Message ID | 20210520174649.1188340-1-aduskett@gmail.com |
---|---|
Headers | show |
Series | selinux packages: bump versions | expand |
Adam, All, On 2021-05-20 10:46 -0700, Adam Duskett spake thusly: > The selinux project also now uses the respective package versions for the > release URL's, so we change that as well. > > Adam Duskett (11): > package/libsepol: bump to version 3.2 > package/libsepol/Config.in: Add policy version 33 > package/libsemanage: bump to version 3.2 > package/libselinux: bump to version 3.2 > package/policycoreutils: bump to version 3.2 > package/checkpolicy: bump to version 3.2 > package/restorecond: bump to version 3.2 > package/semodule-utils: bump to version 3.2 > package/selinux-python: bump to version 3.2 > package/setools: bump to version 4.4.0 > package/audit: bump to version 3.0.1 Entire series applied to next, thanks. As discussed on IRC, could you look into either; - increasing the timeout of the selinux tests, - or, better, ensure that we start the qe;u instance with a proper virtual HWRNGmm as suggested by Matt and Khem; * start qemu with: -object rng-random,filename=/dev/urandom,id=rng0 -device virtio-rng-pci,rng=rng0 * ensure virtio-rng is built-in to the kernel we use Thanks! :-) Regards, Yann E. MORIN. > ...0001-Fix-audispd-path-in-auditd.conf.patch | 32 ----- > ...tue-functions-for-strndupa-rawmemchr.patch | 133 ------------------ > ...ns-need-to-be-external-when-building.patch | 28 ---- > package/audit/audit.hash | 6 +- > package/audit/audit.mk | 2 +- > package/checkpolicy/checkpolicy.hash | 2 +- > package/checkpolicy/checkpolicy.mk | 4 +- > ...T-and-rely-on-the-installed-file-nam.patch | 2 +- > ...d-to-something-which-never-conflicts.patch | 71 ---------- > package/libselinux/libselinux.hash | 2 +- > package/libselinux/libselinux.mk | 4 +- > package/libsemanage/libsemanage.hash | 2 +- > package/libsemanage/libsemanage.mk | 4 +- > package/libsepol/Config.in | 4 +- > package/libsepol/libsepol.hash | 4 +- > package/libsepol/libsepol.mk | 4 +- > ...-all-paths-that-use-an-absolute-path.patch | 11 +- > .../0002-Add-PREFIX-to-host-paths.patch | 36 +++-- > package/policycoreutils/policycoreutils.hash | 2 +- > package/policycoreutils/policycoreutils.mk | 6 +- > package/restorecond/restorecond.hash | 2 +- > package/restorecond/restorecond.mk | 4 +- > package/selinux-python/selinux-python.hash | 2 +- > package/selinux-python/selinux-python.mk | 4 +- > package/semodule-utils/semodule-utils.hash | 2 +- > package/semodule-utils/semodule-utils.mk | 4 +- > ...-setools.InfoFlowAnalysis-and-setoo.patch} | 19 +-- > .../0001-remove-werror-flag-from-setup.patch | 31 ---- > package/setools/setools.hash | 2 +- > package/setools/setools.mk | 2 +- > 30 files changed, 69 insertions(+), 362 deletions(-) > delete mode 100644 package/audit/0001-Fix-audispd-path-in-auditd.conf.patch > delete mode 100644 package/audit/0002-Add-substitue-functions-for-strndupa-rawmemchr.patch > delete mode 100644 package/audit/0003-Header-definitions-need-to-be-external-when-building.patch > delete mode 100644 package/libselinux/0003-libselinux-rename-gettid-to-something-which-never-conflicts.patch > rename package/setools/{0002-Do-not-export-use-setools.InfoFlowAnalysis-and-setoo.patch => 0001-Do-not-export-use-setools.InfoFlowAnalysis-and-setoo.patch} (88%) > delete mode 100644 package/setools/0001-remove-werror-flag-from-setup.patch > > -- > 2.31.1 > > _______________________________________________ > buildroot mailing list > buildroot@busybox.net > http://lists.busybox.net/mailman/listinfo/buildroot
Yann, > From: Yann E. MORIN <yann.morin.1998@free.fr> > Sent: Friday, May 21, 2021 5:06 AM > To: Adam Duskett <aduskett@gmail.com> > Cc: buildroot@buildroot.org <buildroot@buildroot.org>; Marcus Folkesson <marcus.folkesson@gmail.com>; Antoine Tenart <atenart@kernel.org>; Shotwell, Clayton L Collins <Clayton.Shotwell@collins.com>; Weber, Matthew L Collins <Matthew.Weber@collins.com> > Subject: [External] Re: [Buildroot] [PATCH/NEXT: 00/11] selinux packages: bump versions > > Adam, All, > > On 2021-05-20 10:46 -0700, Adam Duskett spake thusly: > > The selinux project also now uses the respective package versions for the > > release URL's, so we change that as well. > > > > Adam Duskett (11): > > package/libsepol: bump to version 3.2 > > package/libsepol/Config.in: Add policy version 33 > > package/libsemanage: bump to version 3.2 > > package/libselinux: bump to version 3.2 > > package/policycoreutils: bump to version 3.2 > > package/checkpolicy: bump to version 3.2 > > package/restorecond: bump to version 3.2 > > package/semodule-utils: bump to version 3.2 > > package/selinux-python: bump to version 3.2 > > package/setools: bump to version 4.4.0 > > package/audit: bump to version 3.0.1 > > Entire series applied to next, thanks. > > As discussed on IRC, could you look into either; > > - increasing the timeout of the selinux tests, > > - or, better, ensure that we start the qe;u instance with a proper > virtual HWRNGmm as suggested by Matt and Khem; > * start qemu with: > -object rng-random,filename=/dev/urandom,id=rng0 -device virtio-rng-pci,rng=rng0 > * ensure virtio-rng is built-in to the kernel we use A pattern for this was merged in the docker compose test (a9219660d30). However, this test uses the base test 'builtin" kernel. Update steps would roughly be: 1) Update to the qemu_cmd's for "builtin" kernels in support/testing/infra/emulator.py 2) Kernel rebuilds on "builtin" images to support (if CONFIG not already selected) as they are binary downloads for runtest use 3) Rerun of the whole test suite... So maybe easier to go with option 1 and extend timeouts for now? Matt