From 88328244edc3548630a28934415063a2b5cf9dcf Mon Sep 17 00:00:00 2001 From: Daniel J Walsh Date: Sep 13 2018 13:33:50 +0000 Subject: Define spc_t as a container_domain, so that container_runtime will transition to spc_t even when setup with nosuid. --- diff --git a/.gitignore b/.gitignore index addd98e..5d8f5df 100644 --- a/.gitignore +++ b/.gitignore @@ -65,3 +65,4 @@ /container-selinux-452b90d.tar.gz /container-selinux-4e73492.tar.gz /container-selinux-5721d74.tar.gz +/container-selinux-d7a3f33.tar.gz diff --git a/container-selinux.spec b/container-selinux.spec index 2b5276c..5445396 100644 --- a/container-selinux.spec +++ b/container-selinux.spec @@ -2,7 +2,7 @@ # container-selinux %global git0 https://github.com/projectatomic/container-selinux -%global commit0 f6c7f410ca8bfe20bd0a217dd75b22735a32f212 +%global commit0 d7a3f33548ae5c5912006dc2b14270d650f5e52f %global shortcommit0 %(c=%{commit0}; echo ${c:0:7}) # container-selinux stuff (prefix with ds_ for version/release etc.) @@ -26,7 +26,7 @@ Name: container-selinux %if 0%{?fedora} Epoch: 2 %endif -Version: 2.72 +Version: 2.73 Release: 1.git%{shortcommit0}%{?dist} License: GPLv2 URL: %{git0} @@ -111,6 +111,10 @@ fi %{_datadir}/selinux/* %changelog +* Wed Sep 12 2018 Dan Walsh - 2.73-1 +- Define spc_t as a container_domain, so that container_runtime will transition +to spc_t even when setup with nosuid. + * Wed Sep 12 2018 Dan Walsh - 2.72-1 - Allow container_runtimes to setattr on callers fifo_files diff --git a/sources b/sources index c7f4eec..22fed4c 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (container-selinux-5721d74.tar.gz) = 6c965d64022967cffad10fc7f69ef7111998c91dc6a5be4c227f00d82d6af6c4c6b9c86d1f6809204a7ee8bf950483b32efb5ee8ce05a0ad71a5e57c7f3230b3 +SHA512 (container-selinux-d7a3f33.tar.gz) = c2db2bc9e1bc8de49631d8d40210bcb065af21892c4ee4f94f13dcbb1bbd61c18b95b086aa0f83205c060b497581e1ed7bb9dda5c927b32cebc48c456bdfd553