Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > linux.gentoo.dev > #70400

[gentoo-dev] [PATCH] 2026-04-07-selinux-policy-eapi-8: add news item

From Rahul Sandhu <nvraxn@posteo.uk>
Newsgroups linux.gentoo.dev
Subject [gentoo-dev] [PATCH] 2026-04-07-selinux-policy-eapi-8: add news item
Date 2026-04-07 23:50 +0200
Message-ID <MHmt3-drTN-3@gated-at.bofh.it> (permalink)
Organization linux.* mail to news gateway

Show all headers | View raw

Signed-off-by: Rahul Sandhu <nvraxn@posteo.uk>
---
 .../2026-04-07-selinux-policy-eapi-8.en.txt   | 107 ++++++++++++++++++
 1 file changed, 107 insertions(+)
 create mode 100644 2026-04-07-selinux-policy-eapi-8/2026-04-07-selinux-policy-eapi-8.en.txt

diff --git a/2026-04-07-selinux-policy-eapi-8/2026-04-07-selinux-policy-eapi-8.en.txt b/2026-04-07-selinux-policy-eapi-8/2026-04-07-selinux-policy-eapi-8.en.txt
new file mode 100644
index 0000000..b39647d
--- /dev/null
+++ b/2026-04-07-selinux-policy-eapi-8/2026-04-07-selinux-policy-eapi-8.en.txt
@@ -0,0 +1,107 @@
+Title: SELinux Policy EAPI 8 Migration
+Author: Rahul Sandhu <nvraxn@posteo.uk>
+Posted: 2026-04-07
+Revision: 1
+News-Item-Format: 2.0
+Display-If-Installed: sec-policy/selinux-base
+Display-If-Profile: default/linux/amd64/17.0/hardened/selinux
+Display-If-Profile: default/linux/amd64/17.0/musl/hardened/selinux
+Display-If-Profile: default/linux/amd64/17.0/no-multilib/hardened/selinux
+Display-If-Profile: default/linux/amd64/17.0/selinux
+Display-If-Profile: default/linux/amd64/17.1/hardened/selinux
+Display-If-Profile: default/linux/amd64/17.1/no-multilib/hardened/selinux
+Display-If-Profile: default/linux/amd64/17.1/no-multilib/systemd/selinux
+Display-If-Profile: default/linux/amd64/17.1/selinux
+Display-If-Profile: default/linux/amd64/17.1/systemd/selinux
+Display-If-Profile: default/linux/amd64/23.0/hardened/selinux
+Display-If-Profile: default/linux/amd64/23.0/musl/hardened/selinux
+Display-If-Profile: default/linux/amd64/23.0/no-multilib/hardened/selinux
+Display-If-Profile: default/linux/amd64/23.0/split-usr/hardened/selinux
+Display-If-Profile: default/linux/amd64/23.0/split-usr/musl/hardened/selinux
+Display-If-Profile: default/linux/amd64/23.0/split-usr/no-multilib/hardened/selinux
+Display-If-Profile: default/linux/amd64/23.0/split-usr/no-multilib/selinux
+Display-If-Profile: default/linux/arm/17.0/armv4t/selinux
+Display-If-Profile: default/linux/arm/17.0/armv5te/selinux
+Display-If-Profile: default/linux/arm/17.0/armv6j/hardened/selinux
+Display-If-Profile: default/linux/arm/17.0/armv6j/selinux
+Display-If-Profile: default/linux/arm/17.0/armv7a/hardened/selinux
+Display-If-Profile: default/linux/arm/17.0/armv7a/selinux
+Display-If-Profile: default/linux/arm/17.0/musl/armv6j/hardened/selinux
+Display-If-Profile: default/linux/arm/17.0/musl/armv7a/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/armv4t/selinux
+Display-If-Profile: default/linux/arm/23.0/armv5te/selinux
+Display-If-Profile: default/linux/arm/23.0/armv6j_hf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/armv6j_hf/musl/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/armv6j_sf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/armv7a_hf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/armv7a_hf/musl/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/armv7a_sf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv4t/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv5te/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv6j_hf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv6j_hf/musl/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv6j_sf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv6j_sf/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv7a_hf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv7a_hf/musl/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/split-usr/armv7a_sf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/armv5te/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/armv6j_hf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/armv6j_sf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/armv7a_hf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/armv7a_sf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/split-usr/armv5te/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/split-usr/armv6j_hf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/split-usr/armv6j_sf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/split-usr/armv6j_sf/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/split-usr/armv7a_hf/hardened/selinux
+Display-If-Profile: default/linux/arm/23.0/time64/split-usr/armv7a_sf/hardened/selinux
+Display-If-Profile: default/linux/arm64/17.0/hardened/selinux
+Display-If-Profile: default/linux/arm64/17.0/musl/hardened/selinux
+Display-If-Profile: default/linux/arm64/17.0/selinux
+Display-If-Profile: default/linux/arm64/17.0/systemd/selinux
+Display-If-Profile: default/linux/arm64/23.0/hardened/selinux
+Display-If-Profile: default/linux/arm64/23.0/musl/hardened/selinux
+Display-If-Profile: default/linux/arm64/23.0/split-usr/hardened/selinux
+Display-If-Profile: default/linux/arm64/23.0/split-usr/musl/hardened/selinux
+Display-If-Profile: default/linux/x86/17.0/hardened/selinux
+Display-If-Profile: default/linux/x86/17.0/musl/selinux
+Display-If-Profile: default/linux/x86/17.0/selinux
+Display-If-Profile: default/linux/x86/23.0/i486/hardened/selinux
+Display-If-Profile: default/linux/x86/23.0/i486/musl/selinux
+Display-If-Profile: default/linux/x86/23.0/i486/split-usr/hardened/selinux
+Display-If-Profile: default/linux/x86/23.0/i486/split-usr/musl/selinux
+Display-If-Profile: default/linux/x86/23.0/i486/time64/hardened/selinux
+Display-If-Profile: default/linux/x86/23.0/i486/time64/split-usr/hardened/selinux
+Display-If-Profile: default/linux/x86/23.0/i686/hardened/selinux
+Display-If-Profile: default/linux/x86/23.0/i686/musl/selinux
+Display-If-Profile: default/linux/x86/23.0/i686/split-usr/hardened/selinux
+Display-If-Profile: default/linux/x86/23.0/i686/split-usr/musl/selinux
+Display-If-Profile: default/linux/x86/23.0/i686/time64/hardened/selinux
+Display-If-Profile: default/linux/x86/23.0/i686/time64/split-usr/hardened/selinux
+
+What Changed
+============
+
+The SELinux policy and associated packages have all been bumped to EAPI 8.
+
+POLICY_TYPES has become the USE expand SELINUX_POLICY_TYPES. As such, it may be
+set in package.use now, like any other USE expand. However, it is recommended
+to keep POLICY_TYPES both set, if done so previously, and in sync with the USE
+expand set for sec-policy/selinux-base.
+
+User Action Required
+====================
+
+Some user intervention may be needed due to changes in selinux-policy-2 eclass
+variable names.
+
+If POLICY_TYPES is set, the SELINUX_POLICY_TYPES USE expand should be set to
+match POLICY_TYPES' contents.
+
+Future Changes
+==============
+
+EAPI 7 policy packages will continue to work in the short term whilst the final
+touches for the migration take place. However, overlays should look to migrate
+to EAPI 8 as soon as possible.
-- 
2.53.0

