Skip to content

Commit

Permalink
Update SELinux policy to support linkerd-cni
Browse files Browse the repository at this point in the history
  • Loading branch information
@lachlan-smith
lachlan-smith committed Jan 7, 2024
1 parent 6881ceb commit 1ad4e95
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion locals.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -776,7 +776,8 @@ EOF
allow container_t cert_t:lnk_file read;
allow container_t cert_t:file { read open };
allow container_t container_var_lib_t:file { create open read write rename lock };
allow container_t etc_t:dir { add_name remove_name write create setattr };
allow container_t etc_t:dir { add_name remove_name write create setattr watch };
allow container_t etc_t:file { create setattr unlink write };
allow container_t etc_t:sock_file { create unlink };
allow container_t usr_t:dir { add_name create getattr link lock read rename remove_name reparent rmdir setattr unlink search write };
allow container_t usr_t:file { append create execute getattr link lock read rename setattr unlink write };
Expand Down

0 comments on commit 1ad4e95

Please sign in to comment.