From 82a06e13a51a021393ca557b5c60115117b256d8 Mon Sep 17 00:00:00 2001 From: CentOS Sources Date: Mar 11 2022 21:01:50 +0000 Subject: import container-selinux-2.180.0-1.module+el8.7.0+14421+e3b24aca --- diff --git a/.container-selinux.metadata b/.container-selinux.metadata index b95c159..08a844b 100644 --- a/.container-selinux.metadata +++ b/.container-selinux.metadata @@ -1 +1 @@ -abad87da2de659edd2cbf7a54e0296f7e1104930 SOURCES/v2.170.0.tar.gz +246286eaa61694fdcfdffcbaca578984c9d51d4e SOURCES/v2.180.0.tar.gz diff --git a/.gitignore b/.gitignore index cf34eb1..f5a1088 100644 --- a/.gitignore +++ b/.gitignore @@ -1 +1 @@ -SOURCES/v2.170.0.tar.gz +SOURCES/v2.180.0.tar.gz diff --git a/SOURCES/rhel-fix.patch b/SOURCES/rhel-fix.patch deleted file mode 100644 index 90293df..0000000 --- a/SOURCES/rhel-fix.patch +++ /dev/null @@ -1,12 +0,0 @@ -diff -up container-selinux-2.161.1/container.te.orig container-selinux-2.161.1/container.te ---- container-selinux-2.161.1/container.te.orig 2021-05-06 14:55:57.952216763 +0200 -+++ container-selinux-2.161.1/container.te 2021-05-06 14:56:02.027287991 +0200 -@@ -114,7 +114,7 @@ mls_trusted_object(container_runtime_t) - # - allow container_runtime_domain self:capability { chown kill fowner fsetid mknod net_admin net_bind_service net_raw setfcap sys_resource }; - allow container_runtime_domain self:tun_socket { create_socket_perms relabelto }; --allow container_runtime_domain self:lockdown { confidentiality integrity }; -+#allow container_runtime_domain self:lockdown { confidentiality integrity }; - allow container_runtime_domain self:process ~setcurrent; - allow container_runtime_domain self:passwd rootok; - allow container_runtime_domain self:fd use; diff --git a/SPECS/container-selinux.spec b/SPECS/container-selinux.spec index 5b511fe..5b66d87 100644 --- a/SPECS/container-selinux.spec +++ b/SPECS/container-selinux.spec @@ -15,17 +15,16 @@ %global _format() export %1=""; for x in %{modulenames}; do %1+=%2; %1+=" "; done; # Version of SELinux we were using -%global selinux_policyver 3.14.3-9.el8 +%global selinux_policyver 3.14.3-80.el8 Epoch: 2 Name: container-selinux -Version: 2.170.0 +Version: 2.180.0 Release: 1%{?dist} License: GPLv2 URL: %{git0} Summary: SELinux policies for container runtimes Source0: %{git0}/archive/v%{version}.tar.gz -Patch0: rhel-fix.patch Patch1: container-selinux-1957904.patch BuildArch: noarch BuildRequires: git @@ -113,6 +112,62 @@ fi %{_datadir}/udica/templates/* %changelog +* Mon Mar 07 2022 Jindrich Novy - 2:2.180.0-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.180.0 +- Related: #2061390 + +* Mon Feb 28 2022 Jindrich Novy - 2:2.179.1-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.179.1 +- Related: #2001445 + +* Fri Feb 11 2022 Jindrich Novy - 2:2.178.0-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.178.0 +- Related: #2001445 + +* Thu Feb 10 2022 Jindrich Novy - 2:2.177.0-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.177.0 +- Related: #2001445 + +* Thu Feb 03 2022 Jindrich Novy - 2:2.176.0-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.176.0 +- Related: #2001445 + +* Wed Feb 02 2022 Jindrich Novy - 2:2.174.0-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.174.0 +- Related: #2001445 + +* Thu Jan 27 2022 Jindrich Novy - 2:2.173.2-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.173.2 +- Related: #2001445 + +* Fri Jan 21 2022 Jindrich Novy - 2:2.173.1-2 +- update minimal selinux_policy dependency +- Related: #2001445 + +* Wed Jan 19 2022 Jindrich Novy - 2:2.173.1-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.173.1 +- Related: #2001445 + +* Wed Jan 12 2022 Jindrich Novy - 2:2.173.0-2 +- lockdown allow rule was removed +- Related: #2001445 + +* Wed Jan 12 2022 Jindrich Novy - 2:2.173.0-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.173.0 +- Related: #2001445 + +* Fri Jan 07 2022 Jindrich Novy - 2:2.172.1-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.172.1 +- Related: #2001445 + +* Tue Nov 23 2021 Jindrich Novy - 2:2.172.0-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.172.0 +- Related: #2001445 + +* Thu Nov 11 2021 Jindrich Novy - 2:2.171.0-1 +- update to https://github.com/containers/container-selinux/releases/tag/v2.171.0 +- Related: #2001445 + * Wed Oct 06 2021 Jindrich Novy - 2:2.170.0-1 - update to https://github.com/containers/container-selinux/releases/tag/v2.170.0 - Related: #2001445