rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity

Additional fixes for docker.te

Browse Source
This commit is contained in:
Miroslav Grepl 2013-12-16 12:38:58 +01:00
parent 1fe4113ea7
commit fa3915aa88
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
policy-rawhide-contrib.patch
View File

@ -22509,7 +22509,7 @@ index 0000000..d856375
+') +')
diff --git a/docker.te b/docker.te diff --git a/docker.te b/docker.te
new file mode 100644 new file mode 100644
index 0000000..c5b0dcd index 0000000..f156949
--- /dev/null --- /dev/null
+++ b/docker.te +++ b/docker.te
@@ -0,0 +1,145 @@ @@ -0,0 +1,145 @@
@ -22610,8 +22610,8 @@ index 0000000..c5b0dcd
+ +
+allow docker_t self:capability { sys_admin sys_boot dac_override setpcap sys_ptrace }; +allow docker_t self:capability { sys_admin sys_boot dac_override setpcap sys_ptrace };
+allow docker_t self:process { setpgid setsched signal_perms }; +allow docker_t self:process { setpgid setsched signal_perms };
+allow docker_t self:netlink_route_socket nlmsg_write; +allow docker_t self:netlink_route_socket rw_netlink_socket_perms;;
+allow docker_t self:netlink_audit_socket create_netlink_perms; +allow docker_t self:netlink_audit_socket create_netlink_socket_perms;
+allow docker_t self:unix_dgram_socket create_socket_perms; +allow docker_t self:unix_dgram_socket create_socket_perms;
+allow docker_t self:unix_stream_socket { create_stream_socket_perms connectto }; +allow docker_t self:unix_stream_socket { create_stream_socket_perms connectto };
+ +