mirror of
https://github.com/containers/udica
synced 2024-06-05 03:46:14 +02:00
a326a431bc
Tests for udica needs to be re-generated because of different JSON structure generated by podman version 2.0.2
9 lines
370 B
Plaintext
9 lines
370 B
Plaintext
(block my_container
|
|
(blockinherit container)
|
|
(allow process process ( capability ( audit_write chown dac_override fowner fsetid kill mknod net_bind_service net_raw setfcap setgid setpcap setuid sys_chroot )))
|
|
|
|
(allow process tmp_t ( file ( write )))
|
|
(allow process tmp_t ( dir ( add_name )))
|
|
(allow process etc_t ( file ( open getattr read )))
|
|
)
|