mrrl

Minimal Reliable Reproducible Linux
git clone https://ccx.te2000.cz/git/mrrl
Log | Files | Refs | Submodules | README

container-bin-image (6039B)

      1 #!/usr/bin/env pthbs-build
      2 #+busybox.7f0e4d86f69de7624b0468018b9933c3e3c1757c8ff73938746c292196f916dd
      3 #+busybox-bzip2.52d2053dff44277d3c6f700eec6807d2c64c226e0f1bf589372ff5ff625be40e
      4 #+busybox-gzip.085fc42ce36be284c89a9dec6889cca59dedd07b9ba93a21d3198c4adcac5840
      5 #+busybox-lzop.bccd8f86de85a74d466d34f802ab1ea355f0a9d9886bdfa4d7bb4a785d695be6
      6 #+busybox-unzip.237a4ec36283b7fbdb85df583c7c77c0aaf70d335b1cbae09a40a9bb4b6c82bb
      7 #+busybox-xz.db25ed2ffbfc91e7b5cff54faf2e80de59ab5b15167c2c5bb338fa1ee62de122
      8 #+busybox-cpio.307e9495bcd9b79fd9559882115d55d22c5b687e08886e696f1e53d8db7eebcd
      9 #+busybox-dpkg.3aec8347093bb5b774a0c25795cdf9e624268a3b04cc48e867d74e4e06461db7
     10 #+busybox-rpm.8435251ea7058aea0cbcd41478b144b1a15c5aa121509af887847c0ef45bf5aa
     11 #+busybox-tar.c77139157bce13db8820740b756572c22e29cfbd8bb8c2a3b22b465b70e2eae9
     12 #+busybox-ed.4ac872215d7b9c8096c4cfd508434fbd2e825aebd9a9ea8589a0033b8e50aac2
     13 #+busybox-sed.14269a860b3706f7122b827818365fecaa0e62ce5bc3273e89948685c0953f2d
     14 #+busybox-vi.7e41b306c9c47aaaa281aa8347b9fa6dca260788fd73f53a7ba9260b315627ee
     15 #+busybox-xxd.9df3407fd75b89cb640d65870298eaba77327d6e387d25d8ce1ebab01cb47857
     16 #+busybox-process-extra.65afeaded3cb8fdeea327262f28f08e50f18d51a2b456ea97b293d200c7f558e
     17 #+busybox-procps.e5dc609521d29d8aec8253147269314439131c088a6beeacc172fc07594c4a37
     18 #+busybox-psmisc.7d760b69f45bb1b8d458f2f408b9cb3a42e919e8022f0508c440a5fd20ebb66f
     19 #+busybox-ash.fd5d266905d40248735e0e2e1ae22165b6f0d42c0bacb652660f69f39c1ee71e
     20 #+busybox-bc.6f2fe17efab2237c3036eba1c37d432d696d1b5dba130e21365016ceae0a3184
     21 #+busybox-coreutils.7e581faa6901f832a2a022d72b2858c3091f47afc80a4a463adb2f2a68f1843d
     22 #+busybox-coreutils-extra.5ab183b839676b0780a9a83d75cc345a06221fa34627c44aa3732c4a5a47f9b9
     23 #+busybox-daemontools.bcea69c867a61fe1d49d2f6a27e406959c484ed20d54fd7c0341828d3cdbd428
     24 #+busybox-grep.ac20e6a4295eb7fb0a09d700e10e5fe55e2009d2858e0a1525e461d4914e820b
     25 #+busybox-misc.7f0588b97809fac8061c489b686424de1a7dd17d8eb3431aae56513c7288f1e7
     26 #+busybox-sh.288f0583edc783a176bbbc59a3e854b186258ba2605291377a545cc3191c3d52
     27 #+busybox-util-linux-unpriv.5a286246aa7204f7fa8c9a247f1c93c751979690a65200030f29e255645c1eae
     28 #+busybox-dosfstools.b37683efd8b4a72e54d6c44a0c50119969fc5331bf8c221e95278599981783cd
     29 #+busybox-e2fsprogs.97b040545ab4209283aac65aa362041e4d4e74cd11e5c5e3ad1a35baed1aee04
     30 #+busybox-iproute2.2d9ca6b8a14c23200905e2a52dd50cc5e9c1fc1fef9324bfacbaaa6b6d6ff4c5
     31 #+busybox-iputils.09996cd8ce0c7b00f4351a5f37745ffdea5d6a871bb3b5a028b8c391f5cd4c1a
     32 #+busybox-net-misc.b189cea6d06bb88205a90bb359683d92c0f0e5e9d46d3ae0f9c0f3396eb7bbf7
     33 #+busybox-net-tools.0fd5dabc9430492bc29368e7e49ed47832659b9d4050657d10696fcb09f77de2
     34 #+busybox-traceroute.eca457a6db7d2b6c4cdb73d5646a179d43dff829a639697830fb5f853bde7dfe
     35 #+busybox-wget.358809effbe6ae614f474a7017e69853b7d6e9a1580d39a38dd69b6d05bb0975
     36 #+busybox-chpst.a9512afcfaa21f42980402ce2b6680bb99ad81b1f7c61094989fcb1536519c0d
     37 #+busybox-console.fbd958c51fc7d0f4cd54d3fabc201a25a1de39c997462044140bc20ebb99486d
     38 #+busybox-getty.700f4cb7326d9bf82d7d7997199407b882bd621a81afb0c87faf93d2920dc753
