Issues
- 1
Supprot for RHEL 9
#322 opened by computinglife - 13
- 2
container_user_u issues related to `podmansh`
#293 opened by bachradsusi - 11
- 12
- 1
/etc/kubernetes filetrans?
#283 opened by maage - 20
CRI-O CI broken due to SELinux AVC Denials with latest runc (main branch) build
#274 opened by sohankunkerkar - 2
Add support for `rpm --verify`
#270 opened by cjeanner - 5
- 3
- 8
allow user_u to work with containers
#227 opened by millerthegorilla - 1
CI: check for long-running relabels
#234 opened by lsm5 - 3
`avc: denied { shutdown }` when using socket activation with rootless podman quadlet
#263 opened by gfieni - 4
Issue on RHEL with iscsiadm on v2.205
#252 opened by mynktl - 11
user_namespace { create } rule not working
#257 opened by penn5 - 3
- 1
Packit: Use packit for bumping official fedora package
#231 opened by lsm5 - 2
gating tests?
#211 opened by lsm5 - 6
- 3
Branch protection for main branch
#207 opened by lsm5 - 3
- 8
SELinux blocks ansible from doing DNF updates with the nsenter connection plugin
#205 opened by rptaylor - 4
v2.200.0 doesn't build on f37
#203 opened by lsm5 - 10
- 18
- 8
dbus-broker and pipefs
#197 opened by leseb - 12
- 0
BuildKit: denied { write } (`scontext=system_u:system_r:container_t:s0:c23,c164 tcontext=unconfined_u:object_r:container_ro_file_t:s0`)
#190 opened by AkihiroSuda - 1
- 1
make error
#188 opened by ningmingxiao - 5
Rootful BuildKit + SELinux: Dockerfile `RUN` command throws error code 139
#187 opened by AkihiroSuda - 8
Include this module in main policy tree?
#186 opened by jsegitz - 1
- 15
regression: f37 rawhide: AVC on podman run
#182 opened by edsantiago - 4
Can't run cronjob inside container
#180 opened by cs-niraj-nandane - 1
systemd-socket-activate problem. audit2allow shows "allow container_t unconfined_t:tcp_socket { setopt shutdown };"
#179 opened by eriksjolund - 9
selinux prevents container access to USB serial devices inside (rootless) containers
#167 opened by mattdm - 1
Socket activation AF_VSOCK (SOCK_STREAM): Client on the host, server in a VM
#176 opened by eriksjolund - 2
Socket activation AF_VSOCK (SOCK_STREAM): Client on the host, server on the host
#175 opened by eriksjolund - 1
SELinux prevents passing TCP and UDP sockets via systemd-socket-activate/podman (socket activation)
#174 opened by eriksjolund - 17
Error: fork/exec /usr/bin/conmon: permission denied
#170 opened by lsm5 - 4
- 2
2.174.0 : fork/exec /usr/bin/conmon: EPERM
#168 opened by edsantiago - 4
Fail early when "socket activation" provides a Unix socket and SELINUX is active and there is no --security-opt label=disable
#171 opened by eriksjolund - 2
podman AVC'ing on rawhide
#169 opened by edsantiago - 1
selinux can't work normally
#164 opened by cathaysia - 2
Cannot load kernel module from container: lockdown_reason="unsigned module loading"
#161 opened by OleksandrShtepa - 1
- 5
- 6
container-selinux fails to properly upgrade on a system with k3s-selinux installed
#155 opened by dweomer