summaryrefslogtreecommitdiff
path: root/data/selinux
diff options
Diffstat (limited to 'data/selinux')
-rw-r--r--data/selinux/snappy.te2
1 files changed, 2 insertions, 0 deletions
diff --git a/data/selinux/snappy.te b/data/selinux/snappy.te
index 2bcff259ba..8fcfca0536 100644
--- a/data/selinux/snappy.te
+++ b/data/selinux/snappy.te
@@ -207,6 +207,8 @@ admin_pattern(snappy_t, snappy_var_lib_t)
mmap_rw_files_pattern(snappy_t, snappy_var_lib_t, snappy_var_lib_t)
# snap data files
admin_pattern(snappy_t, snappy_var_t)
+# auto transition /var/snap when created at runtime
+files_var_filetrans(snappy_t, snappy_var_t, dir, "snap")
# some snaps may create character files, eg. lxd creates /dev/full in the
# container's rootfs
manage_chr_files_pattern(snappy_t, snappy_var_t, snappy_var_t)
generated by cgit v1.2.3 (git 2.25.1) at 2025-11-10 09:01:42 +0000