From 1017fd45e5ed22a2e5101f1c62fa47d506ef8b47 Mon Sep 17 00:00:00 2001
From: Krzesimir Nowak <knowak@microsoft.com>
Date: Wed, 21 Feb 2024 15:59:17 +0100
Subject: [PATCH] overlay profiles: Disable python in SELinux tools

We never needed the python tools in Flatcar.
---
 .../coreos-overlay/profiles/coreos/base/package.use         | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.use b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.use
index 24667fbc0d..dfd11a9693 100644
--- a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.use
+++ b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.use
@@ -150,3 +150,9 @@ sys-apps/findutils selinux
 app-containers/containerd btrfs device-mapper
 app-containers/docker btrfs device-mapper overlay seccomp
 app-containers/docker-cli hardened
+
+# Drop python dependencies from some SELinux packages.
+#
+# The vanilla USE flag must be enabled if python is disabled.
+sys-apps/policycoreutils vanilla -python
+sys-libs/libsemanage -python