Add new type to handle containers running with a non priv user in a userns

allow containers to map all sockets
2018-06-11 08:55:28 -04:00 · 2018-06-11 08:55:28 -04:00 · 781a8d1c0d
commit 781a8d1c0d
parent 3cc70f6448
3 changed files with 8 additions and 3 deletions
--- a/.gitignore
+++ b/.gitignore
@ -52,3 +52,4 @@
 /container-selinux-1ecf953.tar.gz
 /container-selinux-284f9e7.tar.gz
 /container-selinux-d346375.tar.gz
+/container-selinux-bf5b26b.tar.gz
--- a/container-selinux.spec
+++ b/container-selinux.spec
@ -3,7 +3,7 @@
 # container-selinux
 %global git0 https://github.com/projectatomic/container-selinux
 %if 0%{?fedora} || 0%{?rhel} > 7
-%global commit0 d34637560ae7e992abdb70b2edafe9588e80c3aa
+%global commit0 bf5b26b07c9fa182142566bdcd27e91f9355529c
 %global shortcommit0 %(c=%{commit0}; echo ${c:0:7})
 %else
 # use upstream's RHEL-1.12 branch for CentOS 7
@ -36,7 +36,7 @@ Name: container-selinux
 %if 0%{?fedora} || 0%{?centos} || 0%{?rhel} > 7
 Epoch: 2
 %endif
-Version: 2.64
+Version: 2.65
 Release: 1.git%{shortcommit0}%{?dist}
 License: GPLv2
 URL: %{git0}
@ -127,6 +127,10 @@ fi
 %{_datadir}/selinux/*

 %changelog
+* Mon Jun 11 2018 Dan Walsh <dwalsh@fedoraproject.org> - 2.65-1
+- Add new type to handle containers running with a non priv user in a userns
+- allow containers to map all sockets
+
 * Sun Jun 3 2018 Dan Walsh <dwalsh@fedoraproject.org> - 2.64-1
 - Allow containers to create all socket classes

--- a/2
+++ b/2
@ -1 +1 @@
-SHA512 (container-selinux-d346375.tar.gz) = 773ddd8f3c0280a1c88b75a619b961dfdc7aa95c807bebb161d80f04040dff3f039ca2eb0560f6ccf8a8d5367a96639c0fc634ac02b5ecd29b54dea028dcc9fc
+SHA512 (container-selinux-bf5b26b.tar.gz) = 2227ef893bce792841ccca589c844ad8e9f5a067cb78f8f2c9f8d1224ac49ae9ec0d6894d2f165e90ecd253baf0e8e6ff94e55da4f535aa49d8cef6577ab211d