search

minishift / minishift-centos-iso

CentOS based ISO as an alternative for boot2docker ISO
GNU Lesser General Public License v3.0
40 stars 33 forks source link

Issue #1 Build the ISO with SELinux in enforcing mode #81

Closed praveenkumar closed 7 years ago

praveenkumar commented 7 years ago

Below patch will resolve issue around SELinux enforcing mode. Please test it out before we merge it.

Make sure if you are not using centos-7 then use vagrant way of creating image I did update the document because live-tools are very specific around which host we are using for creating the images.

coolbrg commented 7 years ago

Build the ISO and tested. LGTM :+1: 

$ minishift start --iso-url file:///home/budhram/redhat/minishift-centos-iso/build/minishift-centos.iso
Starting local OpenShift instance using 'kvm' hypervisor...
Provisioning OpenShift via '/home/budhram/.minishift/cache/oc/v1.3.1/oc [cluster up --use-existing-config --host-config-dir /var/lib/minishift/openshift.local.config --host-data-dir /var/lib/minishift/hostdata]'
-- Checking OpenShift client ... OK
-- Checking Docker client ... OK
....
   OpenShift server started.
   The server is accessible via web console at:
       https://192.168.42.157:8443

   You are logged in as:
       User:     developer
       Password: developer

   To login as administrator:
       oc login -u system:admin

$ minishift ssh
Last login: Thu Jan 12 08:32:40 2017 from 192.168.42.1

[docker@minishift ~]$ sestatus
SELinux status:                 enabled
SELinuxfs mount:                /sys/fs/selinux
SELinux root directory:         /etc/selinux
Loaded policy name:             targeted
Current mode:                   enforcing
Mode from config file:          enforcing
Policy MLS status:              enabled
Policy deny_unknown status:     allowed
Max kernel policy version:      28
[docker@minishift ~]$