See coreos/fedora-coreos-tracker#396 (comment) for a bit of explanation.
Warning: The script will trigger warning messages in the systemd journal log that look like this:
systemd[1]: sshd.service: Found left-over process 4270 (conmon) in control group while starting unit. Ignoring.
systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies.
This is probably a side effect of the script booting up podman containers to run semanage
- I don't know how to get rid of this properly if it's possible at all but I think this can be ignored for now.
SSH daemon can take quite a long while to start for the first time due to the one-time image build.
/proc did not want to mount into the container, yielding the error:
testing revealed /proc is not necessary for successfully executing the semanage commands