rpms/container-selinux
6
0
Fork 0
Code Issues Pull Requests Releases Activity

Dontaudit container processes getattr on kernel file systems

Browse Source
This commit is contained in:
Daniel J Walsh 2017-11-22 15:35:20 +00:00
parent cc32bab0b3
commit 4e9b7c333a
3 changed files with 7 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.gitignore vendored
View File

@ -25,3 +25,4 @@
/container-selinux-47e0448.tar.gz /container-selinux-47e0448.tar.gz
/container-selinux-b430a71.tar.gz /container-selinux-b430a71.tar.gz
/container-selinux-0b666c4.tar.gz /container-selinux-0b666c4.tar.gz
/container-selinux-7fe0136.tar.gz

7
container-selinux.spec
View File

@ -3,7 +3,7 @@
# container-selinux # container-selinux
%global git0 https://github.com/projectatomic/container-selinux %global git0 https://github.com/projectatomic/container-selinux
%if 0%{?fedora} || 0%{?rhel} > 7 %if 0%{?fedora} || 0%{?rhel} > 7
%global commit0 0b666c4f1422d60dde6ffac69a919872385e289d %global commit0 7fe0136a943ef5428869ad930e5384b185ade39a
%else %else
# use upstream's RHEL-1.12 branch for CentOS 7 # use upstream's RHEL-1.12 branch for CentOS 7
%global commit0 56c32da8a72f9e7af5daeaebac5b887830d123b1 %global commit0 56c32da8a72f9e7af5daeaebac5b887830d123b1
@ -35,7 +35,7 @@ Name: container-selinux
%if 0%{?fedora} || 0%{?centos} || 0%{?rhel} > 7 %if 0%{?fedora} || 0%{?centos} || 0%{?rhel} > 7
Epoch: 2 Epoch: 2
%endif %endif
Version: 2.33 Version: 2.34
Release: 1%{?dist} Release: 1%{?dist}
License: GPLv2 License: GPLv2
URL: %{git0} URL: %{git0}
@ -118,6 +118,9 @@ fi
%{_datadir}/selinux/* %{_datadir}/selinux/*
%changelog %changelog
* Wed Nov 22 2017 Dan Walsh <dwalsh@fedoraproject.org> - 2.34-1
- Dontaudit container processes getattr on kernel file systems
* Sun Nov 19 2017 Dan Walsh <dwalsh@fedoraproject.org> - 2.33-1 * Sun Nov 19 2017 Dan Walsh <dwalsh@fedoraproject.org> - 2.33-1
- Allow containers to read /etc/resolv.conf and /etc/hosts if volume - Allow containers to read /etc/resolv.conf and /etc/hosts if volume
- mounted into container. - mounted into container.

2
sources
View File

@ -1 +1 @@
SHA512 (container-selinux-0b666c4.tar.gz) = 46833377d09ecd57d743f2277b225b6b381c55ac0b6f2331bc455f9e51cdd55774703d854735d98f9f4db54e0db7e14e29e4fb0229afd554cbe9efbd026bf20d SHA512 (container-selinux-7fe0136.tar.gz) = 93c80da31f8a6f4e333baed39d75f329467d3b4b9b499b486a2d635be62df072fedc28cd50c5cb005d4dbc2ae352d073b611b7d33b183c183f7ca551f307c39b