From 5b345f822cfc5f76335ab6dbe2356918f1a036ba5a2ed6396412c5eadf69cac3 Mon Sep 17 00:00:00 2001
From: Johannes Segitz <jsegitz@suse.com>
Date: Thu, 12 Jan 2023 13:57:34 +0000
Subject: [PATCH] Accepting request 1058003 from
 home:jsegitz:branches:security:SELinux

- Update fix_container.patch to allow privileged containers to use
  localectl (bsc#1207077)

OBS-URL: https://build.opensuse.org/request/show/1058003
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=169
---
 fix_container.patch    | 3 ++-
 selinux-policy.changes | 6 ++++++
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/fix_container.patch b/fix_container.patch
index d216c2b..f54d046 100644
--- a/fix_container.patch
+++ b/fix_container.patch
@@ -2,11 +2,12 @@ Index: fedora-policy-20221019/policy/modules/services/container.te
 ===================================================================
 --- fedora-policy-20221019.orig/policy/modules/services/container.te
 +++ fedora-policy-20221019/policy/modules/services/container.te
-@@ -681,6 +681,7 @@ init_dbus_chat(spc_t)
+@@ -681,6 +681,8 @@ init_dbus_chat(spc_t)
  optional_policy(`
  	systemd_dbus_chat_machined(spc_t)
  	systemd_dbus_chat_logind(spc_t)
 +	systemd_dbus_chat_timedated(spc_t)
++	systemd_dbus_chat_localed(spc_t)
  ')
  
  optional_policy(`
diff --git a/selinux-policy.changes b/selinux-policy.changes
index 1eef46d..88845c2 100644
--- a/selinux-policy.changes
+++ b/selinux-policy.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Thu Jan 12 13:01:47 UTC 2023 - Johannes Segitz <jsegitz@suse.com>
+
+- Update fix_container.patch to allow privileged containers to use
+  localectl (bsc#1207077)
+
 -------------------------------------------------------------------
 Wed Jan 11 14:17:02 UTC 2023 - Johannes Segitz <jsegitz@suse.com>