From f19b6c8801164bc34f837169eb3cee47e35d6ee4 Mon Sep 17 00:00:00 2001
From: entlein <einentlein@gmail.com>
Date: Thu, 18 Aug 2022 18:56:33 +0200
Subject: [PATCH] finally fixing the selinux exception

---
 roles/rke2/selinux/my-openstack.te | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/roles/rke2/selinux/my-openstack.te b/roles/rke2/selinux/my-openstack.te
index 0cdb1a0..403aadb 100644
--- a/roles/rke2/selinux/my-openstack.te
+++ b/roles/rke2/selinux/my-openstack.te
@@ -7,9 +7,10 @@ require {
         class lnk_file read;
         class file read;
         class file write;
+        class file open;
 }
 
 #============= container_t ==============
 allow container_t cert_t:dir read;
 allow container_t cert_t:lnk_file read;
-allow container_t cert_t:file {read write};
\ No newline at end of file
+allow container_t cert_t:file {open read write};
\ No newline at end of file
-- 
GitLab