jack_poky_selinux's Introduction
########## git add . fatal: in unpopulated submodule 'poky/meta-openembedded' git rm --cached meta-openembedded -f fatal: pathspec 'meta-openembedded' did not match any files jackbwang@ubu-91492:/media/jackbwang/SAMPLE/temp/jack_poky_selinux/poky/meta-openembedded$ cd .. jackbwang@ubu-91492:/media/jackbwang/SAMPLE/temp/jack_poky_selinux/poky$ git rm --cached meta-openembedded -f rm 'poky/meta-openembedded' jackbwang@ubu-91492:/media/jackbwang/SAMPLE/temp/jack_poky_selinux/poky$ git status On branch open_branch_1 Changes to be committed: (use "git reset HEAD <file>..." to unstage) deleted: meta-openembedded git add meta-openembedded git checkout -b "branch_name" git commit -m "something" git push --set-upstream origin open_branch_1 User:jwang3089 Password:token ########### checkin using tokens https://github.com Login: jwang3089 Password: ArubaXXX6 Setting: Developer Settings: Personal access tokes: git push https://[email protected]/jwang3089/jack_poky_selinux.git/ git push --set-upstream origin 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@branch_names ########### dunfell: ########### yocto: https://git.yoctoproject.org/git/poky ########### https://github.com/ni/meta-selinux.git git checkout origin/dunfell ########### https://github.com/openembedded/meta-openembedded.git git checkout origin/dunfell ########### https://git.yoctoproject.org/cgit/cgit.cgi/meta-virtualization/ https://git.yoctoproject.org/git/meta-virtualization git checkout origin/dunfell ########### Enable ssh with no password: local.conf IMAGE_INSTALL_append += " packagegroup-core-ssh-openssh" IMAGE_INSTALL_append += "openssh-sftp-server" ## No PASSWORD EXTRA_IMAGE_FEATURES ?= "debug-tweaks ssh-server-openssh" ########### ## DELETE tap sudo ip link delet tapX ########## Add bblaer the metas ########### PACTHES: This fixes the error below: gcc: error: unrecognized command line option โ-fmacro-prefix-map=/path/to/build/libselinux-python/3.0-r0=/usr/src/debug/libselinux-python/3.0-r0โ Without inheriting the config, supposedly a wrong compiler is used. ########### Signed-off-by: Anatol Belski <[email protected]> Signed-off-by: Joe MacDonald <[email protected]> Diffstat -rw-r--r-- recipes-security/selinux/libselinux-python_3.0.bb 2 1 files changed, 2 insertions, 0 deletions diff --git a/recipes-security/selinux/libselinux-python_3.0.bb b/recipes-security/selinux/libselinux-python_3.0.bb index 2b5438d..3c03df1 100644 --- a/recipes-security/selinux/libselinux-python_3.0.bb +++ b/recipes-security/selinux/libselinux-python_3.0.bb @@ -4,6 +4,8 @@ SRC_URI = "https://github.com/SELinuxProject/selinux/releases/download/${SELINUX require ${BPN}.inc +inherit python3targetconfig + LIC_FILES_CHKSUM = "file://LICENSE;md5=84b4d2c6ef954a2d4081e775a270d0d0" SRC_URI[md5sum] = "b387a66f087b6d97713570e85ec89d89" Dependencies (use sumo meta-selinux, meta-openembedded, meta-virtualization) ########### local.conf: MACHINE ??= "qemux86-64" ########### >> runqemu qemux86-64 ################# Add in the bbappend: ./meta/recipes-core/images/core-image-minimal.bb packagegroup-core-selinux ########### scripts/runqemu: mach = self.get('MACHINE') if not mach.startswith('qemumips'): self.kernel_cmdline_script += ' JACKWANG FIMXE=0xDEADBEFF selinux=1 enforcing=0 mem=%s' % self.get('QB_MEM').replace('-m','').strip() + 'M' ------------ This layer depends on the openembedded-core metadata. This layer also optionally depends on the following layers: URI: git://github.com/openembedded/meta-oe.git branch: master revision: HEAD layers: meta-oe meta-networking meta-python URI: git://git.yoctoproject.org/meta-virtualization branch: master revision: HEAD ########### # Enable SELinux DISTRO_FEATURES_append = " acl xattr pam selinux" ########### # Enable SELinux with policy You must also specify a preferred provider for the virtual/refpolicy. The included policies with this layer are simply reference policies and will need to be tailored for your environment. * Enable the refpolicy-mls: ########### e.g. PREFERRED_PROVIDER_virtual/refpolicy ?= "refpolicy-mls" Using different init manager ---------------------------- By default selinux enabled images coming up with "sysvinit" as init manager, we can use "systemd" as an init manager using below changes to local.conf ########### * enable systemd as init manager changes to local.conf DISTRO_FEATURES_remove = " sysvinit" DISTRO_FEATURES_append = " systemd" VIRTUAL-RUNTIME_init_manager = "systemd" DISTRO_FEATURES_BACKFILL_CONSIDERED = "" Starting up the system ---------------------- Most likely the reference policy selected will not just work "out of the box". As always, if you update the reference policy to better work with OpenEmbedded or Poky configurations, please submit the changes back to the project. When using 'core-image-selinux', the system will boot and automatically setup the policy by running the "fixfiles -f -F relabel" for you. This is implemented via the 'selinux-autorelabel' recipe. The 'core-image-selinux-minimal' does not automatically relabel the system. So you must boot using the parameters "selinux=1 enforcing=0", and then manually perform the setup. Running 'fixfiles -f -F relabel' is available in this configuratio ########### >> sestatus ########## When booting need to type CTRL-C
jack_poky_selinux's People
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.