[Pkg-libvirt-commits] [libguestfs] 51/87: builder: Add tip for how to relabel SELinux guest at build time.

[Hilko Bengen]

This is an automated email from the git hooks/post-receive script.

bengen pushed a commit to branch debian
in repository libguestfs.

commit c4be51d08e7d8c54ba9134483390bfd6591a8ad5
Author: Richard W.M. Jones <rjones at redhat.com>
Date:   Tue Jan 21 17:15:11 2014 +0000

    builder: Add tip for how to relabel SELinux guest at build time.
    
    Thanks: purpleidea/James.
    (cherry picked from commit 20a4bfde9628cfeb8bea441cab7dcc94843b34e3)
---
 builder/virt-builder.pod | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/builder/virt-builder.pod b/builder/virt-builder.pod
index e1d0748..55a0146 100644
--- a/builder/virt-builder.pod
+++ b/builder/virt-builder.pod
@@ -1302,7 +1302,21 @@ label, the guest templates have an empty file C</.autorelabel> and
 this causes the guest to relabel itself at first boot.
 
 This usually means that these guests will reboot themselves once the
-first time you use them.  This is normal, and harmless.
+first time you use them.  B<This is normal, and harmless.>  However if
+you want to perform the relabelling at build time instead of delaying
+it to the first boot, you can boot the guest with the qemu
+I<-no-reboot> option (which means it will shut down after the relabel
+is complete without booting "for real").  Only do this if you are sure
+it is an SELinux guest:
+
+ qemu-system-x86_64 \
+   -no-reboot \
+   -nographic \
+   -machine accel=kvm:tcg \
+   -cpu host \
+   -m 2048 \
+   -drive file=disk.img,format=raw,if=virtio \
+   -serial stdio
 
 (For further information on the topic of SELinux labelling, see:
 L<https://www.redhat.com/archives/libguestfs/2014-January/msg00183.html>)

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-libvirt/libguestfs.git