passt

mirror of https://passt.top/passt synced 2025-01-12 23:51:56 +00:00

History

Stefano Brivio 08344dacb1 selinux: Allow pasta to remount procfs

Partially equivalent to commit abf5ef6c22d2 ("apparmor: Allow pasta
to remount /proc, access entries under its own copy"): we should
allow pasta to remount /proc. It still works otherwise, but further
UID remapping in nested user namespaces (e.g. pasta in pasta) won't.

Reported-by: Laurent Jacquot <jk@lutty.net>
Link: https://bugs.passt.top/show_bug.cgi?id=79#c3
Signed-off-by: Stefano Brivio <sbrivio@redhat.com>

2024-02-16 09:43:12 +01:00

passt.fc

selinux: Use explicit paths for binaries in file context

2023-08-18 13:18:45 +02:00

passt.if

passt: Relicense to GPL 2.0, or any later version

2023-04-06 18:00:33 +02:00

passt.te

Revert "selinux: Drop user_namespace class rules for Fedora 37"

2023-11-07 14:58:02 +01:00

pasta.fc

selinux: Use explicit paths for binaries in file context

2023-08-18 13:18:45 +02:00

pasta.te

selinux: Allow pasta to remount procfs

2024-02-16 09:43:12 +01:00