From a4c374a14d16d7cdbbd138e9f13659f4e4c203d7 Mon Sep 17 00:00:00 2001
From: Daniel J Walsh <dwalsh@redhat.com>
Date: Tue, 16 Jan 2018 13:56:33 -0500
Subject: [PATCH] Allow unconfined domains to transition to container types,
 when no-new-privs is set.

---
 .gitignore             | 1 +
 container-selinux.spec | 7 +++++--
 sources                | 2 +-
 3 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/.gitignore b/.gitignore
index 2339939..9361781 100644
--- a/.gitignore
+++ b/.gitignore
@@ -34,3 +34,4 @@
 /container-selinux-96e58bf.tar.gz
 /container-selinux-599072a.tar.gz
 /container-selinux-231b213.tar.gz
+/container-selinux-d148550.tar.gz
diff --git a/container-selinux.spec b/container-selinux.spec
index f4b7e87..91ac826 100644
--- a/container-selinux.spec
+++ b/container-selinux.spec
@@ -3,7 +3,7 @@
 # container-selinux
 %global git0 https://github.com/projectatomic/container-selinux
 %if 0%{?fedora} || 0%{?rhel} > 7
-%global commit0 231b213555c3a3d38dcfa69c854ab95d1c8bf6eb
+%global commit0 d148550d8c829bd2ee557fe503d2b8f9df53db8f
 %else
 # use upstream's RHEL-1.12 branch for CentOS 7
 %global commit0 56c32da8a72f9e7af5daeaebac5b887830d123b1
@@ -35,7 +35,7 @@ Name: container-selinux
 %if 0%{?fedora} || 0%{?centos} || 0%{?rhel} > 7
 Epoch: 2
 %endif
-Version: 2.41
+Version: 2.42
 Release: 1%{?dist}
 License: GPLv2
 URL: %{git0}
@@ -117,6 +117,9 @@ fi
 %{_datadir}/selinux/*
 
 %changelog
+* Tue Jan 16 2018 Dan Walsh <dwalsh@fedoraproject.org> - 2.42-1
+- Allow unconfined domains to transition to container types, when no-new-privs is set.
+
 * Tue Jan 9 2018 Dan Walsh <dwalsh@fedoraproject.org> - 2.41-1
 - Add support to nnp_transition for container domains
 - Eliminates need for typebounds.
diff --git a/sources b/sources
index 64b389b..3e23a9d 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-SHA512 (container-selinux-231b213.tar.gz) = be907960062135a71d82921b51b53e9fdbdd7db85200e511487469215cec014aa253b49525098282d817808d4862b2de46f0df0314811de70b6bb82a711cc9eb
+SHA512 (container-selinux-d148550.tar.gz) = 43b8f93c552a0879aa8743703dd0ccc75e7b207c6a4c4c14ec9b85f125307c8aab8914d48be983fc94b9ca1413c112a340ddf9bf0da0751986701c809ece5e27