[Buildroot] [PATCH 05/17] checkpolicy: new package
Clayton Shotwell
clshotwe at rockwellcollins.com
Mon Sep 9 17:33:04 UTC 2013
Thomas,
Thomas Petazzoni <thomas.petazzoni at free-electrons.com> wrote on 09/06/2013
12:56:09 PM:
> Is a target variant of this package really needed? In the context of
> Buildroot and cross-compilation, I would expect the policy to be
> written on the development machine, the compilation to happen on the
> development machine, and only the resulting binary copied
> to the target.
>
> We generally don't support "development" on the target,
> and we expect
> the system generated by Buildroot to be ready to use. I am
> not familiar
> with SELinux at all, but my understanding is that this
> Buildroot policy
> should translate into just the SELinux binary policy to be
> installed on
> the target, the compiler being kept on the host.
Very good point and I agree completely. This package is used to compile
the SELinux policy from source and that should only be done on the host. I
will go ahead and remove the target build commands and Config.in file to
keep this a host only utility.
> > +CHECKPOLICY_SITE = http://userspace.selinuxproject.org/
> releases/20130423/
> > +CHECKPOLICY_LICENSE = GPLv2
>
> Really GPLv2, not GPLv2+ ?
Yes, just GPLv2 per most of the headers. Several source files contain no
license information and there are a couple that contain a LGPLv2.1+. I am
going to consider everything under the GPLv2 since that is the most
restrictive license.
Thanks,
Clayton
Clayton Shotwell
Software Engineer
clshotwe at rockwellcollins.com
www.rockwellcollins.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.busybox.net/pipermail/buildroot/attachments/20130909/0b5f6af6/attachment-0002.html>
More information about the buildroot
mailing list