mrrl

Minimal Reliable Reproducible Linux
git clone https://ccx.te2000.cz/git/mrrl
Log | Files | Refs | Submodules | README

container-bin-image (6096B)

      1 #!/usr/bin/env pthbs-build
      2 #+busybox.379b7b2d8316b3678245563c8e592d71e6c380bc22a735c30c1c0e6f8f60caf3
      3 #+busybox-bzip2.4788e6edf9eeb73c7c665238a23aeed4703f8e25ab101509aee01440865ccdb1
      4 #+busybox-gzip.4fc908cacf4533192819578a079617c0cbe879b8ebd3e2140d896b067d3a574c
      5 #+busybox-lzop.e6e42a1a8451a4b845355899c9cd49efea2e395a0ef0c6ae7099103213a7bf4f
      6 #+busybox-unzip.93b5e83122059c87a2ddf489cdc7381bb80288630c508c218c2cfbadff524784
      7 #+busybox-xz.34137cc6ac8d23bf1bf5979b7fd047d4f50b34be07cd6ab636368952a199368d
      8 #+busybox-cpio.de88944ccff44a1f3abe06c42f83492a7e080de89fba27aadf5fe1a40e830cae
      9 #+busybox-dpkg.17e445a8089bc61db749a44c665597ecac3f21c4088daaa024f574412eb4d704
     10 #+busybox-rpm.669ed61ee218bc72206e069c896f392a025c88772ceb92ecb37b01ab0765baf8
     11 #+busybox-tar.15f67670238651149114006ae79359f24e1fa3c62be2e229a48f1334747ba413
     12 #+busybox-ed.78c51627a372c5b2ad3d046d0e77f341ae7c79917c4a16ca8abba284e7472cb7
     13 #+busybox-sed.8782396ae5c7b6e7d6bc8a93a7cff9912e6427e3d919dd5e5b00d1813ae88caf
     14 #+busybox-vi.e661d8eb052fbeebdd3be36ff6bd27651a7e59c857dad05c8633589790caa38c
     15 #+busybox-xxd.d2dc96e92cfdafae2c91d6fe897f42fdccae2dbc8b2d79f31eccc49d4e3a2d68
     16 #+busybox-process-extra.993cfd65eae2892ecb3fdfbece44b11e7ff6caa78f73e9f22bc2c97e7cd8a267
     17 #+busybox-procps.51ea8cb23d5eb1498f9167cc80b97c1a873758a8c1a7293079f50a2365466a71
     18 #+busybox-psmisc.ff1f9cf00f4c448946acb65d52b3b598e0495822af70b1504720cadf559e2090
     19 #+busybox-ash.7d10753f118afb2568e9f950c9cffa559b053a9b3ea516d6b46c3c73ebb6f8d8
     20 #+busybox-bc.c595636f103108c81f0ae55d2bf10d7cbc06ef1455a8353fcf04e42e765780a8
     21 #+busybox-coreutils.6b8071260ab4297f0e71013e42ac2a1a83fa99d92378d181ba49003fd349134a
     22 #+busybox-coreutils-extra.fc1b0766c881ee461d36c386833909553fcb0c31a547bfb563a7c6a50206bdcd
     23 #+busybox-daemontools.97aad28bbe5f38cff29db16c0f0d21e2fdc931825f683137df9bb57ef3a9b628
     24 #+busybox-grep.261a809c35cb58acc896143c2a81406a097f5870e02ce9906953181ef6b4c72b
     25 #+busybox-misc.5c2c025f1b74b9243a0128cd3f10dd1577b5ae123f53244d8e6895d4bdbd161d
     26 #+busybox-sh.25a9438d8449ade9c98af61b14af5711990dd002462a046b13b61969634c4d94
     27 #+busybox-util-linux-unpriv.4ea1c8c8746d7e80d36dea8924c576bc9666905b461dd543ceb5595394406c97
     28 #+busybox-dosfstools.1d2b9edd5426588b64db50bbb58812ec321a745f3098e77b7885a1dea502157c
     29 #+busybox-e2fsprogs.d3f81870ed6114720a0f8fa957ce01ee3c4ca1dd9892c794bfa3882706efeb12
     30 #+busybox-iproute2.a5e6578168e3b608d3dfa07148a109f9cfa1a4701e74b44e6f92a59c4158af37
     31 #+busybox-iputils.8233bc9ace8965d538d33010d0324c90bccdcb71ee856a134395b47562a86859
     32 #+busybox-net-misc.bab4e5c7452fbf727d0b66eb25affc291e584ba58a1b023dc3ceb28a438492ac
     33 #+busybox-net-tools.b2c492d71f1f369d85138465b745bd9249efee3b2ca1d229b577b49fa03a7693
     34 #+busybox-traceroute.0c61c7a73c7b4004f1a88e134a534cc503cb53df511774a08193e674cca23e0c
     35 #+busybox-wget.3f3bb32e1a48616fe4ca8bdd7f69d4e281e42841e00175523c13b148c90b25cc
     36 #+busybox-chpst.30790f00d54403da6f0b9e2dc5e35d3a499db46a10928294eb3130ac9897d73d
     37 #+busybox-console.362bc79a1d38afa9666816d5b726eabc77f3a75bf145bb3b4f7562fcdc7019f6
     38 #+busybox-getty.a5db7cd285f5af5fe298afd3c0cf51fc2dbb4c116450ea9bb3403b77e57ef6e0
