From 752ebc167b6aebfd85df3a69987ed5df100049af Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Christian=20G=C3=B6ttsche?= <cgzones@googlemail.com>
Date: Thu, 22 Feb 2024 17:32:50 +0100
Subject: [PATCH] Rules.monolithic: pre-compile fcontexts on install
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

On install pre-compile the file contexts.

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
---
 Makefile         | 1 +
 Rules.monolithic | 6 ++++++
 2 files changed, 7 insertions(+)

diff --git a/Makefile b/Makefile
index 962bcafb2..90ad2c4f7 100644
--- a/Makefile
+++ b/Makefile
@@ -64,6 +64,7 @@ SEMOD_EXP ?= $(tc_usrbindir)/semodule_expand
 LOADPOLICY ?= $(tc_usrsbindir)/load_policy
 SEPOLGEN_IFGEN ?= $(tc_usrbindir)/sepolgen-ifgen
 SETFILES ?= $(tc_sbindir)/setfiles
+SEFCONTEXT_COMPILE ?= $(tc_usrsbindir)/sefcontext_compile
 XMLLINT ?= $(BINDIR)/xmllint
 SECHECK ?= $(BINDIR)/sechecker
 
diff --git a/Rules.monolithic b/Rules.monolithic
index d6d0e6f28..d6e20a371 100644
--- a/Rules.monolithic
+++ b/Rules.monolithic
@@ -232,6 +232,12 @@ $(fcpath): $(fc) $(loadpath) $(userpath)/system.users
 	$(verbose) $(INSTALL) -m 0644 $(fc) $(fcpath)
 	$(verbose) $(INSTALL) -m 0644 $(homedir_template) $(homedirpath)
 	$(verbose) $(UMASK) 022 ; $(genhomedircon) -d $(topdir) -t $(NAME)
+	$(verbose) if $(SEFCONTEXT_COMPILE) -i > /dev/null 2>&1 ; then \
+		$(SEFCONTEXT_COMPILE) $(fcpath) ;\
+		$(SEFCONTEXT_COMPILE) $(fcpath).homedirs ;\
+	else \
+		echo "$@ Pre-compiled file context not generated!  Please install the sefcontext_compile tool (commonly part of libselinux-utils)." ;\
+	fi
 
 ########################################
 #