Allow containers to memory map the fifo_files leaked into container from

container runtimes.
2018-01-22 09:40:35 -05:00 · 2018-01-22 09:40:35 -05:00 · a7ce3135c2
commit a7ce3135c2
parent a4c374a14d
3 changed files with 8 additions and 3 deletions
--- a/.gitignore
+++ b/.gitignore
@ -35,3 +35,4 @@
 /container-selinux-599072a.tar.gz
 /container-selinux-231b213.tar.gz
 /container-selinux-d148550.tar.gz
+/container-selinux-dfcc97d.tar.gz
--- a/container-selinux.spec
+++ b/container-selinux.spec
@ -3,7 +3,7 @@
 # container-selinux
 %global git0 https://github.com/projectatomic/container-selinux
 %if 0%{?fedora} || 0%{?rhel} > 7
-%global commit0 d148550d8c829bd2ee557fe503d2b8f9df53db8f
+%global commit0 dfcc97d9c6a5b22d41c2b9d5693d86a65bd9db04
 %else
 # use upstream's RHEL-1.12 branch for CentOS 7
 %global commit0 56c32da8a72f9e7af5daeaebac5b887830d123b1
@ -35,7 +35,7 @@ Name: container-selinux
 %if 0%{?fedora} || 0%{?centos} || 0%{?rhel} > 7
 Epoch: 2
 %endif
-Version: 2.42
+Version: 2.43
 Release: 1%{?dist}
 License: GPLv2
 URL: %{git0}
@ -117,6 +117,10 @@ fi
 %{_datadir}/selinux/*

 %changelog
+* Mon Jan 22 2018 Dan Walsh <dwalsh@fedoraproject.org> - 2.43-1
+- Allow containers to memory map the fifo_files leaked into container from
+container runtimes.
+
 * Tue Jan 16 2018 Dan Walsh <dwalsh@fedoraproject.org> - 2.42-1
 - Allow unconfined domains to transition to container types, when no-new-privs is set.

--- a/2
+++ b/2
@ -1 +1 @@
-SHA512 (container-selinux-d148550.tar.gz) = 43b8f93c552a0879aa8743703dd0ccc75e7b207c6a4c4c14ec9b85f125307c8aab8914d48be983fc94b9ca1413c112a340ddf9bf0da0751986701c809ece5e27
+SHA512 (container-selinux-dfcc97d.tar.gz) = ed9cad7e2cd1de72bb1f505ee45789ede27ad4e8fc064c45b2435cb2b772b1c1aaff462907b77cd301d986fcd45e06aba9e191099fc7b573894a3f8b21306858