Description of problem: If you update the centos-7.2 image when building it: virt-builder centos-7.2 --update Then the image does not boot properly complaining about selinux denying access to /dev/vda3. You can work around it by setting selinux as permissive for the first boot, and then relabeling the root dir, then setting selinux as enforcing does not break the boot process anymore. Version-Release number of selected component (if applicable): libguestfs-1.32.0-1.fc23.x86_64 libguestfs-tools-c-1.32.0-1.fc23.x86_64 How reproducible: virt-builder centos-7.2 --update Then try booting that disk Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Can you try adding the --selinux-relabel flag to the command line.
Due to https://bugzilla.redhat.com/show_bug.cgi?id=1049656 that does not work, but as it's suggested there (and you told me by irc): --edit '/usr/lib/systemd/system/rhel-autorelabel.service: $_ = "" if /StandardInput=tty/' Works like a charm :)
OK let's mark this as another duplicate of that systemd bug. *** This bug has been marked as a duplicate of bug 1049656 ***