From 79ad5662f6c01dfd70da20a5616b86b2d62c4b2f Mon Sep 17 00:00:00 2001 From: CentOS Sources Date: Nov 28 2018 07:53:25 +0000 Subject: import container-selinux-2.74-1.el7 --- diff --git a/.container-selinux.metadata b/.container-selinux.metadata index aa7e010..74df9e1 100644 --- a/.container-selinux.metadata +++ b/.container-selinux.metadata @@ -1 +1 @@ -41172fcf997aec4d4742fadde34d2fb2ff4d7ab3 SOURCES/container-selinux-fe41bf1.tar.gz +554413701300307b80099a3e0276ea7f2a4383c3 SOURCES/container-selinux-ac032a6.tar.gz diff --git a/.gitignore b/.gitignore index ea2428c..0c8bd1b 100644 --- a/.gitignore +++ b/.gitignore @@ -1 +1 @@ -SOURCES/container-selinux-fe41bf1.tar.gz +SOURCES/container-selinux-ac032a6.tar.gz diff --git a/SPECS/container-selinux.spec b/SPECS/container-selinux.spec index fd9585d..dcfaa83 100644 --- a/SPECS/container-selinux.spec +++ b/SPECS/container-selinux.spec @@ -2,7 +2,7 @@ # container-selinux %global git0 https://github.com/projectatomic/%{name} -%global commit0 fe41bf19b0a03c1747f4a5425a83a09b96c46012 +%global commit0 ac032a647ad22bd51ce4e23ce04934647bb6f3f8 %global shortcommit0 %(c=%{commit0}; echo ${c:0:7}) # container-selinux stuff (prefix with ds_ for version/release etc.) @@ -24,8 +24,8 @@ Name: container-selinux Epoch: 2 -Version: 2.73 -Release: 2%{?dist} +Version: 2.74 +Release: 1%{?dist} License: GPLv2 URL: %{git0} Summary: SELinux policies for container runtimes @@ -41,7 +41,7 @@ Requires(post): selinux-policy-base >= %{selinux_policyver} Requires(post): selinux-policy-targeted >= %{selinux_policyver} Requires(post): policycoreutils >= 2.5-11 -%if 0%{?fedora} +%if 0%{?rhel} > 7 || 0%{?fedora} Requires(post): policycoreutils-python-utils %else Requires(post): policycoreutils-python @@ -113,6 +113,12 @@ fi %{_datadir}/selinux/* %changelog +* Fri Oct 19 2018 Dan Walsh - 2.74-1 +- Allow containers to setexec themselves + +* Tue Sep 18 2018 Frantisek Kluknavsky - 2:2.73-3 +- tweak macro for fedora - applies to rhel8 as well + * Mon Sep 17 2018 Frantisek Kluknavsky - 2:2.73-2 - moved changelog entries: - Define spc_t as a container_domain, so that container_runtime will transition @@ -316,7 +322,7 @@ satisfy the bounds check of container_t versus container_runtime_t. - use upstream's RHEL-1.12 branch, commit 56c32da for CentOS 7 * Tue Jan 10 2017 Jonathan Lebon - 2:2.2-3 -- properly disable docker module in %post +- properly disable docker module in %%post * Sat Jan 07 2017 Lokesh Mandvekar - 2:2.2-2 - depend on selinux-policy-targeted