[DSE-Dev] Bug#1140112: checkpolicy: libsepol dependency min required version should be 3.10
Hector Cao
hector.cao at canonical.com
Mon Jun 15 22:59:12 BST 2026
Package: checkpolicy
Version: 3.10-1
Severity: normal
Tags: patch
User: ubuntu-devel at lists.ubuntu.com
Usertags: origin-ubuntu stonking ubuntu-patch
Dear Maintainer,
The libsepol library needed to build checkpolicy 3.10 is 3.10
We have to bump the min required version of libsepol to 3.10.
if not, old version of libsepol can be installed and checkpolicy
build can fail with:
policy_define.c: In function ‘define_typeattribute’:
policy_define.c:1448:86: error: ‘MOD_POLICYDB_VERSION_TYPE_ATTR_ATTRS’ undeclared (first use in this function); did you mean ‘MOD_POLICYDB_VERSION_VALIDATETRANS’?
1448 | if (policydbp->policy_type != POLICY_KERN && policydbp->policyvers < MOD_POLICYDB_VERSION_TYPE_ATTR_ATTRS) {
| ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
| MOD_POLICYDB_VERSION_VALIDATETRANS
Thanks for considering the patch.
-- System Information:
Debian Release: trixie/sid
APT prefers noble-updates
APT policy: (500, 'noble-updates'), (500, 'noble-security'), (500, 'noble'), (100, 'noble-backports')
Architecture: amd64 (x86_64)
Kernel: Linux 6.17.0-35-generic (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_WARN, TAINT_OOT_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
-------------- next part --------------
diff -Nru checkpolicy-3.10/debian/control checkpolicy-3.10/debian/control
--- checkpolicy-3.10/debian/control 2026-04-05 04:21:20.000000000 +0200
+++ checkpolicy-3.10/debian/control 2026-06-15 23:49:51.000000000 +0200
@@ -10,7 +10,7 @@
Build-Depends: bison,
debhelper-compat (= 13),
flex,
- libsepol-dev (>= 3.9)
+ libsepol-dev (>= 3.10)
Homepage: https://selinuxproject.org
Rules-Requires-Root: no
More information about the SELinux-devel
mailing list