rpms/container-selinux
6
0
Fork 0
Code Issues Pull Requests Releases Activity
SELinux policies for container runtimes
20 Commits 27 Branches 132 Tags 606 KiB
RPM Spec 100%
ed21ef74dc
Go to file
Dan Walsh ed21ef74dc Add labels for crio rename 
Break container_t rules out to use a separate container_domain
Allow containers to be able to set namespaced SYCTLS
Allow sandbox containers manage fuse files.
Fixes to make container_runtimes work on MLS machines
Bump version to allow handling of container_file_t filesystems
Allow containers to mount, remount and umount container_file_t file systems
Fixes to handle cap_userns
Give container_t access to XFRM sockets
Allow spc_t to dbus chat with init system
Allow spc_t to dbus chat with init system
Add rules to allow container runtimes to run with unconfined disabled
Add rules to support cgroup file systems mounted into container.
Fix typebounds entrypoint problems
Fix typebounds problems
Add typebounds statement for container_t from container_runtime_t
We should only label runc not runc*
2017-05-19 07:19:44 -04:00
.gitignore Add rules to allow container runtimes to run with unconfined disabled 2017-02-28 13:47:46 -05:00
container-selinux.spec Add labels for crio rename 2017-05-19 07:19:44 -04:00
sources Add rules to allow container runtimes to run with unconfined disabled 2017-02-28 13:47:46 -05:00