• State Resolved
  • Replies 5 replies
  • Subscribers 98 subscribers
  • Views 91 views
  • Users 0 members are here
Support feedback
Options
Options
Related

AM625-Q1: Please double confirm am62x RDK10.01.10.04 enable SElinux the right config file?

Tao Han
Expert 6465 points
Part Number: AM625-Q1

Tool/software:

Hi experts:

We are working with customer enable RDK10.01 Linux version SElinux feature.

base on our Yocto user guide, we use below configure file configs/arago-scarthgap-selinux-config.txt buld tisdk-default-image.

But we found that arago-scarthgap-selinux-config.txt all meta layer are the HEAD version.  compare the yoctoselinux.txt build version, the meta-ti all are different with RDK10.01.

Believe the Yocto layer config file use HEAD latest meta-layer information.

(software-dl.ti.com/.../SELinux.html)

Could you please double confirm RDK10.01 enable SElinux use Yocto compile, the right config file?

Best Regards!

Han Tao

 

Fullscreen yoctoselinux.txt Download 
uild Configuration (mc:default):
BB_VERSION           = "2.8.0"
BUILD_SYS            = "x86_64-linux"
NATIVELSBSTRING      = "ubuntu-22.04"
TARGET_SYS           = "aarch64-oe-linux"
MACHINE              = "am62xx-lp-evm"
DISTRO               = "arago"
DISTRO_VERSION       = "2025.01"
TUNE_FEATURES        = "aarch64"
TARGET_FPU           = ""
meta-arago-distro    
meta-arago-extras    
meta-arago-test      = "scarthgap:67c473bc6d88a2cce13b2e8c36fcb79cb0015339"
meta-selinux         = "scarthgap:30a49ab1298d2a081089a9e4c760a9e02f8100f6"
meta-qt6             = "6.9:ade45671712b72e988d622caab51774f5a069c32"
meta-virtualization  = "scarthgap:af1db2042caf8021d767dce1b26c08b59b96f3d1"
meta-networking      
meta-python          
meta-oe              
meta-gnome           
meta-filesystems     
meta-multimedia      = "scarthgap:c29a18fa39ede952f3f6108ec007c1906e2d9a0d"
meta-lts-mixins      = "HEAD:a8046d5ec53b1856169ac795aa87cb0d5db84c04"
meta-ti-extras       
meta-beagle          
meta-ti-bsp          = "scarthgap:0e2876e2ea7c28ddff5bc0052bdbc83dd07b7c98"
meta-arm             
meta-arm-toolchain   = "scarthgap:0f1e7bf92c89759f0ab74cfa5be4ee47b092ad46"
meta-clang           = "scarthgap:057ee563305e9484b29d02347aeafdadc5ea28ed"
meta                 = "scarthgap:baa5e7ea5f37f54c2a00080798ad7fb4c0664f69"


Fullscreen arago-scarthgap-selinux-config.txt Download 
# This file takes repo entries in the format
# repo name,repo uri,repo branch,repo commit[,layers=layer1:layer2...:layern]

bitbake,https://git.openembedded.org/bitbake,2.8,HEAD
meta-arago,https://git.yoctoproject.org/meta-arago,scarthgap,HEAD,layers=meta-arago-distro:meta-arago-extras:meta-arago-test
#meta-browser,https://github.com/OSSystems/meta-browser.git,master,27ca52f635a31f5f9762813a8527dd31323549b7,layers=meta-chromium
meta-selinux,https://git.yoctoproject.org/meta-selinux,scarthgap,HEAD,layers=
meta-qt6,https://code.qt.io/yocto/meta-qt6.git,6.9,HEAD,layers=
meta-virtualization,https://git.yoctoproject.org/meta-virtualization,scarthgap,HEAD,layers=
meta-openembedded,https://git.openembedded.org/meta-openembedded,scarthgap,HEAD,layers=meta-networking:meta-python:meta-oe:meta-gnome:meta-filesystems:meta-multimedia
meta-lts-mixins,https://git.yoctoproject.org/meta-lts-mixins,scarthgap/rust,a8046d5ec53b1856169ac795aa87cb0d5db84c04,layers=
meta-ti,https://git.yoctoproject.org/meta-ti,scarthgap,HEAD,layers=meta-ti-extras:meta-beagle:meta-ti-bsp
meta-arm,https://git.yoctoproject.org/meta-arm,scarthgap,HEAD,layers=meta-arm:meta-arm-toolchain
meta-clang,https://github.com/kraj/meta-clang,scarthgap,HEAD,layers=
#meta-flutter,https://github.com/meta-flutter/meta-flutter.git,scarthgap,HEAD,layers=.:meta-flutter-apps
oe-core,https://git.openembedded.org/openembedded-core,scarthgap,HEAD,layers=meta

OECORELAYERCONF=./sample-files/bblayers.conf.sample
OECORELOCALCONF=./sample-files/local-arago64-v2.conf.sample
BITBAKE_INCLUSIVE_VARS=yes

LOCALCONF:DISTRO_FEATURES:append = " acl xattr pam selinux"

  • 0
    TI__Mastermind 29245 points

    Hi Tao,

    For building SELinux using 11.1 SDK on AM62x please use:

    configs/processor-sdk/processor-sdk-scarthgap-selinux-11.01.05.03-config.txt

    Let me know how it goes.

