From bb6875d35822766d863a7252155c44a19aa2850d Mon Sep 17 00:00:00 2001 From: Daniel J Walsh Date: Tue, 11 Jul 2017 17:36:41 +0000 Subject: [PATCH] Allow containers to execmod on container_share_t files. --- .gitignore | 1 + container-selinux.spec | 9 ++++++--- sources | 2 +- 3 files changed, 8 insertions(+), 4 deletions(-) diff --git a/.gitignore b/.gitignore index 5ecda31..339f37c 100644 --- a/.gitignore +++ b/.gitignore @@ -15,3 +15,4 @@ /container-selinux-5212fea.tar.gz /container-selinux-a80afba.tar.gz /container-selinux-c5fd77f.tar.gz +/container-selinux-c89e9b5.tar.gz diff --git a/container-selinux.spec b/container-selinux.spec index 7fad32e..1e50d15 100644 --- a/container-selinux.spec +++ b/container-selinux.spec @@ -3,7 +3,7 @@ # container-selinux %global git0 https://github.com/projectatomic/container-selinux %if 0%{?fedora} -%global commit0 c5fd77fc2496e04c2722d23860842b58a72d0178 +%global commit0 c89e9b5e450367cfbed32d6c166ce04353f2bba7 %else # use upstream's RHEL-1.12 branch for CentOS 7 %global commit0 56c32da8a72f9e7af5daeaebac5b887830d123b1 @@ -35,8 +35,8 @@ Name: container-selinux %if 0%{?fedora} || 0%{?centos} Epoch: 2 %endif -Version: 2.20 -Release: 2%{?dist} +Version: 2.21 +Release: 1%{?dist} License: GPLv2 URL: %{git0} Summary: SELinux policies for container runtimes @@ -118,6 +118,9 @@ fi %{_datadir}/selinux/* %changelog +* Thu Jul 6 2017 Dan Walsh - 2.21-1 +- Allow containers to execmod on container_share_t files. + * Thu Jul 6 2017 Dan Walsh - 2.20-2 - Relabel runc and crio executables diff --git a/sources b/sources index 4ce51af..28ef135 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (container-selinux-c5fd77f.tar.gz) = 226880f6c73115034bd16b0c5acf6a79f35391fe51eec2ab499cf475d848e561f174dfaf14f7778c53363c4eee006b6b77cf558bd6e36b4474bfd44d9da8f8fa +SHA512 (container-selinux-c89e9b5.tar.gz) = 20f6fd70b18b77162738fa806d91cb37d0cc9efb286441cfe624c833a5d556e880e1658f2a8e1b78b9fb532c5d9075b5b6eaa9d73c8a8c9969a5fbde0784b050