containers
/
podman
mirror of https://github.com/containers/podman.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
podman/pkg/machine
History
Jason T. Greene 0b36126e92 Fix relabeling failures with Z/z volumes on Mac 
Non-Linux systems, such as BSD kernels, constrain xatter updates
according to file permissions. This is in contrast to Linux selinux
attr writes, which are governed by an selinux policy. By dafault this
policy apllows users to relabel files owned by themselves even if file
perms would otherwise disallow write.

This results in robust container relabeling results on Linux, and
fragile results everywhere else. Therefore, change the mac policy to
force the nfs_t context on all files, and ignore all relabel
events.

As a side-effect, this will disallow any ability to store custom
selinux constants on files. However, this is of limited use in
a machine context, since files in these volumes are externally
managed on systems which do not support SELinux.

Signed-off-by: Jason T. Greene <jason.greene@redhat.com>
 		2024-04-08 10:06:44 -05:00
..
applehv Fix relabeling failures with Z/z volumes on Mac 2024-04-08 10:06:44 -05:00
compression Machine decompress.go refactoring follow-up 2024-03-13 00:58:50 +01:00
connection Resurrect auto-port reassignment, but for all providers 2024-03-04 23:55:36 -06:00
define Don't read full VM File before decompressing 2024-03-07 10:11:11 +01:00
e2e Fix relabeling failures with Z/z volumes on Mac 2024-04-08 10:06:44 -05:00
env Change API socket to be machine name isolated 2024-03-13 13:28:14 -05:00
hyperv Merge pull request #22140 from baude/hypervrmf 2024-03-26 14:03:24 +00:00
ignition Resurrect auto-port reassignment, but for all providers 2024-03-04 23:55:36 -06:00
lock pkg/machine: make checkExclusiveActiveVM race free 2024-03-14 11:13:08 +01:00
ocipull do not require policy.json 2024-03-13 09:07:51 -05:00
os Refactor env dir and port functions into new leaf pkgs 2024-03-04 23:54:31 -06:00
ports Refactor env dir and port functions into new leaf pkgs 2024-03-04 23:54:31 -06:00
provider hyperv: error if not admin 2024-03-25 10:47:57 -05:00
proxyenv machine: implement http proxy logic for all providers 2024-02-22 11:23:45 +01:00
qemu Use built-in ssh impl for all non-pty operations 2024-03-24 21:25:22 -05:00
shim pkg/machine: make checkExclusiveActiveVM race free 2024-03-14 11:13:08 +01:00
sockets Extract waitForGvProxy into shared utility function 2024-02-19 18:00:00 +02:00
stdpull wsl - wip 2024-02-11 12:58:11 -06:00
vmconfigs Change API socket to be machine name isolated 2024-03-13 13:28:14 -05:00
wsl hyperv: error if not admin 2024-03-25 10:47:57 -05:00
cleanup.go Clean up gvproxy if machine start fails 2024-02-27 13:33:43 -06:00
config.go Merge pull request #21918 from tnk4on/fix-wrong-units-size-return 2024-03-06 13:55:56 +00:00
config_test.go Refactor env dir and port functions into new leaf pkgs 2024-03-04 23:54:31 -06:00
fedora_unix.go chore: delete obsolete // +build lines 2024-01-04 11:53:38 +02:00
fedora_windows.go Fix Lint on Windows and enable the job 2024-02-20 08:06:18 -05:00
gvproxy.go pkg/machine: ignore gvproxy pidfile not exists error 2024-02-22 12:39:20 +01:00
gvproxy_unix.go Move ignition functions into Containerfiles 2024-02-28 16:05:50 -06:00
gvproxy_windows.go Fix Lint on Windows and enable the job 2024-02-20 08:06:18 -05:00
keys.go Use single persistent ssh key for all machines 2024-01-04 23:47:49 -05:00
machine_common.go Change API socket to be machine name isolated 2024-03-13 13:28:14 -05:00
machine_unix.go Complete WSL implementation, refactor a few areas 2024-02-11 12:58:11 -06:00
machine_unsupported.go chore: delete obsolete // +build lines 2024-01-04 11:53:38 +02:00
machine_windows.go Change API socket to be machine name isolated 2024-03-13 13:28:14 -05:00
pull.go Refactor env dir and port functions into new leaf pkgs 2024-03-04 23:54:31 -06:00
qemuprovider.go podman5 machine reconfig 1 2024-02-07 08:17:43 -06:00
ssh.go Use built-in ssh impl for all non-pty operations 2024-03-24 21:25:22 -05:00
ssh_unix.go machine: implement http proxy logic for all providers 2024-02-22 11:23:45 +01:00
ssh_windows.go machine: implement http proxy logic for all providers 2024-02-22 11:23:45 +01:00
update.go Bump Go module to v5 2024-02-08 09:35:39 -05:00
volumes.go Bump Go module to v5 2024-02-08 09:35:39 -05:00