From d026bd79cb492cde99b2d15bbf9e622281967917 Mon Sep 17 00:00:00 2001
From: waffshappen <44290023+waffshappen@users.noreply.github.com>
Date: Wed, 15 Feb 2023 23:32:41 +0000
Subject: [PATCH 1/2] Allow Project File Access with Podman+Selinux

With selinux enabled distros containers accessing KoboldAIs main directory as content, as planned here, will likely generally be denied (atleast with podman).
Option 1 would be to mark it with the right label - like :z - but that has other Implications for the content directory.

The other fix, if uglier, is to run the container without labels being enforced and thus allow the file access as the same user and with no further sideeffects to the project file labelling.
---
 docker-rocm/docker-compose.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docker-rocm/docker-compose.yml b/docker-rocm/docker-compose.yml
index d8274e7d..78a037e6 100644
--- a/docker-rocm/docker-compose.yml
+++ b/docker-rocm/docker-compose.yml
@@ -5,6 +5,8 @@ services:
     environment:
       - DISPLAY=${DISPLAY} 
     network_mode: "host"
+    security_opt:
+      - label:disable
     volumes:
       - /tmp/.X11-unix:/tmp/.X11-unix
       - /etc/protocols:/etc/protocols:ro

From a0d4497c9591393e2f4dbe1dc68e9e4dbb6e7276 Mon Sep 17 00:00:00 2001
From: waffshappen <44290023+waffshappen@users.noreply.github.com>
Date: Thu, 16 Feb 2023 10:37:58 +0000
Subject: [PATCH 2/2] Also update CUDA container

---
 docker-cuda/docker-compose.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docker-cuda/docker-compose.yml b/docker-cuda/docker-compose.yml
index db2d2672..f7b9815a 100644
--- a/docker-cuda/docker-compose.yml
+++ b/docker-cuda/docker-compose.yml
@@ -5,6 +5,8 @@ services:
     environment:
       - DISPLAY=${DISPLAY} 
     network_mode: "host"
+    security_opt:
+      - label:disable
     volumes:
       - /tmp/.X11-unix:/tmp/.X11-unix
       - /etc/protocols:/etc/protocols:ro