[DSE-Dev] Bug#1063329: libselinux1t64: breaks system in upgrade from unstable
Adrien Nader
adrien.nader at canonical.com
Tue Feb 6 10:34:07 GMT 2024
Hi Helmut,
Thanks for identifying and raising this issue.
After Graham mentioned this to me, I also looked at the reports and came
to the same conclusion: the change is actually LFS due to ino_t in
matchpathcon_filespec_add().
Providing two APIs makes me quite uneasy due to having core components
that would behave differently from the rest of the distribution. It
sounds like something that will come back to bite for a long time.
I checked on codesearch.d.n and there are very few users on this API;
actually, none I think. Per
https://codesearch.debian.net/search?q=matchpathcon_filespec_add&literal=1&perpkg=1
- box64 mentions that API but the "code" is commented-out,
- busybox uses it in the "setfiles" applet which isn't built,
- android-platform-external-libselinux has it in headers but also has
its own implementation
That should hopefully give more freedom although I'm not sure what would
be the preferred route.
--
Adrien
More information about the SELinux-devel
mailing list