From c06c926b64cb5670e531bd86e4b2b30b21d4e1e3 Mon Sep 17 00:00:00 2001
From: Daniel J Walsh <dwalsh@redhat.com>
Date: Thu, 19 Jan 2017 12:00:49 -0500
Subject: [PATCH] Add typebounds statement for container_t from
 container_runtime_t We should only label runc not runc*

---
 .gitignore             | 1 +
 container-selinux.spec | 8 ++++++--
 sources                | 1 +
 3 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/.gitignore b/.gitignore
index 76331ee..1f71335 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,4 @@
 /container-selinux-513572d.tar.gz
 /container-selinux-bcdcb9a.tar.gz
 /container-selinux-3bbbad5.tar.gz
+/container-selinux-b9809fa.tar.gz
diff --git a/container-selinux.spec b/container-selinux.spec
index 1a6c66f..f2765fa 100644
--- a/container-selinux.spec
+++ b/container-selinux.spec
@@ -3,7 +3,7 @@
 # container-selinux
 %global git0 https://github.com/projectatomic/container-selinux
 %if 0%{?fedora}
-%global commit0 3bbbad57f5827b02f91f847eb559a59cca7967af
+%global commit0 b9809fa7156c043e4306c0a14e0b20f72d0a31fa
 %else
 # use upstream's RHEL-1.12 branch for CentOS 7
 %global commit0 56c32da8a72f9e7af5daeaebac5b887830d123b1
@@ -35,7 +35,7 @@ Name: container-selinux
 %if 0%{?fedora} || 0%{?centos}
 Epoch: 2
 %endif
-Version: 2.3
+Version: 2.4
 Release: 1%{?dist}
 License: GPLv2
 URL: %{git0}
@@ -118,6 +118,10 @@ fi
 %{_datadir}/selinux/*
 
 %changelog
+* Thu Jan 19 2017 Dan Walsh <dwalsh@fedoraproject.org> - 2:4.1-1
+- Add typebounds statement for container_t from container_runtime_t
+- We should only label runc not runc*
+
 * Tue Jan 17 2017 Dan Walsh <dwalsh@fedoraproject.org> - 2:3.1-1
 - Fix labeling on /usr/bin/runc.*
 - Add sandbox_net_domain access to container.te
diff --git a/sources b/sources
index 93826a8..b95330e 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,3 @@
 SHA512 (container-selinux-bcdcb9a.tar.gz) = 382ed177ac878e56a7a4819b30362f0f797657ae4b87847e624124d06e4f56463a44c8a4d0ba60ebe02bf53128b43ec5d0ce5a6f9e0d6450594a9cef60531806
 SHA512 (container-selinux-3bbbad5.tar.gz) = d255c5993bff90fb90030d6d0ced11eeed9a620878e24b99fdba7e8c66e130fcc88ac6f839fd84a96863f3d0fb57a41d4d4a59e30eb383ad999a75d22d8533a2
+SHA512 (container-selinux-b9809fa.tar.gz) = 796403b5951daaaf1de932d02d42be9a62ba877fcf67f5cbd9e489427e886cb9dcb990810d46a0359dabfe5ce132139c869c278d4a17b3690530e7cfd0f0575b