[oe] meta-selinux
dpquigl
dpquigl at tycho.nsa.gov
Wed Feb 11 15:53:03 UTC 2015
Hello,
I'm working on OpenXT and it makes use of the meta-selinux repo hosted
by the yocto project. I'm trying to use it with a base openembedded core
and its not in sync with oe-core because its based on pokey. This made
me think of two questions. 1) Why is this not in OE core since so many
packages in core can potentially have SELinux support enabled and 2) if
its not supposed to be in core where should turning on SELinux support
in a recipe go? For example coreutils can have SELinux support enabled.
Currently this is in meta-selinux as a bbappend to the coreutils
package. This works out because its always going to be there. However
there is also a bbappend for an LXC recipe. LXC isn't in core which
means it has a dependency on a layer not in core.
Ideally I would put the recipes needed for SELinux support in core and
have a distro feature which is checked in the recipes in core for
whether or not to add --with-selinux to the build flags. Then LXC could
check a core distro feature and enable SELinux if it wants to.
What is the right way to proceed with this?
Dave
More information about the Openembedded-devel
mailing list