Package Details: libselinux 3.8-1

Git Clone URL: https://aur.archlinux.org/libselinux.git (read-only, click to copy)
Package Base: libselinux
Description: SELinux library and simple utilities
Upstream URL: https://github.com/SELinuxProject/selinux
Keywords: selinux
Licenses: custom
Groups: selinux
Conflicts: selinux-usr-libselinux
Provides: libselinux.so, selinux-usr-libselinux
Submitter: Siosm
Maintainer: IooNag
Last Packager: IooNag
Votes: 134
Popularity: 1.11
First Submitted: 2013-11-03 20:05 (UTC)
Last Updated: 2025-03-02 20:33 (UTC)

Latest Comments

1 2 3 4 5 6 .. 8 Next › Last »

pcmoore commented on 2025-04-03 15:06 (UTC)

One call pull Petr's keys from GH using the following URL, which has the new key.

Here is what I see when I look at the downloaded key:

% gpg --show-keys ./bachradsusi.gpg 
pub   rsa4096 2012-04-03 [SC]
      E853C1848B0185CF42864DF363A8AD4B982C4373
uid                      Petr Lautrbach <plautrba@redhat.com>
sub   rsa4096 2017-12-05 [A]
sub   rsa4096 2017-12-05 [S]
sub   rsa4096 2012-04-03 [E]

pub   rsa4096 2022-10-26 [SC] [expired: 2024-10-25]
      B8682847764DF60DF52D992CBC3905F235179CF1
uid                      Petr Lautrbach <lautrbach@redhat.com>
sub   rsa4096 2022-10-26 [E] [expired: 2024-10-25]
sub   rsa4096 2022-10-26 [A] [expired: 2024-10-25]
sub   rsa4096 2022-10-26 [S] [expired: 2024-10-25]

gpg: WARNING: No valid encryption subkey left over.
pub   rsa4096 2024-11-04 [SC] [expires: 2026-11-04]
      68D21823342A13683AEB3E4EFB4C685B5DC1C13E
uid                      Petr Lautrbach <lautrbach@redhat.com>
sub   rsa4096 2024-11-04 [E] [expires: 2026-11-04]
sub   rsa4096 2024-11-04 [S] [expires: 2026-11-04]
sub   rsa4096 2024-11-04 [AR] [expires: 2026-11-04]

Thiger commented on 2025-04-03 14:04 (UTC) (edited on 2025-04-03 14:12 (UTC) by Thiger)

So what can we do now? Is this package orphaned?


$ sudo gpg --verify --auto-key-retrieve /var/cache/private/pamac/libselinux/libselinux-3.8.tar.gz.asc /var/cache/private/pamac/libselinux/libselinux-3.8.tar.gz
gpg: Signature made Mi 29 Jan 2025 18:57:17 CET
gpg:                using RSA key 7200EB2C3F5E488463C0CE9ECDCAE8C927C6BE31
gpg: Good signature from "Petr Lautrbach <lautrbach@redhat.com>" [unknown]
gpg: WARNING: This key is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Primary key fingerprint: 68D2 1823 342A 1368 3AEB  3E4E FB4C 685B 5DC1 C13E
     Subkey fingerprint: 7200 EB2C 3F5E 4884 63C0  CE9E CDCA E8C9 27C6 BE31

sebvdk commented on 2025-03-20 08:03 (UTC)

Hello,

Petr Lautrbach's gpg key is no longer valid

'68D21823342A13683AEB3E4EFB4C685B5DC1C13E' # Petr Lautrbach lautrbach@redhat.com

ninetailedtori commented on 2025-03-03 01:02 (UTC)

This may just be a case of Petr forgetting to refresh his keys to the keyserver. For now I'm going to ignore the package.

flberger commented on 2025-01-22 21:13 (UTC)

Trying to upgrade from 3.7-1 to 3.7-2 using pikaur, I get the error:

Verifying source file signatures with gpg... libselinux-3.7.tar.gz ... FAILED (unknown public key 4695881C254508D1)

Indeed the .tar.gz is signed with key 1BE2C0FF08949623102FD2564695881C254508D1 in .tar.gz.asc. PKGBUILD lists validpgpkeys = 63191CE94183098689CAB8DB7EF137EC935B0EAF (Jason Zaman perfinion@gentoo.org) and B8682847764DF60DF52D992CBC3905F235179CF1 (Petr Lautrbach plautrba@redhat.com).

I am very hesistant to install a package with an unknown public key. Any ideas how to fix this?

IooNag commented on 2024-12-29 14:08 (UTC)

Hello, I am currently on holidays with limited Internet connectivity. I saw your message but will probably only be able to work on it from Monday January, 6th.

By the way, I successfully built libselinux in the GitHub Actions CI 2 weeks ago (https://github.com/archlinuxhardened/selinux/actions/runs/12337081682/job/34430332766) and swig has recently been updated to 4.3.0-1 since then (https://archlinux.org/packages/extra/x86_64/swig/). The build issue could probably also be fixed by (temporarily) downgrading swig.

patlefort commented on 2024-12-29 12:04 (UTC)

The problem is fixed by adding this patch: https://github.com/SELinuxProject/selinux/commit/8e0e718bae53fff30831b92cd784151d475a20da

BPplays commented on 2024-12-23 10:12 (UTC) (edited on 2024-12-23 11:14 (UTC) by BPplays)

im also getting SWIG_Python_AppendOutput errors

edit: a temp fix seems to be to install an old version of swig

wget https://archive.archlinux.org/packages/s/swig/swig-4.2.1-3-x86_64.pkg.tar.zst
sudo pacman -U swig-4.2.1-3-x86_64.pkg.tar.zst

then add swig to HoldPkg in /etc/pacman.conf just remember to update when this aur package updates for the new version of swig

patlefort commented on 2024-12-22 16:27 (UTC)

Fails to compile currently:

selinuxswig_python_wrap.c: In function ‘_wrap_security_compute_user’:
selinuxswig_python_wrap.c:11504:17: error: too few arguments to function ‘SWIG_Python_AppendOutput’
11504 |     resultobj = SWIG_Python_AppendOutput(resultobj, plist);
      |                 ^~~~~~~~~~~~~~~~~~~~~~~~
selinuxswig_python_wrap.c:1259:1: note: declared here
 1259 | SWIG_Python_AppendOutput(PyObject* result, PyObject* obj, int is_void) {
      | ^~~~~~~~~~~~~~~~~~~~~~~~

IooNag commented on 2024-08-15 18:32 (UTC)

@Thiger: could you please open an issue on https://github.com/archlinuxhardened/selinux/issues ? I tried reproducing your issue in a clean environment but did not succeed: makepkg accepts using the public key from https://github.com/archlinuxhardened/selinux/blob/aa3032b27ccff1fe96cb9431eabe8bec92e83e6a/libselinux/keys/pgp/B8682847764DF60DF52D992CBC3905F235179CF1.asc (gpg also displays "WARNING: This key is not certified with a trusted signature!" but this is related to this key not being trusted in the local GPG keystore and is unrelated to verifying package sources). So more context is needed to help you fix your issue.

1 2 3 4 5 6 .. 8 Next › Last »