diff -up container-selinux-2.161.1/container.te.orig container-selinux-2.161.1/container.te

--- container-selinux-2.161.1/container.te.orig	2021-05-06 14:55:57.952216763 +0200

+++ container-selinux-2.161.1/container.te	2021-05-06 14:56:02.027287991 +0200

@@ -114,7 +114,7 @@ mls_trusted_object(container_runtime_t)

 #

 allow container_runtime_domain self:capability { chown kill fowner fsetid mknod net_admin net_bind_service net_raw setfcap sys_resource };

 allow container_runtime_domain self:tun_socket { create_socket_perms relabelto };

-allow container_runtime_domain self:lockdown { confidentiality integrity };

+#allow container_runtime_domain self:lockdown { confidentiality integrity };

 allow container_runtime_domain self:process ~setcurrent;

 allow container_runtime_domain self:passwd rootok;

 allow container_runtime_domain self:fd use;