mirror of
https://github.com/AuxXxilium/linux_dsm_epyc7002.git
synced 2024-11-30 23:36:44 +07:00
2066a36125
This patch adds support for permission checks using current thread's UID/GID etc. in addition to pathnames. Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Signed-off-by: James Morris <jmorris@namei.org>
49 lines
2.0 KiB
Makefile
49 lines
2.0 KiB
Makefile
obj-y = audit.o common.o condition.o domain.o file.o gc.o group.o load_policy.o memory.o mount.o realpath.o securityfs_if.o tomoyo.o util.o
|
|
|
|
$(obj)/policy/profile.conf:
|
|
@mkdir -p $(obj)/policy/
|
|
@echo Creating an empty policy/profile.conf
|
|
@touch $@
|
|
|
|
$(obj)/policy/exception_policy.conf:
|
|
@mkdir -p $(obj)/policy/
|
|
@echo Creating a default policy/exception_policy.conf
|
|
@echo initialize_domain /sbin/modprobe from any >> $@
|
|
@echo initialize_domain /sbin/hotplug from any >> $@
|
|
|
|
$(obj)/policy/domain_policy.conf:
|
|
@mkdir -p $(obj)/policy/
|
|
@echo Creating an empty policy/domain_policy.conf
|
|
@touch $@
|
|
|
|
$(obj)/policy/manager.conf:
|
|
@mkdir -p $(obj)/policy/
|
|
@echo Creating an empty policy/manager.conf
|
|
@touch $@
|
|
|
|
$(obj)/policy/stat.conf:
|
|
@mkdir -p $(obj)/policy/
|
|
@echo Creating an empty policy/stat.conf
|
|
@touch $@
|
|
|
|
$(obj)/builtin-policy.h: $(obj)/policy/profile.conf $(obj)/policy/exception_policy.conf $(obj)/policy/domain_policy.conf $(obj)/policy/manager.conf $(obj)/policy/stat.conf
|
|
@echo Generating built-in policy for TOMOYO 2.4.x.
|
|
@echo "static char tomoyo_builtin_profile[] __initdata =" > $@.tmp
|
|
@sed -e 's/\\/\\\\/g' -e 's/\"/\\"/g' -e 's/\(.*\)/"\1\\n"/' < $(obj)/policy/profile.conf >> $@.tmp
|
|
@echo "\"\";" >> $@.tmp
|
|
@echo "static char tomoyo_builtin_exception_policy[] __initdata =" >> $@.tmp
|
|
@sed -e 's/\\/\\\\/g' -e 's/\"/\\"/g' -e 's/\(.*\)/"\1\\n"/' < $(obj)/policy/exception_policy.conf >> $@.tmp
|
|
@echo "\"\";" >> $@.tmp
|
|
@echo "static char tomoyo_builtin_domain_policy[] __initdata =" >> $@.tmp
|
|
@sed -e 's/\\/\\\\/g' -e 's/\"/\\"/g' -e 's/\(.*\)/"\1\\n"/' < $(obj)/policy/domain_policy.conf >> $@.tmp
|
|
@echo "\"\";" >> $@.tmp
|
|
@echo "static char tomoyo_builtin_manager[] __initdata =" >> $@.tmp
|
|
@sed -e 's/\\/\\\\/g' -e 's/\"/\\"/g' -e 's/\(.*\)/"\1\\n"/' < $(obj)/policy/manager.conf >> $@.tmp
|
|
@echo "\"\";" >> $@.tmp
|
|
@echo "static char tomoyo_builtin_stat[] __initdata =" >> $@.tmp
|
|
@sed -e 's/\\/\\\\/g' -e 's/\"/\\"/g' -e 's/\(.*\)/"\1\\n"/' < $(obj)/policy/stat.conf >> $@.tmp
|
|
@echo "\"\";" >> $@.tmp
|
|
@mv $@.tmp $@
|
|
|
|
$(obj)/common.o: $(obj)/builtin-policy.h
|