From 09e4700e68a4f93d34e54a7a8df42e475f0db216 Mon Sep 17 00:00:00 2001
From: Jindrich Novy <jnovy@redhat.com>
Date: Tue, 16 May 2023 15:03:02 +0200
Subject: [PATCH] container-selinux-2.213.0-2.el8

- add watch statement removal from container.te
- Related: #2176055

Signed-off-by: Jindrich Novy <jnovy@redhat.com>
---
 container-selinux.spec | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/container-selinux.spec b/container-selinux.spec
index 86afbfd..2feffa7 100644
--- a/container-selinux.spec
+++ b/container-selinux.spec
@@ -20,7 +20,7 @@
 Epoch: 2
 Name: container-selinux
 Version: 2.213.0
-Release: 1%{?dist}
+Release: 2%{?dist}
 License: GPLv2
 URL: %{git0}
 Summary: SELinux policies for container runtimes
@@ -57,6 +57,7 @@ SELinux policy modules for use with container runtimes.
 # Remove some lines for RHEL 8 build
 %if ! 0%{?fedora} && 0%{?rhel} <= 8
 sed -i 's/watch watch_reads//' container.if
+sed -i 's/watch watch_reads//' container.te
 sed -i '/sysfs_t:dir watch/d' container.te
 sed -i '/systemd_chat_resolved/d' container.te
 %endif
@@ -126,6 +127,10 @@ fi
 %{_datadir}/udica/templates/*
 
 %changelog
+* Tue May 16 2023 Jindrich Novy <jnovy@redhat.com> - 2:2.213.0-2
+- add watch statement removal from container.te
+- Related: #2176055
+
 * Mon May 15 2023 Jindrich Novy <jnovy@redhat.com> - 2:2.213.0-1
 - update to https://github.com/containers/container-selinux/releases/tag/v2.213.0
 - Related: #2176055