Relabel runc and crio executables

2017-07-06 10:47:14 +00:00 · 2017-07-06 10:47:14 +00:00 · 852a09a52f
commit 852a09a52f
parent ef7772c664
1 changed files with 5 additions and 2 deletions
--- a/container-selinux.spec
+++ b/container-selinux.spec
@ -22,7 +22,7 @@
 %global _format() export %1=""; for x in %{modulenames}; do %1+=%2; %1+=" "; done;

 # Relabel files
-%global relabel_files() %{_sbindir}/restorecon -R %{_bindir}/docker* %{_localstatedir}/run/containerd.sock %{_localstatedir}/run/docker.sock %{_localstatedir}/run/docker.pid %{_sysconfdir}/docker %{_localstatedir}/log/docker %{_localstatedir}/log/lxc %{_localstatedir}/lock/lxc %{_unitdir}/docker.service %{_unitdir}/docker-containerd.service %{_unitdir}/docker-latest.service %{_unitdir}/docker-latest-containerd.service %{_sysconfdir}/docker %{_libexecdir}/docker* &> /dev/null || :
+%global relabel_files() %{_sbindir}/restorecon -R %{_bindir}/*runc* %{_bindir}/*crio %{_bindir}/docker* %{_localstatedir}/run/containerd.sock %{_localstatedir}/run/docker.sock %{_localstatedir}/run/docker.pid %{_sysconfdir}/docker %{_sysconfdir}/crio %{_localstatedir}/log/docker %{_localstatedir}/log/lxc %{_localstatedir}/lock/lxc %{_unitdir}/docker.service %{_unitdir}/docker-containerd.service %{_unitdir}/docker-latest.service %{_unitdir}/docker-latest-containerd.service %{_sysconfdir}/docker %{_libexecdir}/docker* &> /dev/null || :

 # Version of SELinux we were using
 %if 0%{?fedora} >= 22
@ -36,7 +36,7 @@ Name: container-selinux
 Epoch: 2
 %endif
 Version: 2.20
-Release: 1%{?dist}
+Release: 2%{?dist}
 License: GPLv2
 URL: %{git0}
 Summary: SELinux policies for container runtimes
@ -118,6 +118,9 @@ fi
 %{_datadir}/selinux/*

 %changelog
+* Thu Jul 6 2017 Dan Walsh <dwalsh@fedoraproject.org> - 2.20-2
+- Relabel runc and crio executables
+
 * Fri Jun 30 2017 Dan Walsh <dwalsh@fedoraproject.org> - 2.20-1
 - Allow container processes to getsession