commit container-selinux for openSUSE:Factory

Source-Sync Tue, 03 Jun 2025 11:52:05 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package container-selinux for 
openSUSE:Factory checked in at 2025-06-03 17:50:19
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/container-selinux (Old)
 and      /work/SRC/openSUSE:Factory/.container-selinux.new.16005 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "container-selinux"

Tue Jun  3 17:50:19 2025 rev:27 rq:1281761 version:2.238.0

Changes:
--------
--- /work/SRC/openSUSE:Factory/container-selinux/container-selinux.changes      
2025-04-30 19:02:51.474513139 +0200
+++ 
/work/SRC/openSUSE:Factory/.container-selinux.new.16005/container-selinux.changes
   2025-06-03 17:50:28.853994254 +0200
@@ -1,0 +2,6 @@
+Mon Jun 02 07:13:46 UTC 2025 - Johannes Segitz <jseg...@suse.com>
+
+- Update to version 2.238.0:
+  * label /run/sysctl.d correctly on creation
+
+-------------------------------------------------------------------

Old:
----
  container-selinux-2.237.0.tar.xz

New:
----
  container-selinux-2.238.0.tar.xz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ container-selinux.spec ++++++
--- /var/tmp/diff_new_pack.3qckLc/_old  2025-06-03 17:50:30.962081728 +0200
+++ /var/tmp/diff_new_pack.3qckLc/_new  2025-06-03 17:50:30.978082393 +0200
@@ -26,7 +26,7 @@
 # Version of SELinux we were using
 %define selinux_policyver %(rpm -q selinux-policy --qf '%%{version}')
 Name:           container-selinux
-Version:        2.237.0
+Version:        2.238.0
 Release:        0
 Summary:        SELinux policies for container runtimes
 License:        GPL-2.0-only

++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.3qckLc/_old  2025-06-03 17:50:31.414100485 +0200
+++ /var/tmp/diff_new_pack.3qckLc/_new  2025-06-03 17:50:31.458102311 +0200
@@ -1,6 +1,6 @@
 <servicedata>
 <service name="tar_scm">
                 <param 
name="url">https://github.com/containers/container-selinux.git</param>
-              <param 
name="changesrevision">d7e420a1166c8bd237a7877f76fa9a0e484a7c68</param></service></servicedata>
+              <param 
name="changesrevision">36e8f213b7ac8a1843e5e37b37eb8ef7bdc2af9c</param></service></servicedata>
 (No newline at EOF)
 

++++++ container-selinux-2.237.0.tar.xz -> container-selinux-2.238.0.tar.xz 
++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/container-selinux-2.237.0/container.te 
new/container-selinux-2.238.0/container.te
--- old/container-selinux-2.237.0/container.te  2025-04-28 16:29:12.000000000 
+0200
+++ new/container-selinux-2.238.0/container.te  2025-05-30 18:00:49.000000000 
+0200
@@ -1,7 +1,8 @@
-policy_module(container, 2.237.0)
+policy_module(container, 2.238.0)
 
 gen_require(`
        class passwd rootok;
+       type system_conf_t;
 ')
 
 ########################################
@@ -1626,3 +1627,7 @@
        allow container_domain self:process ptrace;
        allow spc_t self:process ptrace;
 ')
+
+# netavark needs to write to /run/sysctl.d and needs the right label for 
systemd to read it.
+# https://issues.redhat.com/browse/RHEL-91380
+files_pid_filetrans(container_runtime_t, system_conf_t, dir, "sysctl.d")

commit container-selinux for openSUSE:Factory

Reply via email to