SETools source policy support will be dropped
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: SELinux <selinux@xxxxxxxxxxxxx>
- Subject: SETools source policy support will be dropped
- From: Chris PeBenito <pebenito@xxxxxxxx>
- Date: Sun, 14 Jan 2018 15:20:17 -0500
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.5.0
I've been doing some reworking of SETools' policy representation
library. I'm planning to remove SETools' support for loading source
policies (policy.conf).
There are reasons to do this; first, the SETools code includes a portion
of the compiler toolchain to do the compiling in memory. Removing that
will reduce the maintenance burden for keeping that code in sync and
also reduce the SETools code size. It will also ensure that there are
no errors introduced by SETools' compilation of the policy sources.
Additionally, it should break the SETools static linking requirement, so
SETools doesn't need to be recompiled every time a new libsepol is released.
I don't think this will impact many, but let me know if this is a severe
problem.
--
Chris PeBenito
[Index of Archives]
[Selinux Refpolicy]
[Linux SGX]
[Fedora Users]
[Fedora Desktop]
[Yosemite Photos]
[Yosemite Camping]
[Yosemite Campsites]
[KDE Users]
[Gnome Users]
