[arch-general] Revisit official SELinux support

William Giokas 1007380 at gmail.com
Thu Oct 31 21:33:50 EDT 2013

On Fri, Nov 01, 2013 at 11:10:12AM +1000, Allan McRae wrote:
> On 01/11/13 08:56, Timothée Ravier wrote:
> > On 31/10/2013 00:36, Allan McRae wrote:
> >> On 31/10/13 09:36, Timothée Ravier wrote:
> >>> Only packagers will be impacted as there are still some patches needed
> >>> and this could slow down 'core packages' updates when issues arise. But
> >>> fixes usually comes quite quickly as both Fedora and Gentoo maintain
> >>> packages with SELinux support.
> >>
> >> Requiring patches not accepted upstream is an immediate blocker.
> > 
> > Sorry, I chose my words poorly. I meant two things:
> >   * First, patches required for SELinux should be pushed and accepted
> > upstream. I don't know the current state about those. I'll post an
> > update later.
> >   * Future core packages releases may require patches to make SELinux
> > work or even make the packages build with SELinux activated. On this
> > front there isn't too much to be concerned of as both Gentoo and Fedora
> > SELinux folks are affected by those issues too and will surely provide
> > patches which we could push upstream if necessary.
> It is completely necessary that all these patches are pushed upstream
> due to the Arch patching policy.

Because of this, maybe it would be best to keep this as an unofficial
repository. Include all of the patched software, set up the groups,
provides, conflicts, etc. correctly.

The one reason I have not yet tried SELinux on my system is because of
the extensive time effort it would take to keep those core system
packages up to date. If there was a group of people all working on parts
of an SELinux repository, then it would be much easier to maintain, 
update and use.


William Giokas | KaiSforza | http://kaictl.net/
GnuPG Key: 0x73CD09CF
Fingerprint: F73F 50EF BBE2 9846 8306  E6B8 6902 06D8 73CD 09CF
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://mailman.archlinux.org/pipermail/arch-general/attachments/20131031/bed6f545/attachment.asc>

More information about the arch-general mailing list