container: allow containers to execute tmpfs files
Signed-off-by: Kenton Groombridge <concord@gentoo.org>
This commit is contained in:
parent
4e97f87cee
commit
50a8cddd10
|
@ -317,6 +317,7 @@ allow container_domain container_ro_file_t:sock_file read_sock_file_perms;
|
||||||
fs_tmpfs_filetrans(container_domain, container_tmpfs_t, { dir file fifo_file lnk_file sock_file })
|
fs_tmpfs_filetrans(container_domain, container_tmpfs_t, { dir file fifo_file lnk_file sock_file })
|
||||||
manage_dirs_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
manage_dirs_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
||||||
mmap_manage_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
mmap_manage_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
||||||
|
mmap_exec_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
||||||
manage_fifo_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
manage_fifo_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
||||||
manage_lnk_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
manage_lnk_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
||||||
manage_sock_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
manage_sock_files_pattern(container_domain, container_tmpfs_t, container_tmpfs_t)
|
||||||
|
|
Loading…
Reference in New Issue