selinux-refpolicy

nnd/selinux-refpolicy

Fork 0

Commit Graph

Author	SHA1	Message	Date
Kenton Groombridge	70836481d0	docker: make rootlesskit optional Avoid a potential build error and circular dependency by making rootlesskit optional. Note that rootlesskit is still required in order for rootless docker to function. Signed-off-by: Kenton Groombridge <me@concord.sh>	2022-01-24 17:39:10 -05:00
Kenton Groombridge	5105a4c344	container, docker, rootlesskit: add support for rootless docker Rootless docker runs as root in a user namespace. Because of this, rootless docker containers will run as spc_user_t as docker cannot be SELinux-aware in its own container. Signed-off-by: Kenton Groombridge <me@concord.sh>	2022-01-24 11:07:45 -05:00
Kenton Groombridge	29ac8a3fcf	container, docker: add initial support for docker Signed-off-by: Kenton Groombridge <me@concord.sh>	2022-01-24 11:07:45 -05:00

Author

SHA1

Message

Date

Kenton Groombridge

70836481d0

docker: make rootlesskit optional

Avoid a potential build error and circular dependency by making
rootlesskit optional. Note that rootlesskit is still required in order
for rootless docker to function.

Signed-off-by: Kenton Groombridge <me@concord.sh>

2022-01-24 17:39:10 -05:00

Kenton Groombridge

5105a4c344

container, docker, rootlesskit: add support for rootless docker

Rootless docker runs as root in a user namespace. Because of this,
rootless docker containers will run as spc_user_t as docker cannot be
SELinux-aware in its own container.

Signed-off-by: Kenton Groombridge <me@concord.sh>

2022-01-24 11:07:45 -05:00

Kenton Groombridge

29ac8a3fcf

container, docker: add initial support for docker

Signed-off-by: Kenton Groombridge <me@concord.sh>

2022-01-24 11:07:45 -05:00

3 Commits