    Best Regards,

    Suren

  • 0 in reply to Suren Porwar
    TI__Expert 6465 points

    Hi Suren:

    Customer must use RDK10.1.  at AM62x Linux RDk10.1 user guide do not provide SE-linux comment version.

    I has try to compile RDK10.1 release but those configure file showed SElinux configure (arago-scarthgap-selinux-config.txt) the other module use different commit ID. You mean need use processor-sdk-scarthgap-selinux-11.01.05.03-config.txt below Selinux configure file at RDK10.1.

    Does we has insure (c4b059262089b74c8fbf8dd5fdf5fd7bc1deeddc) it is our official release commit at RDK10.1 release?

    meta-selinux,git.yoctoproject.org/meta-selinux,scarthgap,c4b059262089b74c8fbf8dd5fdf5fd7bc1deeddc,layers=
     

    Best Regards!

    Han Tao

  • 0 in reply to Tao Han
    TI__Expert 6465 points

    Hi Suren:

    Could you please double confirm attached config file is same as RDK10.1 user guide introduced SE-linux setting?

    I based on RDK11.1 method modify it and generate SElinux release, from kernel log  SElinux has been enabled.

    Best Regards!

    Han Tao

    Fullscreen processor-sdk-scarthgap-chromium-10.01.10.04-config.txt Download 
    # This file takes repo entries in the format
# repo name,repo uri,repo branch,repo commit[,layers=layer1:layer2...:layern]

bitbake,https://git.openembedded.org/bitbake,2.8,6c2641f7a9e92c1b82e306f59ddd3c1249c52cbf
meta-tisdk,https://github.com/TexasInstruments/meta-tisdk.git,scarthgap,10.01.10.04,layers=
meta-arago,https://git.yoctoproject.org/meta-arago,scarthgap,10.01.10,layers=meta-arago-distro:meta-arago-extras:meta-arago-demos:meta-arago-test
#meta-browser,https://github.com/OSSystems/meta-browser.git,master,1ed2254d72a4c25879014c98be287a7e3e22904c,layers=meta-chromium

meta-selinux,https://git.yoctoproject.org/meta-selinux,scarthgap,c4b059262089b74c8fbf8dd5fdf5fd7bc1deeddc,layers=
meta-qt5,https://github.com/meta-qt5/meta-qt5.git,scarthgap,eb828418264a49b8d00035cb3d7b12fcea3be801,layers=
meta-virtualization,https://git.yoctoproject.org/meta-virtualization,scarthgap,450941a1b6df96285691e8c23d4f332d3c88a994,layers=
meta-openembedded,https://git.openembedded.org/meta-openembedded,scarthgap,b8d1a14f7f3b76457c36752202ea7ae5881b6654,layers=meta-networking:meta-python:meta-oe:meta-gnome:meta-filesystems:meta-multimedia

meta-lts-mixins,https://git.yoctoproject.org/meta-lts-mixins,scarthgap/rust,a8046d5ec53b1856169ac795aa87cb0d5db84c04,layers=
meta-ti,https://git.yoctoproject.org/meta-ti,scarthgap,10.01.10,layers=meta-ti-extras:meta-ti-bsp
meta-arm,https://git.yoctoproject.org/meta-arm,scarthgap,7088279c0ab00c7dabefdd4544951b4746b48476,layers=meta-arm:meta-arm-toolchain
meta-clang,https://github.com/kraj/meta-clang,scarthgap,9fbfa9db33131abdf3870a94f00199eb53e276e5,layers=
oe-core,https://git.openembedded.org/openembedded-core,scarthgap,dac630ab5ee7aa6c5c7c294093adbd11b116c765,layers=meta
#meta-edgeai,https://git.ti.com/git/edgeai/meta-edgeai.git,scarthgap,10.01.10.04,layers=

OECORELAYERCONF=./sample-files/bblayers.conf.sample
OECORELOCALCONF=./sample-files/local-arago64-v2.conf.sample
BITBAKE_INCLUSIVE_VARS=yes

LOCALCONF:DISTRO_FEATURES:append = " acl xattr pam selinux"

  • +1 in reply to Tao Han
    TI__Mastermind 29245 points

    Hi Tao,

    Yes that's correct way to get 10.1 for SE-linux setting.

    I am glad you were able to get it working.

    Best Regards,

    Suren

  • 0 in reply to Suren Porwar
    TI__Expert 6465 points

    Hi Suren:

    Thanks for confirm it. I will close this ticket.

    Some meta-SElinux version control for RDK10.1 will discuss with you by email.

    Best Regards!

    Han Tao