Bugzilla – Bug 132914
Update libselinux to a newer version, re-add libsepol
Last modified: 2005-12-11 20:16:18 UTC
For better support of of SELinux the function call selinux_init_load_policy() is needed. This call was added in version 1.27.6. Beside this the libsepol is required.
libselinux needs other libraries which we don't have. And we have nobody who will maintain that, so libselinux is froozen now until management makes a decission.
I can't say anything about libselinux maintenance in SUSE since I'm no SUSE developer, but I want to add a datapoint here: I have built packages for SELinux since SUSE 9.0 and never had problems with the libraries, meaning I always compiled them directly from CVS with the spec-file included there, I never had to patch anything in the libs. So, in my experience, keeping the libs uptodate is not much work, but of course it still needs someone who is in charge. Sidenode: I just received note from Stephen Smalley that they will shortly release new versions for libselinux, libsepol and libsemanage. They guarantee ABI stability (only) for releases, so it is probably best to wait for this release.
A new SELinux release is available: http://marc.theaimsgroup.com/?l=selinux&m=113398723204029&w=2 So, my question: is there already a decision if the needed libraries can be included in SUSE? They are essential for SELinux so it would be really cool if they went in.
The decission was that we will not support it.
Thanks for the information. Even though I find the decision a bit sad, it is good to know the definite status of SELinux support in SUSE. I will close the other bugs relating to SELinux.