Hi,
Sun, Aug 09, 2020 at 03:15:20PM -1000, Paul Spooren wrote:
> From: Thomas Petazzoni
>
> In order to support SELinux in OpenWrt, this commit introduces minimal
> support for loading the SELinux policy in the init code. The logic is
> very much inspired from what Busybox is doing: call
> selin
[...]
> This is part of a bigger PR on GitHub[1], however this patch should be
> added directly to `procd` rather than as a patch in openwrt.git.
[...]
I will update the GitHub pull request once this is merged. Thank you,
Paul!
--
Mike
:wq
___
open
From: Thomas Petazzoni
In order to support SELinux in OpenWrt, this commit introduces minimal
support for loading the SELinux policy in the init code. The logic is
very much inspired from what Busybox is doing: call
selinux_init_load_policy() from libselinux, and then re-execute init
so that it r
Hello Thomas,
Le lun. 18 nov. 2019 à 05:33, Thomas Petazzoni
a écrit :
>
> Hello Petr,
>
> Thanks for your feedback again.
>
> On Sat, 16 Nov 2019 14:22:13 +0100
> Petr Štetiar wrote:
>
> > (nitpick, it's OpenWrt, not OpenWRT)
>
> Thanks for this clarification, it's always good to use the proper
Hello Petr,
Thanks for your feedback again.
On Sat, 16 Nov 2019 14:22:13 +0100
Petr Štetiar wrote:
> (nitpick, it's OpenWrt, not OpenWRT)
Thanks for this clarification, it's always good to use the proper
capitalization for project names. I'll try to use OpenWrt in the
future, but please bear w
Thomas Petazzoni [2019-11-15 09:16:32]:
(nitpick, it's OpenWrt, not OpenWRT)
> No, this patch is not RFC, it should be ready for merging, I'm already
> using it in some devices.
Ok, this patch is good enough for your limited use case, but in order to
include SELinux support in OpenWrt, then the
Hello Petr,
Thanks for your feedback!
On Fri, 15 Nov 2019 06:29:49 +0100
Petr Štetiar wrote:
> is this some kind of RFC/idea probe? I like the idea, additional hardening is
> needed and welcome I would say.
No, this patch is not RFC, it should be ready for merging, I'm already
using it in some
Thomas Petazzoni [2019-11-13 16:12:41]:
Hi,
is this some kind of RFC/idea probe? I like the idea, additional hardening is
needed and welcome I would say.
> I have patches ready to add some minimal SELinux support to OpenWRT,
> which I intend to send in the near future.
It would probably make m
In order to support SELinux in OpenWRT, this commit introduces minimal
support for loading the SELinux policy in the init code. The logic is
very much inspired from what Busybox is doing: call
selinux_init_load_policy() from libselinux, and then re-execute init
so that it runs with the SELinux poli