     39 #+busybox-i2c-tools.135c74be4f3cbcd45667f1749ff3124493f42707e204d178094828326df172eb
     40 #+busybox-linux-extra.1925e0cd6741f408301583323360f17a91f6c4e3143b6bb256fd6fbc82cd61c0
     41 #+busybox-mtd-utils.2f7c9f425030b22040d7fc75e86168d303857464448cd87e907d7ce824d541df
     42 #+busybox-shadow.1217e37cc209e4f8130c9290de26d0941c1690b1df6aa819e6bc6c4a08a1dcbb
     43 #+busybox-su.83da14ece711f6fdb33aebb0d0a2558827cc30ce9966f2696dbc95606951b175
     44 #+busybox-util-linux-priv.bcb37952ef97d61602b87ec1820f52fef4a5e6548c0f8b5b2f6ec768ddac2d02
     45 #+busybox-logging.a82bb2f2d07e0f30d1271482b142c052367a504a97b3803e7ad25148d53592c1
     46 #+busybox-cron.92a0481bcf3adea90752835bd7ee77641d7366ff84c1539f5562e01e9d14f01e
     47 #+busybox-diffutils.30a803a8b8dd1d4f18bc5e5952cc4b15aea625caf2af34dd424af233786ba0d0
     48 #+busybox-findutils.052256c5bf9c3e7fef2e69d22f3d402d004f22113ce10b4d2c54ff417bf42622
     49 #+busybox-login.e92d17445b96532333506a543ff2c538bee3f44a6126d943037b60b7adcb77a5
     50 #+execline.5d88993134dc7d05e6124e7bd182279794ef9bac128f552aa1e98c17220e3c37
     51 #+s6.af31d85ebbb2bd67def86f46f702a872de0704ad1b77e1e52e5b3069f540fd54
     52 #+ccx-utils.0e5779a5c5478d58086652577b67c2f57f9894135bf9e4c4f111d881062752d1
     53 #+applyuidgid-caps.f3e438e06650983379807b56871be0f6be24cfed5e1d2bbd02bf0acc434eb320
     54 #+easyseccomp.4983578ab32c937df3b3ba05e596c1c12705270efb1ef7af35586794c13c27f9
     55 #+mlog.04f202d1e6555c3466d2e17c23626efc4e12f6100a17b0970d5d957bce88f44a
     56 #+abduco.0f6794cb2d50cc8f081a0d20367a261ee5aa03b8d49fe2dc08076765952f0f35
     57 #+nawk.d6c1a6fd67ebccb4cb1b8062bed80778ee976f5a62370e60fcbc443257a78cd9
     58 #@sha256:b9236c0fd504ffbc56f65d0522d2acadcd2683380eaa6f1873e8201eaa7388a5:default-policy.easyseccomp
     59 
     60 img="$pthbs_destdir/home/ccx/versions/$pthbs_package/container-bin-image"
     61 mkdir -p "$img"
     62 easyseccomp -i default-policy.easyseccomp -o "$img/seccomp-default.bpf"
     63 easyseccomp -i default-policy.easyseccomp -d ALLOW_PTRACE -o "$img/seccomp-ptrace.bpf"
     64 easyseccomp -i default-policy.easyseccomp -d ALLOW_PTRACE -d ALLOW_SECCOMP -d ALLOW_LANDLOCK -o "$img/seccomp-build.bpf"
     65 easyseccomp -i default-policy.easyseccomp -d ALLOW_PTRACE -d ALLOW_SETUID_SETGID -o "$img/seccomp-xpra.bpf"
     66 easyseccomp -i default-policy.easyseccomp -d ALLOW_SETUID_SETGID -o "$img/seccomp-setuidgid.bpf"
     67 cd "$img"
     68 
     69 # first commands without argv0 aliases
     70 for cmd in "${PATH%%:*}"/*; do
     71 	rp=$(realpath "$cmd")
     72 	base=$(basename "$rp")
     73 	if test $base = "${cmd##*/}"; then
     74 		if test -e "./$base"; then
     75 			printf "fatal: duplicate command file: '%s'\n" "$base"
     76 			exit 1
     77 		fi
     78 		cp -p "$rp" ./
     79 	fi
     80 done
     81 
     82 # now alias using symlinks
     83 for cmd in "${PATH%%:*}"/*; do
     84 	rp=$(realpath "$cmd")
     85 	base=$(basename "$rp")
     86 	if ! test $base = "${cmd##*/}"; then
     87 		if ! test -f "./$base"; then
     88 			cp -p "$rp" ./
     89 		fi
     90 		ln -s "./$base" "./${cmd##*/}"
     91 	fi
     92 done
     93 
     94 for cmd in if busybox umount chpst spawn-pty ptsname applyuidgid-caps; do
     95 	if ! test -x "./$cmd"; then
     96 		printf "fatal: expected command not found: '%s'\n" "$cmd"
     97 		exit 1
     98 	fi
     99 done
    100 ./true
    101 ./seccomp-run ./seccomp-default.bpf ./true
    102 
    103 
    104 touch "$pthbs_destdir/home/ccx/versions/$pthbs_package/.install-links"