Skip to content
This repository has been archived by the owner on Feb 24, 2020. It is now read-only.

Commit

Permalink
acbuild: set seccomp settings
Browse files Browse the repository at this point in the history 
Starting from rkt v1.12.0 a build could fail if not enough seccomp
settings are specified.

This adds necessary seccomp settings for gpg to succeed in the rkt
builder image.
  • Loading branch information
@s-urbaniak
s-urbaniak committed Aug 18, 2016
1 parent 70c0b4a commit 8af31a2
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion acbuild.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ if [[ $EUID -ne 0 ]]; then
fi

IMG_NAME="coreos.com/rkt/builder"
VERSION="1.0.1"
VERSION="1.0.2"
ARCH=amd64
OS=linux

Expand Down Expand Up @@ -40,6 +40,7 @@ acbuild $FLAGS set-name $IMG_NAME
acbuild $FLAGS label add version $VERSION
acbuild $FLAGS set-user 0
acbuild $FLAGS set-group 0
echo '{ "set": ["@rkt/default-whitelist", "mlock"] }' | acbuild isolator add "os/linux/seccomp-retain-set" -
acbuild $FLAGS environment add OS_VERSION sid
acbuild $FLAGS environment add GOPATH $ACI_GOPATH
acbuild $FLAGS environment add BUILDDIR $BUILDDIR
Expand Down

0 comments on commit 8af31a2

Please sign in to comment.