From mboxrd@z Thu Jan 1 00:00:00 1970 From: Gerry Reno Subject: Re: After upgrading from F7 kvm-65-15 to F10 kvm-74-10 Date: Sun, 29 Mar 2009 19:56:41 -0400 Message-ID: <49D00AB9.8040008@verizon.net> References: <49CF9EBB.3070404@verizon.net> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit To: kvm@vger.kernel.org Return-path: Received: from vms173019pub.verizon.net ([206.46.173.19]:53836 "EHLO vms173019pub.verizon.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1753362AbZC2X47 (ORCPT ); Sun, 29 Mar 2009 19:56:59 -0400 Received: from [192.168.2.100] ([72.91.189.24]) by vms173019.mailsrvcs.net (Sun Java(tm) System Messaging Server 6.3-7.04 (built Sep 26 2008; 32bit)) with ESMTPA id <0KHA002FCL6M3QC9@vms173019.mailsrvcs.net> for kvm@vger.kernel.org; Sun, 29 Mar 2009 18:56:47 -0500 (CDT) In-reply-to: Sender: kvm-owner@vger.kernel.org List-ID: Ross McKay wrote: > Gerry Reno wrote: > > >> [...] After digging around awhile we finally figured >> out that we had to once again 'chcon -t virt_image_t path_to_image' as >> we had done back when we first setup the VM's. But what is the proper >> procedure so that we don't lose the selinux attributes on these image >> files? [...] >> > > You need to tell selinux about paths that you have custom selinux > contexts on if you want those contexts to persist. Something like > (assuming /path/to/image is a folder): > > semanage fcontext -a -t virt_image_t "/path/to/image(/.*)?" > > That will add them to the selinux database, and a restorecon will > preserve your changes (and reassert them if something else changes the > contexts of the files, or if you move a file from another place into > /path/to/image) > Ok, thanks. I'll run that command on all the image file directory trees. Now if we can just get some guidance on all this console connection craziness maybe we can get back to normal running. Regards, Gerry