perfinion 15/06/28 14:03:30
Modified: package.mask package.use.force package.use.mask
use.mask
Log:
Mask systemd and deps in selinux profiles because no support in the policies.
Revision Changes Path
1.58 profiles/features/selinux/package.mask
file :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.mask?rev=1.58&view=markup
plain:
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.mask?rev=1.58&content-type=text/plain
diff :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.mask?r1=1.57&r2=1.58
Index: package.mask
===================================================================
RCS file: /var/cvsroot/gentoo-x86/profiles/features/selinux/package.mask,v
retrieving revision 1.57
retrieving revision 1.58
diff -u -r1.57 -r1.58
--- package.mask 21 Jun 2015 11:59:12 -0000 1.57
+++ package.mask 28 Jun 2015 14:03:30 -0000 1.58
@@ -1,2 +1,14 @@
-# $Header: /var/cvsroot/gentoo-x86/profiles/features/selinux/package.mask,v
1.57 2015/06/21 11:59:12 perfinion Exp $
+# $Header: /var/cvsroot/gentoo-x86/profiles/features/selinux/package.mask,v
1.58 2015/06/28 14:03:30 perfinion Exp $
+# Jason Zaman <[email protected]> (27 Jun 2015)
+# SystemD has no support in the SELinux policy at the moment.
+# Please see:
https://wiki.gentoo.org/wiki/SELinux/FAQ#Can_I_use_SELinux_with_SystemD.3F
+sys-apps/systemd
+gnome-extra/gnome-logs
+gnome-extra/office-runner
+kde-misc/kcmsystemd
+net-firewall/firewalld
+net-misc/netctl
+sys-apps/gentoo-systemd-integration
+sys-apps/systemd-readahead
+sys-apps/systemd-sysv-utils
1.11 profiles/features/selinux/package.use.force
file :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.use.force?rev=1.11&view=markup
plain:
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.use.force?rev=1.11&content-type=text/plain
diff :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.use.force?r1=1.10&r2=1.11
Index: package.use.force
===================================================================
RCS file: /var/cvsroot/gentoo-x86/profiles/features/selinux/package.use.force,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -r1.10 -r1.11
--- package.use.force 3 Dec 2014 13:22:09 -0000 1.10
+++ package.use.force 28 Jun 2015 14:03:30 -0000 1.11
@@ -1,6 +1,6 @@
# Copyright 1999-2014 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header:
/var/cvsroot/gentoo-x86/profiles/features/selinux/package.use.force,v 1.10
2014/12/03 13:22:09 perfinion Exp $
+# $Header:
/var/cvsroot/gentoo-x86/profiles/features/selinux/package.use.force,v 1.11
2015/06/28 14:03:30 perfinion Exp $
# Sven Vermeulen <[email protected]> (19 Apr 2013)
# sys-apps/policycoreutils (semanage command) uses sepolgen, which requires
libselinux with USE="python".
@@ -20,3 +20,9 @@
# so stages can build with no interacton. Bug #527938
sys-libs/libselinux static-libs
dev-libs/libpcre static-libs
+
+# Jason Zaman <[email protected]> (27 Jun 2015)
+# SystemD has no support in the SELinux policy at the moment.
+# Please see:
https://wiki.gentoo.org/wiki/SELinux/FAQ#Can_I_use_SELinux_with_SystemD.3F
+gnome-base/gnome-settings-daemon openrc-force
+gnome-base/gnome-shell openrc-force
1.11 profiles/features/selinux/package.use.mask
file :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.use.mask?rev=1.11&view=markup
plain:
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.use.mask?rev=1.11&content-type=text/plain
diff :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/package.use.mask?r1=1.10&r2=1.11
Index: package.use.mask
===================================================================
RCS file: /var/cvsroot/gentoo-x86/profiles/features/selinux/package.use.mask,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -r1.10 -r1.11
--- package.use.mask 6 Nov 2014 15:07:47 -0000 1.10
+++ package.use.mask 28 Jun 2015 14:03:30 -0000 1.11
@@ -1,6 +1,6 @@
# Copyright 1999-2014 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header:
/var/cvsroot/gentoo-x86/profiles/features/selinux/package.use.mask,v 1.10
2014/11/06 15:07:47 mgorny Exp $
+# $Header:
/var/cvsroot/gentoo-x86/profiles/features/selinux/package.use.mask,v 1.11
2015/06/28 14:03:30 perfinion Exp $
# Saleem Abdulrasool <[email protected]> (23 Nov 2007)
# Unmask when we get HAL 0.5.10 straightened out
@@ -13,3 +13,12 @@
app-portage/layman python_targets_pypy python_targets_pypy3
app-admin/webapp-config python_targets_pypy python_targets_pypy3
app-portage/diffmask python_targets_pypy python_targets_pypy3
+
+# Jason Zaman <[email protected]> (27 Jun 2015)
+# SystemD has no support in the SELinux policy at the moment.
+# Please see:
https://wiki.gentoo.org/wiki/SELinux/FAQ#Can_I_use_SELinux_with_SystemD.3F
+app-emulation/libvirt firewalld
+gnome-base/gdm systemd wayland
+sys-kernel/dracut dracut_modules_systemd
+www-servers/uwsgi uwsgi_plugins_systemd_logger
+x11-wm/mutter kms
1.5 profiles/features/selinux/use.mask
file :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/use.mask?rev=1.5&view=markup
plain:
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/use.mask?rev=1.5&content-type=text/plain
diff :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/features/selinux/use.mask?r1=1.4&r2=1.5
Index: use.mask
===================================================================
RCS file: /var/cvsroot/gentoo-x86/profiles/features/selinux/use.mask,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -r1.4 -r1.5
--- use.mask 2 Jun 2015 09:15:36 -0000 1.4
+++ use.mask 28 Jun 2015 14:03:30 -0000 1.5
@@ -1,6 +1,6 @@
# Copyright 1999-2015 Gentoo Foundation.
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/profiles/features/selinux/use.mask,v 1.4
2015/06/02 09:15:36 ulm Exp $
+# $Header: /var/cvsroot/gentoo-x86/profiles/features/selinux/use.mask,v 1.5
2015/06/28 14:03:30 perfinion Exp $
# This file masks out USE flags that are simply NOT allowed in the default
# profile for any architecture. This works, for example, if a non-default
@@ -12,3 +12,7 @@
# tcc is x86-only
tcc
+
+# no policy yet
+systemd
+-openrc-force
