From e54beeb43bd29b96084300893845853de8b9215e Mon Sep 17 00:00:00 2001
From: Arano-kai <captcha.is(dot)evil(meov)gmail.com>
Date: Wed, 29 Apr 2020 23:21:25 +0300
Subject: [PATCH] FIX: Interference with journald and logind

- Fixes: #155
- Containerized `systemd-journald` unconditionally changed `/dev/log`
  SELinux fcontext that cause AVC denies for many services
  (docker, setroubleshootd, etc) upon log writes.
---
 CentOS/Dockerfile | 3 +++
 Fedora/Dockerfile | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/CentOS/Dockerfile b/CentOS/Dockerfile
index 5b7b83a..0b51402 100644
--- a/CentOS/Dockerfile
+++ b/CentOS/Dockerfile
@@ -84,6 +84,9 @@ RUN true \
 RUN true \
     && systemctl mask getty.target \
     && systemctl mask systemd-journal-flush.service \
+    && systemctl mask systemd-journald.service \
+    && systemctl mask systemd-journald.socket \
+    && systemctl mask systemd-logind.service \
     && systemctl mask rpcbind.socket \
     && true
 
diff --git a/Fedora/Dockerfile b/Fedora/Dockerfile
index aee0087..83714fa 100644
--- a/Fedora/Dockerfile
+++ b/Fedora/Dockerfile
@@ -69,6 +69,9 @@ RUN dnf -y update && \
 RUN true \
     && systemctl mask getty.target \
     && systemctl mask systemd-journal-flush.service \
+    && systemctl mask systemd-journald.service \
+    && systemctl mask systemd-journald.socket \
+    && systemctl mask systemd-logind.service \
     && systemctl mask rpcbind.socket \
     && true