X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=man%2Fsystemd-nspawn.xml;h=df318d7a43c02c6ac33bc181728b9aae00603dbe;hb=0452ffebbbb00a30894721666d81933425d182c7;hp=6b7ba9821ea49ea44489a6f3f0b057d0da0758ea;hpb=f9f4dd51bdb016bab84f7fb3cf47a2ad102b4c76;p=elogind.git
diff --git a/man/systemd-nspawn.xml b/man/systemd-nspawn.xml
index 6b7ba9821..df318d7a4 100644
--- a/man/systemd-nspawn.xml
+++ b/man/systemd-nspawn.xml
@@ -248,6 +248,27 @@
+
+
+
+
+ Sets the mandatory
+ access control (MAC/SELinux) file
+ label to be used by virtual API file
+ systems in the container.
+
+
+
+
+
+
+
+ Sets the mandatory
+ access control (MAC/SELinux) label to be used by
+ processes in the container.
+
+
+
@@ -380,6 +401,33 @@
creates read-only bind
mount.
+
+
+
+
+ Specifies an
+ environment variable assignment to
+ pass to the init process in the
+ container, in the format
+ NAME=VALUE. This
+ may be used to override the default
+ variables or to set additional
+ variables. This parameter may be used
+ more than once.
+
+
+
+
+
+
+ Turns off any status
+ output by the tool itself. When this
+ switch is used, then the only output
+ by nspawn will be the console output
+ of the container OS
+ itself.
+
+
@@ -441,6 +489,14 @@
btrfs snapshot.
+
+ Example 6
+
+ # chcon system_u:object_r:svirt_sandbox_file_t:s0:c0,c1 -R /srv/container
+# systemd-nspawn -L system_u:object_r:svirt_sandbox_file_t:s0:c0,c1 -Z system_u:system_r:svirt_lxc_net_t:s0:c0,c1 -D /srv/container /bin/sh
+
+ This runs a container with SELinux sandbox labels.
+ Exit status