosts due to policy problems (I didn't realize
>> that). This means to me that we should add a loadable policy
>> module as
>> part of the mock package.
>>
>> Seth, Michael, Dan, et al, what do you guys think?
>
> I think it would be a good idea to package an selinux policy directly in with the mock package. This would give people a good starting place for tweaking if they have problems, and encourage them to send their fixes upstream.
>
> Hans policy might be a good starting point if it passes review by somebody who knows more about selinux than I do.
> --
Yeah, you and I are in the same boat. I can *spell* SELinux, but that's
about it. I'll poke around a bit with the policy and see what it would
take to integrate it. Might be able to get Dan Walsh to look at it as well.
Clark
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iD8DBQFE5NCaHyuj/+TTEp0RAjAtAJ9LGRhjBlmVCUynuRFDa+dfSRD+rQCg1lvM
Kj/kgW53htgL82aWEYiISII=
=ZKzj
-----END PGP SIGNATURE-----
More information about the Fedora-buildsys-list
mailing list