Signed-off-by: Philip Tricca <fl...@twobit.us>
---
...emanage-disable-expand-check-on-policy-load.patch | 20 +++++++++-----------
recipes-security/selinux/libsemanage_2.3.bb | 17 -----------------
recipes-security/selinux/libsemanage_2.4.bb | 18 ++++++++++++++++++
3 files changed, 27 insertions(+), 28 deletions(-)
delete mode 100644 recipes-security/selinux/libsemanage_2.3.bb
create mode 100644 recipes-security/selinux/libsemanage_2.4.bb
diff --git
a/recipes-security/selinux/libsemanage/libsemanage-disable-expand-check-on-policy-load.patch
b/recipes-security/selinux/libsemanage/libsemanage-disable-expand-check-on-policy-load.patch
index 653cfbb..d755464 100644
---
a/recipes-security/selinux/libsemanage/libsemanage-disable-expand-check-on-policy-load.patch
+++
b/recipes-security/selinux/libsemanage/libsemanage-disable-expand-check-on-policy-load.patch
@@ -16,17 +16,15 @@ Signed-off-by: Joe MacDonald <j...@deserted.net>
src/semanage.conf | 4 ++++
1 file changed, 4 insertions(+)
-diff --git a/src/semanage.conf b/src/semanage.conf
-index 24e1999..42050a7 100644
---- a/src/semanage.conf
-+++ b/src/semanage.conf
-@@ -36,3 +36,6 @@ module-store = direct
- # version is necessary.
- #policy-version = 19
-
+Index: libsemanage-2.4/src/semanage.conf
+===================================================================
+--- libsemanage-2.4.orig/src/semanage.conf
++++ libsemanage-2.4/src/semanage.conf
+@@ -39,3 +39,7 @@ module-store = direct
+ # By default, semanage will generate policies for the SELinux target.
+ # To build policies for Xen, uncomment the following line.
+ #target-platform = xen
++
+# Don't check the entire policy hierarchy when inserting / expanding a policy
+# module. This results in a significant speed-up in policy loading.
+expand-check=0
---
-1.7.10.4
-
diff --git a/recipes-security/selinux/libsemanage_2.3.bb
b/recipes-security/selinux/libsemanage_2.3.bb
deleted file mode 100644
index a238e08..0000000
--- a/recipes-security/selinux/libsemanage_2.3.bb
+++ /dev/null
@@ -1,17 +0,0 @@
-include selinux_20140506.inc
-include ${BPN}.inc
-
-LIC_FILES_CHKSUM = "file://COPYING;md5=a6f89e2100d9b6cdffcea4f398e37343"
-
-SRC_URI[md5sum] = "e564e2b92d18db35707060da29cddab9"
-SRC_URI[sha256sum] =
"03e09e35e611c286e446bef92b6023ef2623815996f5a53394bb02e49a312e4b"
-
-SRC_URI += "\
- file://libsemanage-Fix-execve-segfaults-on-Ubuntu.patch \
- file://libsemanage-fix-path-len-limit.patch \
- file://libsemanage-fix-path-nologin.patch \
- file://libsemanage-drop-Wno-unused-but-set-variable.patch \
- file://libsemanage-define-FD_CLOEXEC-as-necessary.patch;striplevel=2 \
- file://libsemanage-allow-to-disable-audit-support.patch \
- file://libsemanage-disable-expand-check-on-policy-load.patch \
- "
diff --git a/recipes-security/selinux/libsemanage_2.4.bb
b/recipes-security/selinux/libsemanage_2.4.bb
new file mode 100644
index 0000000..2e0dfd5
--- /dev/null
+++ b/recipes-security/selinux/libsemanage_2.4.bb
@@ -0,0 +1,18 @@
+include selinux_20150202.inc
+include ${BPN}.inc
+
+LIC_FILES_CHKSUM = "file://COPYING;md5=a6f89e2100d9b6cdffcea4f398e37343"
+
+SRC_URI[md5sum] = "cd551eb1cc5d20652660bda037972f0d"
+SRC_URI[sha256sum] =
"1a4cace4ef16786531ec075c0e7b2f961e2fee5dc86c5f983a689058899a6484"
+
+SRC_URI += "\
+ file://libsemanage-Fix-execve-segfaults-on-Ubuntu.patch \
+ file://libsemanage-fix-path-len-limit.patch \
+ file://libsemanage-fix-path-nologin.patch \
+ file://libsemanage-drop-Wno-unused-but-set-variable.patch \
+ file://libsemanage-define-FD_CLOEXEC-as-necessary.patch;striplevel=2 \
+ file://libsemanage-allow-to-disable-audit-support.patch \
+ file://libsemanage-disable-expand-check-on-policy-load.patch \
+ "
+FILES_${PN} += "/usr/libexec"
--
2.1.4
--
_______________________________________________
yocto mailing list
yocto@yoctoproject.org
https://lists.yoctoproject.org/listinfo/yocto
