18 Sep
2025
18 Sep
'25
6:01 p.m.
On Wed, 17 Sep 2025 14:04:50 +0200
Paul Holzinger
In some cases the podman runroot directory used to be labelled container_var_run_t instead of user_tmp_t which was expected here. Starting with a recent container-selinux change the runroot is now always container_var_run_t so make the policy handle both types to allow for a better upgrade path where passt-selinux and container-selinux are not updated at the same time.
Link: https://github.com/containers/container-selinux/pull/405 Link: https://github.com/containers/podman/issues/26473
Signed-off-by: Paul Holzinger
Series applied, with all the changes as discussed. I'll make a release soon so that container-selinux can proceed with container_var_run_t as needed. -- Stefano