[Bug 1200080] New: docker.pp policy module for docker should be a part of docker package

https://bugzilla.redhat.com/show_bug.cgi?id=1200080 Bug ID: 1200080 Summary: docker.pp policy module for docker should be a part of docker package Product: Fedora Version: rawhide Component: selinux-policy Assignee: mgrepl(a)redhat.com Reporter: lvrabec(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: adimania(a)gmail.com, admiller(a)redhat.com, dominick.grift(a)gmail.com, dwalsh(a)redhat.com, extras-qa(a)fedoraproject.org, golang(a)lists.fedoraproject.org, hushan.jia(a)gmail.com, jchaloup(a)redhat.com, jperrin(a)centos.org, lsm5(a)redhat.com, lvrabec(a)redhat.com, mattdm(a)redhat.com, mgoldman(a)redhat.com, mgrepl(a)redhat.com, miminar(a)redhat.com, plautrba(a)redhat.com, s(a)shk.io, thrcka(a)redhat.com, vbatts(a)redhat.com Depends On: 1200079 +++ This bug was initially created as a clone of Bug #1200079 +++ Description of problem: Currently, we ship docker.pp policy module with SELinux policy for docker. We would like to move this policy out of the base policy and docker.pp would be shipped by docker-selinux.rpm. How to do it: 1. We need to ship a new version of selinux-policy pgks without shipping of docker.pp and docker policy files. The docker.pp module will stay in memory but this is not any issue. 2. docker-selinux needs to package source files from: https://github.com/fedora-selinux/selinux-policy/blob/rawhide-contrib/doc... https://github.com/fedora-selinux/selinux-policy/blob/rawhide-contrib/doc... https://github.com/fedora-selinux/selinux-policy/blob/rawhide-contrib/doc... and docker.pp. We won't ship these source policy files for docker.pp 3. docker-selinux needs to have a conflict with the policy without docker.pp. Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1200079 [Bug 1200079] docker.pp policy module for docker should be a part of docker package -- You are receiving this mail because: You are on the CC list for the bug.