From: Colin Walters <walters@verbum.org>
Date: Tue, 6 Feb 2024 22:52:34 +0000 (-0500)
Subject: ci: Use `BOOTC_SKIP_SELINUX_HOST_CHECK`, test labeling of /etc
X-Git-Tag: archive/raspbian/2024.8-1+rpi1^2~7^2~5^2~9^2
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=5cfc5c7b1f9957bbe650187410be3169430406bf;p=ostree.git

ci: Use `BOOTC_SKIP_SELINUX_HOST_CHECK`, test labeling of /etc

As we work to change ostree to set up the labels
for things even in a selinux-host-disabled case, let's test
it here.
---

diff --git a/.github/workflows/bootc.yaml b/.github/workflows/bootc.yaml
index 2df323e6..5d1cee87 100644
--- a/.github/workflows/bootc.yaml
+++ b/.github/workflows/bootc.yaml
@@ -35,7 +35,9 @@ jobs:
       - name: bootc install
         run: |
           set -xeuo pipefail
-          sudo podman run --rm -ti --privileged -v /:/target --pid=host --security-opt label=disable \
+          sudo podman run --env BOOTC_SKIP_SELINUX_HOST_CHECK=1 --rm -ti --privileged -v /:/target --pid=host --security-opt label=disable \
             -v /var/lib/containers:/var/lib/containers \
             localhost/test:latest bootc install to-filesystem --skip-fetch-check \
-            --disable-selinux --replace=alongside /target
+             --replace=alongside /target
+          # Verify labeling for /etc
+          sudo ls -dZ /ostree/deploy/default/deploy/*.0/etc |grep :etc_t: