Search Criteria
Package Details: systemd-ukify-selinux 255.4-2
Package Actions
| Git Clone URL: | https://aur.archlinux.org/systemd-selinux.git (read-only, click to copy) |
|---|---|
| Package Base: | systemd-selinux |
| Description: | Combine kernel and initrd into a signed Unified Kernel Image |
| Upstream URL: | https://www.github.com/systemd/systemd |
| Keywords: | selinux |
| Licenses: | LGPL-2.1-or-later |
| Groups: | selinux |
| Conflicts: | mkinitcpio |
| Provides: | systemd-ukify, ukify |
| Submitter: | Siosm |
| Maintainer: | IooNag |
| Last Packager: | IooNag |
| Votes: | 18 |
| Popularity: | 0.118024 |
| First Submitted: | 2013-11-03 20:05 (UTC) |
| Last Updated: | 2024-03-06 21:39 (UTC) |
Dependencies (54)
- binutils
- python-cryptography
- python-pefile (python-pefile-gitAUR)
- systemd (systemd-gitAUR, systemd-chromiumosAUR, systemd-selinuxAUR, systemd-fmlAUR)
- acl (acl-gitAUR) (make)
- audit (make)
- bash-completion (bash-completion-gitAUR) (make)
- bpf (make)
- clang (llvm-rocm-gitAUR, llvm-gitAUR, clang-minimal-gitAUR) (make)
- cryptsetup (cryptsetup-deluksAUR, cryptsetup-gitAUR) (make)
- curl (curl-quiche-gitAUR, curl-gitAUR, curl-http3-ngtcp2AUR, curl-c-aresAUR) (make)
- docbook-xsl (make)
- git (git-gitAUR) (make)
- gnutls (gnutls-gitAUR) (make)
- gperf (gperf-gitAUR) (make)
- intltool (make)
- iptables (iptables-gitAUR, iptables-fullconenatAUR, iptables-fullconenat-nftAUR, iptables-nft) (make)
- kexec-tools (make)
- kmod (kmod-gitAUR, busybox-coreutilsAUR) (make)
- lib32-gcc-libs (lib32-gccrs-libs-gitAUR, lib32-gcc-libs-gitAUR) (make)
- Show 34 more dependencies...
Required by (13)
- arch-efistub-git (requires systemd-ukify)
- booster-ukify (requires systemd-ukify)
- booster-um (requires systemd-ukify)
- booster-um-git (requires systemd-ukify)
- bootmap (requires systemd-ukify)
- dracut-ukify (requires systemd-ukify)
- mkosi-git (requires systemd-ukify) (optional)
- prepare-lastboot (requires systemd-ukify) (optional)
- sbupdate-git (requires systemd-ukify)
- sbupdate-mkinitcpio (requires systemd-ukify)
- systemd-chromiumos (requires systemd-ukify) (optional)
- systemd-fml (requires systemd-ukify) (optional)
- systemd-selinux (optional)
Sources (18)
- 0001-Use-Arch-Linux-device-access-groups.patch
- 20-systemd-sysusers.hook
- 30-systemd-binfmt.hook
- 30-systemd-catalog.hook
- 30-systemd-daemon-reload-system.hook
- 30-systemd-daemon-reload-user.hook
- 30-systemd-hwdb.hook
- 30-systemd-sysctl.hook
- 30-systemd-tmpfiles.hook
- 30-systemd-udev-reload.hook
- 30-systemd-update.hook
- arch.conf
- git+https://github.com/systemd/systemd#tag=v255?signed
- git+https://github.com/systemd/systemd-stable#tag=4003dd6754e3446691402d3cc389fbfd4faccc90?signed
- loader.conf
- splash-arch.bmp
- systemd-hook
- systemd-user.pam
Latest Comments
« First ‹ Previous 1 2 3 4 5 6 Next › Last »
IooNag commented on 2019-07-20 12:39 (UTC)
sorin-mihai: I have updated the package. For your information, when you update your system and a dependency of systemd gets updated, you need to check whether systemctl still works and whether "ldd /usr/lib/systemd/systemd" does not report any library with "=> not found". If there are issues there, rebuilding systemd-selinux should be enough in order to fix the broken library dependencies, like any package in the AUR that depends on libraries that are upgraded to a different ".so version".
