[selinux-policy: 739/3172] add sechecker targets
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 20:08:43 UTC 2010
commit 8df65f137f025e1adaf2b89b6f3d03ad33ae4b09
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Wed Oct 12 19:13:49 2005 +0000
add sechecker targets
refpolicy/Changelog | 1 +
refpolicy/Makefile | 1 +
refpolicy/Rules.monolithic | 13 ++++++++++++-
3 files changed, 14 insertions(+), 1 deletions(-)
---
diff --git a/refpolicy/Changelog b/refpolicy/Changelog
index dcda94c..160a73e 100644
--- a/refpolicy/Changelog
+++ b/refpolicy/Changelog
@@ -1,3 +1,4 @@
+- Add targets for sechecker.
- Updated to sedoctool to read bool files and tunable
files separately.
- Changed the xml tag of <boolean> to <bool> to be consistent
diff --git a/refpolicy/Makefile b/refpolicy/Makefile
index 6bcd936..d01f739 100644
--- a/refpolicy/Makefile
+++ b/refpolicy/Makefile
@@ -77,6 +77,7 @@ LOADPOLICY := $(SBINDIR)/load_policy
SETFILES := $(SBINDIR)/setfiles
GENHOMEDIRCON := $(SBINDIR)/genhomedircon
XMLLINT := $(BINDIR)/xmllint
+SECHECK := $(BINDIR)/sechecker
CFLAGS := -Wall
diff --git a/refpolicy/Rules.monolithic b/refpolicy/Rules.monolithic
index 259e287..830cebe 100644
--- a/refpolicy/Rules.monolithic
+++ b/refpolicy/Rules.monolithic
@@ -203,6 +203,16 @@ relabel: $(FC) $(SETFILES)
########################################
#
+# Run policy source checks
+#
+check: policy.conf $(FC)
+ $(SECHECK) -s --profile=development --policy=policy.conf --fcfile=$(FC) > $@.res
+
+longcheck: policy.conf $(FC)
+ $(SECHECK) -s --profile=all --policy=policy.conf --fcfile=$(FC) > $@.res
+
+########################################
+#
# Clean the sources
#
clean:
@@ -210,5 +220,6 @@ clean:
rm -f policy.conf
rm -f policy.$(PV)
rm -f $(FC)
+ rm -f *.res
-.PHONY: default policy install load reload enableaudit checklabels restorelabels relabel clean
+.PHONY: default policy install load reload enableaudit checklabels restorelabels relabel check longcheck clean
More information about the scm-commits
mailing list