mirrors/meta-secure-core
1
0
Fork 0
mirror of https://github.com/jiazhang0/meta-secure-core.git synced 2026-05-07 10:09:22 +00:00
Code Issues Projects Releases Wiki Activity

IMA: move the default policy file to /etc/ima directory

Browse Source 
Signed-off-by: Lans Zhang <jia.zhang@windriver.com>
This commit is contained in:
Lans Zhang
2017-07-25 09:37:59 +08:00
parent 567e817691
commit 77640af54c
2 changed files with 10 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta-integrity/recipes-core/initrdscripts/files/init.ima
+1 -1
View File
@@ -26,7 +26,7 @@ ROOT_DIR="${1}"
SECURITYFS_DIR="${ROOT_DIR}/sys/kernel/security" SECURITYFS_DIR="${ROOT_DIR}/sys/kernel/security"
# The policy files are always placed in initramfs # The policy files are always placed in initramfs
IMA_POLICY=/etc/ima_policy IMA_POLICY=/etc/ima/ima_policy
SECURITYFS_MOUNTED=0 SECURITYFS_MOUNTED=0
meta-integrity/recipes-support/ima-policy/ima-policy_0.1.bb
+9 -7
View File
@@ -1,18 +1,20 @@
DESCRIPTION = "The default external IMA policy" DESCRIPTION = "The default external IMA policy"
LICENSE = "MIT" LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://${COREBASE}/LICENSE;md5=4d92cd373abda3937c2bc47fbc49d690 \ LIC_FILES_CHKSUM = "\
file://${COREBASE}/meta/COPYING.MIT;md5=3da9cfbcb788c80a0384361b4de20420" file://${COREBASE}/LICENSE;md5=4d92cd373abda3937c2bc47fbc49d690 \
file://${COREBASE}/meta/COPYING.MIT;md5=3da9cfbcb788c80a0384361b4de20420 \
"
SRC_URI = " \ SRC_URI = "\
file://ima_policy.default \ file://ima_policy.default \
" "
S = "${WORKDIR}" S = "${WORKDIR}"
do_install() { do_install() {
install -d "${D}${sysconfdir}" install -d "${D}${sysconfdir}/ima"
install -m 0400 "${WORKDIR}/ima_policy.default" \ install -m 0400 "${WORKDIR}/ima_policy.default" \
"${D}${sysconfdir}" "${D}${sysconfdir}/ima"
} }
FILES_${PN} = "${sysconfdir}" FILES_${PN} = "${sysconfdir}"