nnd/selinux-refpolicy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

container: correct admin_pattern() usage

Browse Source 
Signed-off-by: Kenton Groombridge <me@concord.sh>
This commit is contained in:
Kenton Groombridge 2022-11-04 13:30:46 -04:00
parent c7a0cc0cd2
commit fb835d04d3
1 changed files with 3 additions and 3 deletions

6
policy/modules/services/container.if
View File

@ -1600,7 +1600,7 @@ interface(`container_admin_all_files',`
type container_file_t; type container_file_t;
') ')
admin_pattern($1, container_file_t, container_file_t) admin_pattern($1, container_file_t)
allow $1 container_file_t:chr_file manage_chr_file_perms; allow $1 container_file_t:chr_file manage_chr_file_perms;
allow $1 container_file_t:blk_file manage_blk_file_perms; allow $1 container_file_t:blk_file manage_blk_file_perms;
') ')
@ -1620,7 +1620,7 @@ interface(`container_admin_all_ro_files',`
type container_ro_file_t; type container_ro_file_t;
') ')
admin_pattern($1, container_ro_file_t, container_ro_file_t) admin_pattern($1, container_ro_file_t)
allow $1 container_ro_file_t:chr_file manage_chr_file_perms; allow $1 container_ro_file_t:chr_file manage_chr_file_perms;
allow $1 container_ro_file_t:blk_file manage_blk_file_perms; allow $1 container_ro_file_t:blk_file manage_blk_file_perms;
') ')
@ -1642,7 +1642,7 @@ interface(`container_admin_all_user_runtime_content',`
type container_user_runtime_t; type container_user_runtime_t;
') ')
admin_pattern($1, container_user_runtime_t, container_user_runtime_t) admin_pattern($1, container_user_runtime_t)
') ')
######################################## ########################################