In case it helps someone, I am using a script that works like Gentoo's revdep-rebuild tool in order to detect such breakage on my system. I have published it on https://github.com/fishilico/home-files/blob/master/bin/find-broken-libdep
sorin-mihai commented on 2019-07-18 22:45 (UTC) (edited on 2019-07-18 22:54 (UTC) by sorin-mihai)
Just marked the package as out-of date
As a result the rebuilt initramfs is unbootable. The only workaround I used so far is to keep iptables at 1:1.8.2-1 blacklisting it from upgrade in /etc/pacman.conf
Anyone that needs to recover from an unbootable system related to this, can get the previous iptables from https://archive.org/download/archlinux_pkg_iptables/iptables-1\:1.8.2-1-x86_64.pkg.tar.xz and install it from a live usb in a mounted chroot. Usuall recovery I'd say, while in chroot just install the package and rebuild the initramfs with mkinitcpio
yar commented on 2019-05-12 17:55 (UTC) (edited on 2019-05-12 17:55 (UTC) by yar)
Arch's systemd has already backported 2 patches to fix https://bugs.archlinux.org/task/62483 and I've submitted a pull request for you to do the same. Thanks! https://github.com/archlinuxhardened/selinux/pull/22
taro-yamada commented on 2019-02-07 14:58 (UTC)
@kvnbai
journalctl --vacuum-size=100M
may fix the problem.
IooNag commented on 2019-01-06 15:44 (UTC)
@kvnbai Does the issue also exist when you build the offical systemd package from source? This does not looks like something specific to modifications related to SELinux.
@yar: the last time I tried to use makechrootpkg, it required root privileged. Which is why I tried to use it with fakeroot+fakechroot and proot (https://github.com/fishilico/home-files/blob/master/bin/makecleanpkg + https://github.com/archlinuxhardened/selinux/blob/master/build_cleanpkg.sh). Unfortunately it does not work with systemd package, cf. https://github.com/archlinuxhardened/selinux/blob/master/build_cleanpkg.sh#L137-L147 For information, this is the major bug preventing me to set up a "user package repository" with SELinux packages which would be compiled by an Continuous Integration system every time a package is built.
yar commented on 2019-01-05 19:51 (UTC)
I highly recommend building with makechrootpkg https://wiki.archlinux.org/index.php/DeveloperWiki:Building_in_a_clean_chroot
kvnbai commented on 2019-01-05 19:43 (UTC)
@IooNag
The build only fails when using 1 CPU (using VM), giving my VM atleast 2 CPUs solves the issue. I'm not sure if this is a large issue, so I'll just leave a comment here:
Is your system up-to-date? Yes tested on the newest stable manjaro-i3 release. I updated the system before following the wiki.
Are you using an x86-64 CPU? Yes
Did you try building systemd-selinux in a freshly installed system? Yes
Does /home/test/.cache/yay/systemd-selinux/src/build/test-journal-flush exist, and if yes, does it show the same error when you run it directly? Yes it exists and it shows the same error when executed, the files that the script wish to create are also created in /tmp
Is SELinux enabled on your system? SELinux is disabled
Prep before isntalling SELinux: Removed mlocate because the AUR helper I use can only remove findutils while installing findutils-selinux
IooNag commented on 2019-01-05 11:09 (UTC)
@kvnbai: the package builds fine on my (up to date) system. Could you please give more details about your issue on https://github.com/archlinuxhardened/selinux/issues , which would allow me to reproduce the failure? Here are some questions which help in a bug report: Is your system up-to-date? Are you using an x86-64 CPU? Did you try building systemd-selinux in a freshly installed system? Does /home/test/.cache/yay/systemd-selinux/src/build/test-journal-flush exist, and if yes, does it show the same error when you run it directly? Is SELinux enabled on your system? If yes, in which mode and policy (cf. the output of "sestatus -v")? Does test-journal-flush trigger AVC denials in audit.log?
kvnbai commented on 2019-01-04 21:31 (UTC) (edited on 2019-01-04 21:37 (UTC) by kvnbai)
Cant build the package
...
228/318 test-journal-stream OK 0.02 s
229/318 test-journal-flush FAIL 0.28 s (killed by signal 6 SIGABRT)
230/318 test-journal-init OK 0.12 s ...
Full log written to /home/test/selinux/systemd-selinux/src/build/meson-logs/testlog.txt
==> ERROR: A failure occurred in check().
Aborting...
Logfile:
229/318 test-journal-flush FAIL 0.32 s (killed by signal 6 SIGABRT)
--- command ---
PATH='/home/test/.cache/yay/systemd-selinux/src/build:/usr/local/bin:/usr/bin:/bin:/usr/local/sbin:/usr/bin/site_perl:/usr/bin/vendor_perl:/usr/bin/core_perl' SYSTEMD_LANGUAGE_FALLBACK_MAP='/home/test/.cache/yay/systemd-selinux/src/systemd-stable/src/locale/language-fallback-map' SYSTEMD_KBD_MODEL_MAP='/home/test/.cache/yay/systemd-selinux/src/systemd-stable/src/locale/kbd-model-map' /home/test/.cache/yay/systemd-selinux/src/build/test-journal-flush
--- stderr ---
Assertion 'r >= 0' failed at ../systemd-stable/src/journal/test-journal-flush.c:43, function main(). Aborting. Aborted (core dumped)
« First ‹ Previous 1 2 3 4 5 6 Next › Last »