Lukas Vrabec 03d22f
#!/bin/bash
Lukas Vrabec 03d22f
Lukas Vrabec 03d22f
DISTGIT_PATH=$(pwd)
Lukas Vrabec 03d22f
Lukas Vrabec 03d22f
FEDORA_VERSION=rawhide
Lukas Vrabec b040fb
DOCKER_FEDORA_VERSION=master
Lukas Vrabec 03d22f
DISTGIT_BRANCH=master
Lukas Vrabec 03d22f
Lukas Vrabec 03d22f
git checkout $DISTGIT_BRANCH -q
Lukas Vrabec 03d22f
Lukas Vrabec 03d22f
POLICYSOURCES=`mktemp -d policysources.XXXXXX`
Lukas Vrabec 03d22f
pushd $POLICYSOURCES > /dev/null
Lukas Vrabec 03d22f
Lukas Vrabec 03d22f
git clone git@github.com:fedora-selinux/selinux-policy.git -q
Lukas Vrabec ab3db2
git clone git@github.com:projectatomic/container-selinux.git -q
Lukas Vrabec 03d22f
Lukas Vrabec 03d22f
pushd selinux-policy > /dev/null
Miroslav Grepl 856e20
# prepare policy patches against upstream commits matching the last upstream merge
Miroslav Grepl 856e20
git rev-parse --verify origin/${FEDORA_VERSION}-base; git diff eb4512f6eb13792c76ff8d3e6f2df3a7155db577 origin/${FEDORA_VERSION}-base > policy-${FEDORA_VERSION}-base.patch
Miroslav Grepl 856e20
git rev-parse --verify origin/${FEDORA_VERSION}-contrib; git diff 64302b790bf2b39d93610e1452c8361d56966ae0 origin/${FEDORA_VERSION}-contrib > policy-${FEDORA_VERSION}-contrib.patch
Lukas Vrabec 03d22f
popd > /dev/null
Lukas Vrabec 03d22f
Lukas Vrabec ab3db2
pushd container-selinux > /dev/null
Lukas Vrabec ab3db2
# Actual container-selinux files are in master branch
Lukas Vrabec d93225
#git checkout -b ${DOCKER_FEDORA_VERSION} -t origin/${DOCKER_FEDORA_VERSION} -q
Lukas Vrabec ab3db2
tar -czf container-selinux.tgz container.if container.te container.fc
Lukas Vrabec 03d22f
popd > /dev/null
Lukas Vrabec 03d22f
Lukas Vrabec 03d22f
pushd $DISTGIT_PATH > /dev/null
Lukas Vrabec 03d22f
cp $POLICYSOURCES/selinux-policy/policy-${FEDORA_VERSION}-{base,contrib}.patch .
Lukas Vrabec ab3db2
cp $POLICYSOURCES/container-selinux/container-selinux.tgz .
Lukas Vrabec 03d22f
popd > /dev/null
Lukas Vrabec 03d22f
Lukas Vrabec 03d22f
popd > /dev/null
Lukas Vrabec 03d22f
rm -rf $POLICYSOURCES
Lukas Vrabec 03d22f
Lukas Vrabec ab3db2
echo "policy-rawhide-{contrib,base}.patches and container.tgz with container policy files have been created."