mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-08 13:36:58 +02:00
Code Issues Packages Projects Releases Wiki Activity
2f340b54c2
flatcar-scripts/build_library
History
Jeremi Piotrowski ff6279a6b0 build_library: Don't preserve file ownership when copying sysext files 
The docker and containerd copy files from the repository, which are owned by
the sdk user. This ownership leaks into the final image, which means the first
created user could edit systemd files. This is bad.

Modify the cp invocation to copy files without preserving ownership. The
sysext-mangle script is called by build_sysext, which is executed using sudo.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
2024-08-30 09:16:25 +02:00
..
portage Drop Catalyst package.use.force for alternatives 2024-07-22 14:08:57 +01:00
board_options.sh build_library/board_options: Fix pkg_version function 2021-09-28 16:32:30 +02:00
build_image_util.sh Don't use repo snapshots for stage1 by updating seed the new way 2024-07-15 14:28:03 +01:00
catalyst_sdk.sh dev-lang/rust: Drop our custom package in favour of upstream Gentoo's 2024-08-15 16:54:11 +01:00
catalyst_toolchains.sh Upgrade to Catalyst 4 2024-07-15 14:27:59 +01:00
catalyst.sh dev-lang/rust: Drop our custom package in favour of upstream Gentoo's 2024-08-15 16:54:11 +01:00
check_root build_library/check_root: Silence a warning about cgi.py 2023-05-11 12:29:48 +02:00
configure_bootloaders.sh 2317.0.1 2019-11-07 19:40:01 +01:00
cros_vm_constants.sh Move cros_vm_constants to build_library 2021-08-27 14:20:54 +02:00
dev_container_util.sh Upgrade to Catalyst 4 2024-07-15 14:27:59 +01:00
disk_layout.json disk_layout: use btrfs for the /usr partition 2023-09-25 12:56:04 +02:00
disk_util disk_util: Mount btrfs fs with rescue= option 2024-03-05 17:35:55 +01:00
ebuild_aci_manifest.in Initial checkin of docker-aci build script 2017-03-01 14:59:43 -08:00
ebuild_aci_util.sh build_library: Enhance license info and store it on the image 2020-06-09 21:09:44 +02:00
extra_sysexts.sh sysext: Add python sysext 2024-05-29 19:18:18 +02:00
extract-initramfs-from-vmlinuz.sh build_library: Generate content files for initrd too 2023-02-01 14:43:24 +01:00
gen_tmpfiles.py build_library/gen_tmpfiles.py: Add options for allowed users and groups 2023-04-26 15:39:58 +02:00
generate_au_zip.py generate_au_zip: Remove useless line 2021-08-24 16:08:15 +02:00
generate_grub_hashes.py build_library: Fix getting integer from string 2021-08-18 19:01:51 +02:00
generate_kernel_hash.py build_library: Fix python script extension 2021-08-18 18:57:04 +02:00
grub_install.sh grub_install: Remove core grub modules from EFI partition for i386-pc 2024-06-21 11:04:35 +03:00
grub.cfg build_library: Drop redundant config from grub.cfg 2024-02-26 12:01:10 +01:00
menu.lst grub: the one bootloader to rule them all 2014-12-05 16:51:11 -08:00
modify_image_util.sh Allow specifying multiple compression formats 2022-03-07 12:01:21 +00:00
parallels_pvs.sh build_library: set parallels build scripts as executable 2016-10-27 13:27:30 -07:00
prefix_util.sh sysext: Add python sysext 2024-05-29 19:18:18 +02:00
prod_image_util.sh sysext: Add podman sysext 2024-05-03 22:59:36 +09:00
qemu_template.sh Fix the initrd option in the QEMU launcher script 2024-08-16 17:04:07 +01:00
release_util.sh vm_image_util: produce qcow2 images for Scaleway 2024-04-26 09:47:29 +02:00
reports_util.sh build_library: Move report function to a separate file 2023-06-06 13:01:09 +02:00
set_lsb_release Use new website flatcar.org 2022-09-14 14:32:49 +02:00
sysext_mangle_containerd-flatcar build_library: Don't preserve file ownership when copying sysext files 2024-08-30 09:16:25 +02:00
sysext_mangle_docker-flatcar build_library: Don't preserve file ownership when copying sysext files 2024-08-30 09:16:25 +02:00
sysext_mangle_flatcar-podman sysext: Add podman sysext 2024-05-03 22:59:36 +09:00
sysext_mangle_flatcar-python build_library: Shrink the sysext-python image by removing python tests 2024-08-14 17:25:31 +02:00
sysext_mangle_flatcar-zfs build_library: Add mangle script for zfs sysext 2024-03-11 11:57:45 +00:00
sysext_prod_builder build_sysext: Detect dev rebuild of release tag, fix build ID issue 2024-08-29 10:39:07 +02:00
template_vmware.ovf build_library/template_vmware.ovf: Newer OS type and hardware version 2020-07-09 12:19:23 +02:00
test_build_root fix(test_image_content): Improve /usr symlink and conflict tests. 2013-12-09 19:32:54 -08:00
test_image_content.sh test_image_content: add GLSA 202407-05 to allowlist 2024-07-17 09:41:24 +02:00
test_oem_pkgs *: Make catalyst and emerge verbose by default 2023-02-16 13:57:05 +01:00
toolchain_util.sh dev-lang/rust: Drop our custom package in favour of upstream Gentoo's 2024-08-15 16:54:11 +01:00
update_chroot_util.sh build_library/update_chroot_util.sh: Ignore equery's non-zero exit status 2023-04-26 07:49:56 +02:00
virtualbox_ovf.sh virtualbox_ovf.sh: use virtio network interfaces 2014-11-07 16:16:03 -07:00
vm_image_util.sh Upgrade to Catalyst 4 2024-07-15 14:27:59 +01:00
write_hdd.sh build_library: set parallels build scripts as executable 2016-10-27 13:27:30 -07:00