Name refpolicy-targeted
Version 2.20190201
Summary SELinux targeted policy
Description This is the targeted variant of the SELinux reference policy. Most service domains are locked down. Users and admins will login in with unconfined_t domain, so they have the same access to the system as if SELinux was not enabled.
Section admin
License GPLv2
Homepage
Recipe file recipes-security/refpolicy/refpolicy-targeted_2.20190201.bb
recipes-security/refpolicy/refpolicy_2.20190201.inc
recipes-security/refpolicy/refpolicy_common.inc
Layer meta-selinux (warrior branch)
Inherits
  • python-dir
  • pythonnative
Dependencies
  • bzip2-replacement-native
  • checkpolicy-native
  • m4-native
  • policycoreutils-native
  • python-native
  • semodule-utils-native
PACKAGECONFIG options

Sources

https://github.com/SELinuxProject/refpolicy/releases/download/RELEASE_2_20190201/refpolicy-2.20190201.tar.bz2

Patches

Patch Status
refpolicy-2.20190201/0001-fc-subs-volatile-alias-common-var-volatile-paths.patch Pending
refpolicy-2.20190201/0002-fc-subs-busybox-set-aliases-for-bin-sbin-and-usr.patch Unknown
refpolicy-2.20190201/0003-fc-sysklogd-apply-policy-to-sysklogd-symlink.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0004-fc-hostname-apply-policy-to-common-yocto-hostname-al.patch Inappropriate [only for Yocto]
refpolicy-2.20190201/0005-fc-bash-apply-usr-bin-bash-context-to-bin-bash.bash.patch Inappropriate [only for Yocto]
refpolicy-2.20190201/0006-fc-resolv.conf-label-resolv.conf-in-var-run-properly.patch Pending
refpolicy-2.20190201/0007-fc-login-apply-login-context-to-login.shadow.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0008-fc-bind-fix-real-path-for-bind.patch Pending
refpolicy-2.20190201/0009-fc-hwclock-add-hwclock-alternatives.patch Pending
refpolicy-2.20190201/0010-fc-dmesg-apply-policy-to-dmesg-alternatives.patch Pending
refpolicy-2.20190201/0011-fc-ssh-apply-policy-to-ssh-alternatives.patch Pending
refpolicy-2.20190201/0012-fc-sysnetwork-apply-policy-to-ip-alternatives.patch Pending
refpolicy-2.20190201/0013-fc-udev-apply-policy-to-udevadm-in-libexec.patch Pending
refpolicy-2.20190201/0014-fc-rpm-apply-rpm_exec-policy-to-cpio-binaries.patch Pending
refpolicy-2.20190201/0015-fc-su-apply-policy-to-su-alternatives.patch Pending
refpolicy-2.20190201/0016-fc-fstools-fix-real-path-for-fstools.patch Pending
refpolicy-2.20190201/0017-policy-module-logging-Add-the-syslogd_t-to-trusted-o.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0018-policy-module-logging-add-rules-for-the-symlink-of-v.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0019-policy-module-logging-add-rules-for-syslogd-symlink-.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0020-policy-module-logging-add-domain-rules-for-the-subdi.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0021-policy-module-files-add-rules-for-the-symlink-of-tmp.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0022-policy-module-terminals-add-rules-for-bsdpty_device_.patch Pending
refpolicy-2.20190201/0023-policy-module-terminals-don-t-audit-tty_device_t-in-.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0024-policy-module-rpc-allow-nfsd-to-exec-shell-commands.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0025-policy-module-rpc-fix-policy-for-nfsserver-to-mount-.patch Pending
refpolicy-2.20190201/0026-policy-module-sysfs-fix-for-new-SELINUXMNT-in-sys.patch Inappropriate [only for Poky]
refpolicy-2.20190201/0027-policy-module-rpc-allow-sysadm-to-run-rpcinfo.patch Pending
refpolicy-2.20190201/0028-policy-module-userdomain-fix-selinux-utils-to-manage.patch Pending
refpolicy-2.20190201/0029-policy-module-selinuxutil-fix-setfiles-statvfs-to-ge.patch Pending
refpolicy-2.20190201/0030-policy-module-admin-fix-dmesg-to-use-dev-kmsg-as-def.patch Unknown
refpolicy-2.20190201/0031-policy-module-ftp-add-ftpd_t-to-mls_file_write_all_l.patch Pending
refpolicy-2.20190201/0032-policy-module-init-update-for-systemd-related-allow-.patch Pending
refpolicy-2.20190201/0033-refpolicy-minimum-make-sysadmin-module-optional.patch Pending
refpolicy-2.20190201/0034-policy-module-apache-add-rules-for-the-symlink-of-va.patch Pending
refpolicy-2.20190201/0001-fix-update-alternatives-for-sysvinit.patch Inappropriate [only for Poky]

Other branches

This recipe in other branches of meta-selinux:

Branch Recipe
master refpolicy-targeted 2.20240226+git
scarthgap (Yocto Project 5.0) refpolicy-targeted 2.20240226+git
nanbield (Yocto Project 4.3) refpolicy-targeted 2.20231002+gitX
mickledore (Yocto Project 4.2) refpolicy-targeted 2.20221101+gitX
langdale (Yocto Project 4.1) refpolicy-targeted 2.20221101+gitX
kirkstone (Yocto Project 4.0) refpolicy-targeted 2.20210908+gitX
honister (Yocto Project 3.4) refpolicy-targeted 2.20210203+gitX
hardknott (Yocto Project 3.3) refpolicy-targeted 2.20210203+gitX
gatesgarth (Yocto Project 3.2) refpolicy-targeted 2.20200229+gitX
dunfell (Yocto Project 3.1) refpolicy-targeted 2.20200229+gitX
zeus (Yocto Project 3.0) refpolicy-targeted 2.20190201
zeus (Yocto Project 3.0) refpolicy-targeted 2.20190201+gitX
warrior (Yocto Project 2.7) refpolicy-targeted 2.20190201 (this recipe)
warrior (Yocto Project 2.7) refpolicy-targeted 2.20190201+gitX
thud (Yocto Project 2.6) refpolicy-targeted 2.20170204
thud (Yocto Project 2.6) refpolicy-targeted 2.20170805+gitX
sumo (Yocto Project 2.5) refpolicy-targeted 2.20170204
sumo (Yocto Project 2.5) refpolicy-targeted 2.20170805+gitX
rocko (Yocto Project 2.4) refpolicy-targeted 2.20170204
rocko (Yocto Project 2.4) refpolicy-targeted 2.20170805+gitX
morty (Yocto Project 2.2) refpolicy-targeted git
morty (Yocto Project 2.2) refpolicy-targeted 2.20151208
jethro (Yocto Project 2.0) refpolicy-targeted git
jethro (Yocto Project 2.0) refpolicy-targeted 2.20141203
jethro (Yocto Project 2.0) refpolicy-targeted 2.20140311
fido (Yocto Project 1.8) refpolicy-targeted 2.20140311
dizzy (Yocto Project 1.7) refpolicy-targeted 2.20140311