From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 2DE31138331 for ; Wed, 31 Aug 2016 16:38:49 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 34F1F21C03E; Wed, 31 Aug 2016 16:38:48 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 70565E0B38 for ; Wed, 31 Aug 2016 16:38:47 +0000 (UTC) Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 8C396340871 for ; Wed, 31 Aug 2016 16:38:46 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id 2D55D2475 for ; Wed, 31 Aug 2016 16:38:45 +0000 (UTC) From: "Jason Zaman" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Jason Zaman" Message-ID: <1472657906.1ed2f6c6a9096a0ae8ecadc1270cf527ab141e78.perfinion@gentoo> Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: / X-VCS-Repository: proj/hardened-refpolicy X-VCS-Files: .gitignore Vagrantfile X-VCS-Directories: / X-VCS-Committer: perfinion X-VCS-Committer-Name: Jason Zaman X-VCS-Revision: 1ed2f6c6a9096a0ae8ecadc1270cf527ab141e78 X-VCS-Branch: master Date: Wed, 31 Aug 2016 16:38:45 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: e46611c0-2df2-4699-8faa-47c1a2c635fb X-Archives-Hash: f57724a6f1ec8f35f987d2dd73c14871 commit: 1ed2f6c6a9096a0ae8ecadc1270cf527ab141e78 Author: Naftuli Tzvi Kay gmail com> AuthorDate: Tue Aug 30 19:14:48 2016 +0000 Commit: Jason Zaman gentoo org> CommitDate: Wed Aug 31 15:38:26 2016 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=1ed2f6c6 Add Vagrant box for development. .gitignore | 2 ++ Vagrantfile | 47 +++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 49 insertions(+) diff --git a/.gitignore b/.gitignore index 7eaab24..200bfeb 100644 --- a/.gitignore +++ b/.gitignore @@ -18,3 +18,5 @@ /policy/modules/kernel/corenetwork.if /policy/modules/kernel/corenetwork.te /tmp/ + +.vagrant/ diff --git a/Vagrantfile b/Vagrantfile new file mode 100644 index 0000000..129de68 --- /dev/null +++ b/Vagrantfile @@ -0,0 +1,47 @@ +# -*- mode: ruby -*- +# vi: set ft=ruby : + +# All Vagrant configuration is done below. The "2" in Vagrant.configure +# configures the configuration version (we support older styles for +# backwards compatibility). Please don't change it unless you know what +# you're doing. +Vagrant.configure("2") do |config| + # build a Fedora 24 VM + config.vm.box = "bento/fedora-24" + # assign a nice hostname + config.vm.hostname = "selinux-devel" + # give it a private internal IP address + config.vm.network "private_network", type: "dhcp" + + config.vm.provider "virtualbox" do |vb| + # Customize the amount of memory on the VM: + vb.memory = "1024" + end + + # Enable provisioning with a shell script. Additional provisioners such as + # Puppet, Chef, Ansible, Salt, and Docker are also available. Please see the + # documentation for more information about their specific syntax and use. + config.vm.provision "shell", run: "once", inline: <<-SHELL + # get the man pages + echo "Upgrading DNF and installing man pages..." + dnf install -q -y man-pages >/dev/null + dnf upgrade -q -y dnf >/dev/null + + # install a few packages to make this machine ready to go out of the box + echo "Installing SELinux dev dependencies..." + dnf install -q -y \ + bash-completion \ + man-pages \ + vim \ + make \ + kernel-devel \ + selinux-policy-devel \ + libselinux-python \ + libselinux-python3 \ + >/dev/null + + # we set to permissive to allow loading and working with reference policy as opposed to fedora's fork + echo "Setting SELinux to Permissive Mode..." + setenforce 0 + SHELL +end