Accepting request 1088558 from home:jsegitz:branches:security:SELinux

- Update to version 2.215.0: * Add some MLS rules to policy * Allow container runtime to dyntransition to spc_t * Tighten controls on confined users * Add labels for /var/lib/shared * Cleanup entrypoint definitions * Allow container_device_plugin_t access to debugfs * Allow containers which use devices to map them OBS-URL: https://build.opensuse.org/request/show/1088558 OBS-URL: https://build.opensuse.org/package/show/security:SELinux/container-selinux?expand=0&rev=29
2023-05-23 08:12:11 +00:00 · 2023-05-23 08:12:11 +00:00 · 886f9a51c0
commit 886f9a51c0
parent 1793c5b289
4 changed files with 16 additions and 4 deletions
--- a/container-selinux.changes
+++ b/container-selinux.changes
@ -1,3 +1,15 @@
+-------------------------------------------------------------------
+Tue May 23 07:32:16 UTC 2023 - Johannes Segitz <jsegitz@suse.com>
+
+- Update to version 2.215.0:
+  * Add some MLS rules to policy
+  * Allow container runtime to dyntransition to spc_t
+  * Tighten controls on confined users
+  * Add labels for /var/lib/shared
+  * Cleanup entrypoint definitions
+  * Allow container_device_plugin_t access to debugfs
+  * Allow containers which use devices to map them
+
 -------------------------------------------------------------------
 Mon Apr 24 07:24:46 UTC 2023 - Johannes Segitz <jsegitz@suse.com>

--- a/container-selinux.spec
+++ b/container-selinux.spec
@ -26,7 +26,7 @@
 # Version of SELinux we were using
 %define selinux_policyver %(rpm -q selinux-policy --qf '%%{version}')
 Name:           container-selinux
-Version:        2.211.0
+Version:        2.215.0
 Release:        0
 Summary:        SELinux policies for container runtimes
 License:        GPL-2.0-only
--- a/v2.211.0.tar.gz
+++ b/v2.211.0.tar.gz
--- a/v2.215.0.tar.gz
+++ b/v2.215.0.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:7236e149d4238b996ee94127ecc15ec3c1bceb5d4bc58e397a6e404b42133906
+size 31027