container-selinux

Author	SHA1	Message	Date
Lokesh Mandvekar	ad6b6a78c6	keep functional upgrade path Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>	2020-02-11 10:21:59 -05:00
RH Container Bot	a7a27f3909	container-selinux-2:2.124.0-0.4.dev.git5624558 - autobuilt 5624558 Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2020-02-11 04:12:21 +00:00
Ondrej Mosnacek	a4a98d05cc	Add smoke tests and enable gating Add very basic smoke tests that check if the container module installed successfully and that it is still possible to rebuild the policy after installing the package. This, along with enabling rawhide gating [1], should help catch issues like [2] and prevent a broken build from getting into Rawhide composes. [1] https://docs.fedoraproject.org/en-US/rawhide-gating/ [2] https://github.com/containers/container-selinux/pull/84 Signed-off-by: Ondrej Mosnacek <omosnace@redhat.com>	2020-02-03 14:09:59 +01:00
Fedora Release Engineering	66ff78ffab	- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>	2020-01-28 14:44:54 +00:00
Jindrich Novy	7ba0084bf5	container-selinux-2.124.0-0.2.dev.gitf958d0c.fc32 - use more current selinux policy version Signed-off-by: Jindrich Novy <jnovy@redhat.com>	2020-01-03 16:17:26 +01:00
RH Container Bot	9f271533a0	container-selinux-2:2.124.0-0.1.dev.gitf958d0c - bump to 2.124.0 - autobuilt f958d0c Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-12-11 18:13:36 +00:00
Lokesh Mandvekar	cf0837dcdd	container-selinux-2:2.123.0-0.4.dev.git0b25a4a - run selinux_relabel_pre Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>	2019-12-09 11:27:54 -05:00
RH Container Bot	fda115ab94	container-selinux-2:2.123.0-0.3.dev.git0b25a4a - autobuilt 0b25a4a Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-11-29 12:10:21 +00:00
Daniel J Walsh	c36566c4ae	Use selinux macros in post install scripts	2019-11-29 06:53:56 -05:00
RH Container Bot	c10fcb7be3	container-selinux-2:2.123.0-0.1.dev.git661a904 - bump to 2.123.0 - autobuilt 661a904 Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-11-25 16:10:35 +00:00
RH Container Bot	7d86365609	container-selinux-2:2.122.0-0.1.dev.git4560dd4 - bump to 2.122.0 - autobuilt 4560dd4 Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-11-22 21:10:14 +00:00
RH Container Bot	8afcfa88a8	container-selinux-2:2.120.1-0.2.dev.gita233788 - autobuilt a233788 Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-11-19 14:15:26 +00:00
RH Container Bot	445a455adf	container-selinux-2:2.120.1-0.1.dev.git6fb6dcf - bump to 2.120.1 - autobuilt 6fb6dcf Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-11-06 20:15:33 +00:00
RH Container Bot	244a2cbe3c	container-selinux-2:2.119.1-0.1.dev.git2ecb2a8 - bump to 2.119.1 - autobuilt 2ecb2a8 Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-10-27 09:21:18 +00:00
RH Container Bot	c9e415f48d	container-selinux-2:2.119.0-0.1.dev.gitb383f07 - bump to 2.119.0 - autobuilt b383f07 Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-10-24 16:26:13 +00:00
RH Container Bot	7605f73935	container-selinux-2:2.118.0-0.1.dev.git79bdcb5 - bump to 2.118.0 - autobuilt 79bdcb5 Signed-off-by: RH Container Bot <rhcontainerbot@fedoraproject.org>	2019-10-11 14:19:30 +00:00
Lokesh Mandvekar (Bot)	603bad3c42	container-selinux-2:2.117.0-0.1.dev.gitbfde70a - bump to 2.117.0 - autobuilt bfde70a Signed-off-by: Lokesh Mandvekar (Bot) <lsm5+bot@fedoraproject.org>	2019-09-20 08:27:36 +00:00
Lokesh Mandvekar (Bot)	121490dc1d	container-selinux-2:2.116.0-0.1.dev.gitc5ef5ac - bump to 2.116.0 - autobuilt c5ef5ac Signed-off-by: Lokesh Mandvekar (Bot) <lsm5+bot@fedoraproject.org>	2019-09-05 14:35:01 +00:00
Lokesh Mandvekar (Bot)	5e7899d66a	container-selinux-2:2.115.0-0.1.dev.gitfddfbbb - bump to 2.115.0 - autobuilt fddfbbb Signed-off-by: Lokesh Mandvekar (Bot) <lsm5+bot@fedoraproject.org>	2019-08-21 14:30:06 +00:00
Lokesh Mandvekar (Bot)	c42be5bbaa	container-selinux-2:2.114.0-0.1.dev.git028ab00 - bump to 2.114.0 - autobuilt 028ab00 Signed-off-by: Lokesh Mandvekar (Bot) <lsm5+bot@fedoraproject.org>	2019-08-19 12:25:19 +00:00
Daniel J Walsh	3125beb1b1	Allow containers to name_bind to rawip_sockets.	2019-08-09 15:10:42 -04:00
