Pull in various selinux bits that need modification, and enable them.
setools: Needs patching to support cross building
policycoreutils: Needs patching to remove python runtime dependency
sec-policy/*: We need custom policy modifications
In addition, modify selinux-policy-2.eclass to support pulling in selinux
includes from the build root rather than /, enable selinux in systemd's
use flags and enable selinux support in the kernel.
btmp and wtmp will now be properly rotated, yay!
Masking of logrotate configs has moved to just apply to boards, leaving
them in the SDK can be a useful reference.
The LDFLAGS setting for package building is generally not suitable for building
the kernel, and on some architectures will even lead to kernel build errors.
Fixes errors like these on kernel architectures that do not set the LDFLAGS
variable:
ld: unrecognized option '-Wl,-O1'
Signed-off-by: Geoff Levand <geoff@infradead.org>
The bzImage format is architecture specific. The default x86_64 make target
will generate a bzImage, so using the default make target should be sufficient
for x86_64 builds.
Fixes build errors like these:
make: *** No rule to make target 'bzImage'.
Signed-off-by: Geoff Levand <geoff@infradead.org>
Fixes build errors like these when building docker-9999:
error: .git directory missing and DOCKER_GITCOMMIT not specified
Signed-off-by: Geoff Levand <geoff@infradead.org>
In preparation for removing the unused sys-fs/fuse package, remove any
dependencies on sys-fs/fuse, sys-fs/sshfs-fuse and sys-fs/libfat.
Also bump the version of coreos-dev-0.1.0-r73 to coreos-dev-0.1.0-r74 and
hard-host-depends-0.0.1-r172 to hard-host-depends-0.0.1-r173.
Signed-off-by: Geoff Levand <geoff@infradead.org>
Commit 1adfcba3b7e075151d4ca5f43c891532f6a2d98c (app-emulation/open-vm-tools:
bump to 9.10.0) removed the local patch that added--with-fuse and --with-hgfs
configure options. These local options are needed to avoid any dependency on
these packages.
Signed-off-by: Geoff Levand <geoff@infradead.org>
gentoo-functions replaces the old /etc/init.d/functions.sh (provided by
sys-apps/efunctions in CoreOS or OpenRC in Gentoo). Version 0.10 fixes
eerror to log to stderr, matching the behavior of OpenRC. This bug is
also present in efunctions and will be resolved by switching to
gentoo-functions instead.
For convenience, either to reference or for use to update the ebuild defconfig,
generate a minimal kernel defconfig using 'savedefconfig'.
Signed-off-by: Geoff Levand <geoff@infradead.org>
