[DSE-Dev] Git repo refreshed with the latest refpolicy

[Manoj Srivastava]

Hi,

        I have synched with the latest version of refpolicy in Debian,
 and the results are available at:
VCS-Git:     git://git.debian.org/git/users/srivasta/debian/refpolicy.git
VCS-Browser: http://git.debian.org/?p=users/srivasta/debian/refpolicy.git;a=summary

        I have been working on the packaging, and updated the build
 system to be far friendlier to parallel processing,and I am also
 working on speeding up the loading of policy. There also is a request
 to make the processing we do when policy is initially installed also
 runnable after the fact (by this I mean the scan isntalled packages and
 available modules, work out a module loading order and dependencies,
 and create a new policy).

        However, these changes were deemed too intrusive to make it into
 Lenny, so they are not yet in the official Debian packages.

        So I intend to pull that  out of the postinst into a /usr/sbin/
 command, and possibly cache the scanned policy modules and the load
 order of these modules into a file in /var/cache; at package build
 time. This will speed up the install process (and if we allow people to
 optionally update the file from time to time, with, say, locally
 created policy modules), this can be used every time we want to rescan
 packages and rebuild policy.

        Because of the ongoing packaging stuff I am working on, I have
 created a branch  for ./debian called refpolicy-lenny, which is the
 current state of the packaging in Debian, and then there is the
 refpolicy branch, which contains all the goodies intended to go into
 refpolicy for squeeze.

        manoj
-- 
Manoj Srivastava <manoj.srivastava at stdc.com> <srivasta at acm.org>        
1024D/BF24424C print 4966 F272 D093 B493 410B  924B 21BA DABB BF24 424C