qm.container: add tmpfs additional flags

Resolves: #723
Signed-off-by: Douglas Schilling Landgraf <[email protected]>

qm.container

@@ -80,11 +80,19 @@ Network=private
 # Makes the container's filesystem read-only, enhancing security by preventing modifications.
 ReadOnly=true
 
+# TmpFS flags
+ReadOnlyTmpfs=false
+Mount=type=tmpfs,tmpfs-size=512M,destination=/tmp
+Mount=type=tmpfs,tmpfs-size=512M,destination=/run
+
 # Rootfs
 # ------
 # Defines the root filesystem location for QM partition.
 # By default the '${ROOTFS}' variable points to /usr/lib/qm/rootfs.
 # For details see: https://docs.podman.io/en/latest/markdown/podman-systemd.unit.5.html#rootfs
+#
+# TmpFS flags
+# -----------------
 Rootfs=${ROOTFS}
 
 SecurityLabelNested=true
@@ -94,3 +102,4 @@ SecurityLabelType=qm_t
 Timezone=local
 Volume=${RWETCFS}:/etc
 Volume=${RWVARFS}:/var
+