Back to linux.gentoo.dev | Previous | NextNext in thread | Find similar

Thread

[gentoo-dev] [PATCH] 2026-04-07-selinux-policy-eapi-8: add news item Rahul Sandhu <nvraxn@posteo.uk> - 2026-04-07 23:50 +0200
  Re: [gentoo-dev] [PATCH] 2026-04-07-selinux-policy-eapi-8: add news  item Kenton Groombridge <concord@gentoo.org> - 2026-04-08 01:50 +0200
    Re: [gentoo-dev] [PATCH] 2026-04-07-selinux-policy-eapi-8: add news  item "Rahul Sandhu" <nvraxn@posteo.uk> - 2026-04-08 11:10 +0200
      Re: [gentoo-dev] [PATCH] 2026-04-07-selinux-policy-eapi-8: add news  item Kenton Groombridge <concord@gentoo.org> - 2026-04-08 16:10 +0200
        [gentoo-dev] [PATCH v2] 2026-04-23-selinux-policy-eapi-8: add news item Rahul Sandhu <nvraxn@posteo.uk> - 2026-04-23 20:40 +0200
          [gentoo-dev] [PATCH v3] 2026-04-23-selinux-policy-eapi-8: add news item Rahul Sandhu <nvraxn@posteo.uk> - 2026-04-24 01:20 +0200
            Re: [gentoo-dev] [PATCH v3] 2026-04-23-selinux-policy-eapi-8: add  news item Sam James <sam@gentoo.org> - 2026-04-30 02:40 +0200
            Re: [gentoo-dev] [PATCH v3] 2026-04-23-selinux-policy-eapi-8: add  news item Eli Schwartz <eschwartz@gentoo.org> - 2026-04-30 03:10 +0200
  [gentoo-dev] Re: [PATCH] 2026-04-07-selinux-policy-eapi-8: add news item Sam James <sam@gentoo.org> - 2026-04-08 02:40 +0200

csiph-web