Daniel J Walsh	7390ff8b05	Allow containers to use fusefs_t entrypoint Dontaudit attempts to setattr on devicenodes.	2019-08-08 17:22:59 -04:00
Fedora Release Engineering	1164ea7a24	- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>	2019-07-24 20:57:33 +00:00
Lokesh Mandvekar (Bot)	20e3511f2b	container-selinux-2:2.111.0-2.1.dev.git9a75deb - bump to 2.111.0 - autobuilt 9a75deb Signed-off-by: Lokesh Mandvekar (Bot) <lsm5+bot@fedoraproject.org>	2019-07-18 03:24:01 +00:00
Lokesh Mandvekar	9db5509450	container-selinux-2.110.0-1.1.dev.git544d71f - bump to v2.110.0 - hook up to autobuild Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>	2019-07-11 00:16:25 +05:30
Daniel J Walsh	ff9d4132e3	Allow containers to accept connections on all socket types Allow containers to connect to gssproxy stream sockets if added to container	2019-07-08 13:40:06 -04:00
Daniel J Walsh	e642c7930b	Allow containers to manipulate Onload files.	2019-06-14 09:49:20 -04:00
Daniel J Walsh	535b77ce65	Allow all unconfined domains to manage unlabeled keyrings Add labeling for kubernetes pods	2019-06-11 15:04:40 -04:00
Daniel J Walsh	5a72894caf	Set proper labeling for container volumes in SilverBlue	2019-06-03 06:51:52 +02:00
Daniel J Walsh	c4b1cdf7e5	Set proper labeling for container volumes	2019-05-17 16:35:24 -04:00
Daniel J Walsh	bd1fb39d87	Set proper labeling for container volumes	2019-05-17 16:34:53 -04:00
Daniel J Walsh	0ced217ba7	Allow all container domains to be entered from container_file_t	2019-05-12 06:50:58 -04:00
Daniel J Walsh	5c4855c313	Allow containers to read rpm cache and rpm databse	2019-05-03 15:32:13 -04:00
Daniel J Walsh	3cdf9de46f	Allow containers running as spc_t to create unlabeled_t kernel keyrings	2019-04-23 11:44:55 -04:00
Daniel J Walsh	bd9b0f5853	Allow containers running as spc_t to create unlabeled_t kernel keyrings	2019-04-23 11:44:39 -04:00
Daniel J Walsh	86a68856db	Merge branch 'master' of ssh://pkgs.fedoraproject.org/rpms/container-selinux	2019-04-23 11:44:12 -04:00
Daniel J Walsh	920a724abf	Fix labeling on /var/lib/containers/storage/overlay-layers,images to be sharable. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2019-04-23 11:43:50 -04:00
Daniel J Walsh	e49a8125a0	Fix labeling on /var/lib/containers/storage/overlay-layers,images to be sharable.	2019-04-22 16:51:58 -04:00
Daniel J Walsh	dfec1aa725	Fix labeling on /var/lib/containers/storage/overlay-layers,images to be sharable.	2019-04-22 16:51:35 -04:00
Daniel J Walsh	e2b52d2d49	Allow iptables to append to container_file_t	2019-04-15 09:14:34 -04:00
Daniel J Walsh	7bfa450762	Allow containers to read/write sysctl_kernel_ns_last_pid_t Allow containers to manage fusefs sockets and named pipes	2019-04-12 12:48:55 -04:00
Daniel J Walsh	9a2cedceeb	Allow containers to create fusefs sockets and named pipes	2019-04-01 17:47:51 -04:00
Daniel J Walsh	83c147430e	Allow containers to create fusefs sockets and named pipes	2019-04-01 17:46:19 -04:00
Daniel J Walsh	e0dcd250c0	Allow init_t to manage container content Allow container domains to create fifo_files on fusefs file systems Add boolean to allow containers to use ceph file systems	2019-03-28 08:00:26 -04:00
Daniel J Walsh	81c6f71fc4	Allow container runtimes to create unlabeled keyrings	2019-03-26 08:15:18 -04:00
Daniel J Walsh	4b3e8ccdf7	Allow containers to mount and umount fuse file systems. This will allow us to use buidlah within a user namespace separated container.	2019-03-20 15:41:00 -04:00
Daniel J Walsh	728707509f	Merge branch 'master' of ssh://pkgs.fedoraproject.org/rpms/container-selinux	2019-03-09 08:40:53 -05:00
Daniel J Walsh	c650254748	Allow all container domains to have container file types entrypoint Add new release to fix issues with udica Allow container_runtime_t to dyntransition to container domains	2019-03-09 08:38:21 -05:00
Lokesh Mandvekar (Bot)	8285069315	container-selinux-2:2.89-5.git2521d0d - bump to 2.89 - autobuilt 2521d0d Signed-off-by: Lokesh Mandvekar (Bot) <lsm5+bot@fedoraproject.org>	2019-03-09 05:21:39 +00:00
Lokesh Mandvekar (Bot)	8200ea022e	container-selinux-2:2.88-4.git5c98b56 - bump to 2.88 - autobuilt 5c98b56 Signed-off-by: Lokesh Mandvekar (Bot) <lsm5+bot@fedoraproject.org>	2019-03-07 05:22:18 +00:00

1 2 3 4

183 Commits