From ff30f866642bc2a296d5b8a87dbbdc45f9d11207 Mon Sep 17 00:00:00 2001
From: fengalin <fengalin@free.fr>
Date: Mon, 24 Jul 2017 00:29:33 +0200
Subject: [PATCH] Add a mention for selinux systems in Docker README Selinux
 blocks the following: - gosu execution labeling (no selinux policy). -
 permission is denied to the container's user on the tree source binding under
 /src. Using a different location doesn't solve the issue.

The workaround consists in disabling selinux labeling when running the container.
---
 docker/README.md | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/docker/README.md b/docker/README.md
index 352c392..ee5a351 100644
--- a/docker/README.md
+++ b/docker/README.md
@@ -17,3 +17,11 @@ To unpack:
 3. Creates a new image in the local image repository named `redox` with Redox toolchain installed. You only need to rebuild the image if you want to update the toolchain.
 4. Builds Redox using the `redox` image. The arguments allow the container to use `fuse` and ensure the resulting files are owned by the current user.
 5. Runs Redox.
+
+On selinux systems, replace #4 with:
+```
+docker run --cap-add MKNOD --cap-add SYS_ADMIN \
+    --device /dev/fuse -e LOCAL_USER_ID="$(id -u)" \
+    -v "$(pwd):/src" --security-opt label=disable \
+    --rm redox make all
+```