selinux-policy-devel?

[Daniel J Walsh]

Paul Howarth wrote:
> Paul Howarth wrote:
>> On Sat, 2006-06-17 at 06:16 -0400, Daniel J Walsh wrote:
>>> Paul Howarth wrote:
>>>> Perhaps the selinux-policy package should be split into an 
>>>> selinux-policy and selinux-policy-devel package, with the -devel 
>>>> package being needed for building new policy/modules, and the base 
>>>> policy package containing just the stuff needed for regular runtime 
>>>> usage?
>>>>
>>>> I suggest this because I just tried building a policy module in 
>>>> mock with the new minimal environment and it fell over because 
>>>> building policy modules requires m4, which is not in the minimal 
>>>> environment. So m4 needs adding as a dep of selinux-policy (it's 
>>>> referenced from /usr/share/selinux/devel/include/Makefile), and 
>>>> this is really a devel-specific package that shouldn't be needed by 
>>>> most people, hence splitting off a -devel subpackage and adding the 
>>>> dep to that makes more sense. The -devel package could also have a 
>>>> dep on checkpolicy, which would be nice...
>>>>
>>> We have gone back and forth on this one.   The original idea was to 
>>> make it easier for people to build custom policy and not have to go 
>>> looking for this package.
>>
>> Well that's OK but it really should have deps on m4 and checkpolicy
>> then, since both are needed for building custom policy.
>
> I see from today's rawhide report that a -devel package has been split 
> out :-)
>
> Is this going to happen in FC5 with the next update too?
>
> Paul.
Probably,  although it really requires some coordination between 
policycoreutils, so that audit2allow will tell you to install it if
you want to build a loadable reference module.

Some other fixes are also going into tonights rawhide, to fix the 
requires.  

See we do listen to the user community.  :^)

Dan