Podman container platform Error: SELinux relabeling of <home directory> is not allowed #30
Description
I installed the aCoRNs release notes generator on Fedora 39 CSB via official guidance to run as a container.
[astillma@astillma-thinkpadx1nanogen2 ~]$ podman pull quay.io/msuchane/acorns
Trying to pull quay.io/msuchane/acorns:latest...
Getting image source signatures
Copying blob 49ca46f478af skipped: already exists
Copying blob a4641b174d1c skipped: already exists
Copying blob f04c9b876d29 skipped: already exists
Copying blob 7a1369965878 skipped: already exists
Copying config 799213433e done |
Writing manifest to image destination
799213433e04120bc3ca218c7236c194f3c2cffd7832a82c961f42241c908217
[astillma@astillma-thinkpadx1nanogen2 ~]$ podman run -it -e BZ_API_KEY -e JIRA_API_KEY -v .:/mnt/acorns:Z msuchane/acorns acorns
Error: SELinux relabeling of /home/astillma is not allowed
[astillma@astillma-thinkpadx1nanogen2 ~]$ sudo nano /etc/selinux/config
(edited successfully for permissive mode and verified)
[astillma@astillma-thinkpadx1nanogen2 ~]$ sudo setenforce 0
[astillma@astillma-thinkpadx1nanogen2 ~]$ sestatus
SELinux status: enabled
SELinuxfs mount: /sys/fs/selinux
SELinux root directory: /etc/selinux
Loaded policy name: targeted
Current mode: permissive
Mode from config file: permissive
Policy MLS status: enabled
Policy deny_unknown status: allowed
Memory protection checking: actual (secure)
Max kernel policy version: 33
Still encountering the above error, set SELinux mode to permissive in attempt to resolve. Still get "Error: SELinux relabeling of /home/astillma is not allowed". Ideas for next steps?
This is not urgent; I have tabled this effort and successfully installed via copr / dnf.
Thanks,
Andy