     39 #+busybox-linux-extra.46da1347e8a30f6c1594965c38db5f696941c3b91c3f330d4f55dd2c1b3ab358
     40 #+busybox-mtd-utils.7429f56c67b00231a66d877d908f422caf19093fc4d9b24650f7ca2a095d8a7d
     41 #+busybox-shadow.39e6b8449d43b09bde9cfd431b08b1a7cb726699194db6921b4c17a3234b3f6b
     42 #+busybox-su.499b81dc79366bb990e8019aca341b8e71d0bc6b5a38062234008313401ec502
     43 #+busybox-util-linux-priv.83cec28c6e04ad9a7ec5c32a38ec38885c3e8abdb399122820a44c956d52edda
     44 #+busybox-logging.3b0dc10d3df1d292038f7a739f91b96749ede1ac11b26e8e256eb033845ab027
     45 #+busybox-cron.1623c4a03b1450cadf4f0e5df5d71f0a0120af068e6bfbb5fe7efb122108a9af
     46 #+busybox-diffutils.895f7a6bf6d00136038d8bafa91a6fb1e7027ce5a32e1e3b64a9119fe69ef19a
     47 #+busybox-findutils.207f73a9f41a8f9e279072e920cbf0c38ba6516734fa3cf2c1faf55565613487
     48 #+busybox-login.fd0657e839fb1c05fc9a3b3e265f192030811d720bce7f4e9360095d72cb19cc
     49 #+execline.4e773f1ba308227aa5402fd63038f6dcbaf3866ca3fa70555a8bec9b81c8e2d2
     50 #+s6.64db7103e34ea2b2dd5d657ebf1a62bea89d31b2a5df8cd6ef0c140ef574828f
     51 #+ccx-utils.03320cb6f512de325611c0af488f96433fb29ca1c4a7c71454da478b48cf607e
     52 #+applyuidgid-caps.d659b2f3dc98be5e954d7be392ee4f1cb54f6df5f701b8bce83904047c100318
     53 #+easyseccomp.14113f820fb502f0771b760e125e5a222b19d76413a9cd99c1f6569281bbdb98
     54 #+mlog.f63e3f9617bf9711d5569d7215cc91aececf0bbcd3ac887e2351b2f501d890c5
     55 #+abduco.29d2355de545dae9b8a739f668de35a5b1aa80b8df3895243d5da4e98155981c
     56 #+nawk.84c186be0a6d09a951a8c6a5377d16b0ba0a9e476e6b554c0c832d6407ebb5b2
     57 #@sha256:b9236c0fd504ffbc56f65d0522d2acadcd2683380eaa6f1873e8201eaa7388a5:default-policy.easyseccomp
     58 
     59 img="$pthbs_destdir/versions/$pthbs_package/container-bin-image"
     60 mkdir -p "$img"
     61 easyseccomp -i default-policy.easyseccomp -o "$img/seccomp-default.bpf"
     62 easyseccomp -i default-policy.easyseccomp -d ALLOW_PTRACE -o "$img/seccomp-ptrace.bpf"
     63 easyseccomp -i default-policy.easyseccomp -d ALLOW_PTRACE -d ALLOW_SETUID_SETGID -d ALLOW_SECCOMP -d ALLOW_LANDLOCK -o "$img/seccomp-build.bpf"
     64 easyseccomp -i default-policy.easyseccomp -d ALLOW_PTRACE -d ALLOW_SETUID_SETGID -o "$img/seccomp-xpra.bpf"
     65 easyseccomp -i default-policy.easyseccomp -d ALLOW_SETUID_SETGID -o "$img/seccomp-setuidgid.bpf"
     66 cd "$img"
     67 
     68 # first commands without argv0 aliases
     69 for cmd in "${PATH%%:*}"/*; do
     70 	rp=$(realpath "$cmd")
     71 	base=$(basename "$rp")
     72 	if test $base = "${cmd##*/}"; then
     73 		if test -e "./$base"; then
     74 			printf "fatal: duplicate command file: '%s'\n" "$base"
     75 			exit 1
     76 		fi
     77 		cp -p "$rp" ./
     78 	fi
     79 done
     80 
     81 # now alias using symlinks
     82 for cmd in "${PATH%%:*}"/*; do
     83 	rp=$(realpath "$cmd")
     84 	base=$(basename "$rp")
     85 	if ! test $base = "${cmd##*/}"; then
     86 		if ! test -f "./$base"; then
     87 			cp -p "$rp" ./
     88 		fi
     89 		ln -s "./$base" "./${cmd##*/}"
     90 	fi
     91 done
     92 
     93 for cmd in if busybox umount chpst spawn-pty ptsname applyuidgid-caps seccomp-run; do
     94 	if ! test -x "./$cmd"; then
     95 		printf "fatal: expected command not found: '%s'\n" "$cmd"
     96 		exit 1
     97 	fi
     98 done
     99 ./true
    100 ./seccomp-run ./seccomp-default.bpf ./true
    101 pwd
    102 ls -lhA
    103 
    104 touch "$pthbs_destdir/versions/$pthbs_package/.install-links"