nnd/selinux-refpolicy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #620 from 0xC0ncord/chromium-userns

Browse Source 
chromium: allow chromium-naclhelper to create user namespaces
This commit is contained in:
Chris PeBenito 2023-06-19 15:22:07 -04:00 committed by GitHub
commit d6b44b9c4f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
policy/modules/apps/chromium.te
View File

@ -379,6 +379,7 @@ allow chromium_sandbox_t chromium_naclhelper_t:process share;
# Chromium nacl helper local policy
#
allow chromium_naclhelper_t self:user_namespace create;
allow chromium_naclhelper_t chromium_t:unix_stream_socket { getattr read write };
allow chromium_naclhelper_t chromium_sandbox_t:unix_stream_socket { getattr read write };