diff options
| author | Stefano Brivio <sbrivio@redhat.com> | 2022-03-28 11:08:39 +0200 |
|---|---|---|
| committer | Stefano Brivio <sbrivio@redhat.com> | 2022-03-29 15:35:38 +0200 |
| commit | 1f4b7fa0d75d25f518047e77c88718ec1cc3f5bb (patch) | |
| tree | 593b882b328424b079568bf8945cbdfe225c21e7 /contrib/selinux/pasta.fc | |
| parent | e9d573b14f28bde604718513ed3d499f621090d8 (diff) | |
| download | passt-1f4b7fa0d75d25f518047e77c88718ec1cc3f5bb.tar passt-1f4b7fa0d75d25f518047e77c88718ec1cc3f5bb.tar.gz passt-1f4b7fa0d75d25f518047e77c88718ec1cc3f5bb.tar.bz2 passt-1f4b7fa0d75d25f518047e77c88718ec1cc3f5bb.tar.lz passt-1f4b7fa0d75d25f518047e77c88718ec1cc3f5bb.tar.xz passt-1f4b7fa0d75d25f518047e77c88718ec1cc3f5bb.tar.zst passt-1f4b7fa0d75d25f518047e77c88718ec1cc3f5bb.zip | |
passt, pasta: Add examples of SELinux policy modules
These should cover any reasonably common use case in distributions.
Signed-off-by: Stefano Brivio <sbrivio@redhat.com>
Diffstat (limited to 'contrib/selinux/pasta.fc')
| -rw-r--r-- | contrib/selinux/pasta.fc | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/contrib/selinux/pasta.fc b/contrib/selinux/pasta.fc new file mode 100644 index 0000000..f8fa0fa --- /dev/null +++ b/contrib/selinux/pasta.fc @@ -0,0 +1,13 @@ +# SPDX-License-Identifier: AGPL-3.0-or-later +# +# PASTA - Pack A Subtle Tap Abstraction +# for network namespace/tap device mode +# +# contrib/selinux/pasta.fc - SELinux profile example: File Context for pasta +# +# Copyright (c) 2022 Red Hat GmbH +# Author: Stefano Brivio <sbrivio@redhat.com> + +/usr/bin/pasta(\.*)? system_u:object_r:pasta_exec_t:s0 +/tmp/pasta\.pcap system_u:object_r:pasta_log_t:s0 +/var/run/pasta\.pid system_u:object_r:pasta_pid_t:s0 |