[DSE-Dev] Bug#1120437: RFS: libsepol/3.9-3 -- SELinux binary policy manipulation library and development files
Christian Göttsche
cgzones at googlemail.com
Sun Feb 1 20:58:35 GMT 2026
Pushed a new version to mentors:
libsepol (3.9-3) unstable; urgency=medium
* debian/control:
- add myself to uploaders
- bump Standards-Version to 4.7.3 (no further changes)
- drop redundant default Rules-Requires-Root setting
- drop priority field with default setting
- drop unused dependency variable
* drop Debian revision from library symbols
* d/rules: simplify and enable LTO
* d/patches:
- apply upstream fix for genfscon asterisks
- apply upstream policy capability additions
- add patch to build shared libraries with -fPIC
* d/copyright: add myself
-- Christian Göttsche <cgzones at googlemail.com> Sun, 01 Feb 2026 21:47:46 +0100
On Sun, 16 Nov 2025 at 13:00, Andreas Metzler <ametzler at bebt.de> wrote:
> * Enabling LTO: Does this bring huge benefit for libsepol, or why do you
> enable this? Generally *imho* we should not use non-default
> optimization options without some kind of rationale/benchmarking.
I generally enable LTO in my packages, since its stable enough for me
since around GCC 10.
I did not perform any benchmarks, but libsepol contains quite some
code related to SELinux policy reading, writing, linking and expanding
which *should* benefit.
> * "add myself to uploaders": Was this coordinated with the libsepol
> maintainers?
It was discussed with Russell via private email.
Russell, can you please confirm.
More information about the SELinux-devel
mailing list