From 886f9a51c0523a84f9310be0453caca0b14f5d025baf27b717c16e87501b5bed Mon Sep 17 00:00:00 2001
From: Johannes Segitz <jsegitz@suse.com>
Date: Tue, 23 May 2023 08:12:11 +0000
Subject: [PATCH] Accepting request 1088558 from
 home:jsegitz:branches:security:SELinux

- Update to version 2.215.0:
  * Add some MLS rules to policy
  * Allow container runtime to dyntransition to spc_t
  * Tighten controls on confined users
  * Add labels for /var/lib/shared
  * Cleanup entrypoint definitions
  * Allow container_device_plugin_t access to debugfs
  * Allow containers which use devices to map them

OBS-URL: https://build.opensuse.org/request/show/1088558
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/container-selinux?expand=0&rev=29
---
 container-selinux.changes | 12 ++++++++++++
 container-selinux.spec    |  2 +-
 v2.211.0.tar.gz           |  3 ---
 v2.215.0.tar.gz           |  3 +++
 4 files changed, 16 insertions(+), 4 deletions(-)
 delete mode 100644 v2.211.0.tar.gz
 create mode 100644 v2.215.0.tar.gz

diff --git a/container-selinux.changes b/container-selinux.changes
index bcf5480..b85d591 100644
--- a/container-selinux.changes
+++ b/container-selinux.changes
@@ -1,3 +1,15 @@
+-------------------------------------------------------------------
+Tue May 23 07:32:16 UTC 2023 - Johannes Segitz <jsegitz@suse.com>
+
+- Update to version 2.215.0:
+  * Add some MLS rules to policy
+  * Allow container runtime to dyntransition to spc_t
+  * Tighten controls on confined users
+  * Add labels for /var/lib/shared
+  * Cleanup entrypoint definitions
+  * Allow container_device_plugin_t access to debugfs
+  * Allow containers which use devices to map them
+
 -------------------------------------------------------------------
 Mon Apr 24 07:24:46 UTC 2023 - Johannes Segitz <jsegitz@suse.com>
 
diff --git a/container-selinux.spec b/container-selinux.spec
index 373eb93..a173e4f 100644
--- a/container-selinux.spec
+++ b/container-selinux.spec
@@ -26,7 +26,7 @@
 # Version of SELinux we were using
 %define selinux_policyver %(rpm -q selinux-policy --qf '%%{version}')
 Name:           container-selinux
-Version:        2.211.0
+Version:        2.215.0
 Release:        0
 Summary:        SELinux policies for container runtimes
 License:        GPL-2.0-only
diff --git a/v2.211.0.tar.gz b/v2.211.0.tar.gz
deleted file mode 100644
index 9dc404d..0000000
--- a/v2.211.0.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:c4eeef9975526f937fafed834c3dcf99b821e6be10d3f5373038aff2f41028d1
-size 29626
diff --git a/v2.215.0.tar.gz b/v2.215.0.tar.gz
new file mode 100644
index 0000000..311533a
--- /dev/null
+++ b/v2.215.0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:7236e149d4238b996ee94127ecc15ec3c1bceb5d4bc58e397a6e404b42133906
+size 31027