SiegfriedSiegert/PTU5KAS
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
492b2c56ab
PTU5KAS/container-entrypoint
Jan Kiszka 492b2c56ab container: Rework uid/gid alignment with caller 
Already create the builder user/group during container image build and
only align the IDs in the entrypoint if started with a non-zero USER_ID.
The primary gain is code simplification because this removes some
dynamics from the entrypoint.

As this refactoring avoids that gitlab-ci runners start the container as
root, it was also supposed to resolve the mismatch between the owner of
the checked-out repo and builder user. Unfortunately, this does not work
yet, and the reason is still unclear.

Signed-off-by: Jan Kiszka <jan.kiszka@siemens.com>
2023-02-07 10:38:27 +01:00

51 lines
1.2 KiB
Bash
Executable File
Raw Blame History

#!/bin/bash
# kas-isar: sudo update-binfmts --enable && [ -f /proc/sys/fs/binfmt_misc/status ]
if mount | grep -q "on / type aufs"; then
cat <<EOF >&2
WARNING: Generation of wic images will fail!
Your docker host setup uses broken aufs as storage driver. Adjust the docker
configuration to use a different driver (overlay, overlay2, devicemapper). You
may also need to update the host distribution (e.g. Debian Jessie -> Stretch).
EOF
fi
if [ -z "$USER_ID" ] || [ "$USER_ID" == 0 ]; then
# Not a kas-container call, or we shall run everything as root
GOSU=""
else
GROUP_ID=${GROUP_ID:-$(id -g)}
groupmod -o --gid "$GROUP_ID" builder
usermod -o --uid "$USER_ID" --gid "$GROUP_ID" builder >/dev/null
chown -R "$USER_ID":"$GROUP_ID" /builder
GOSU="gosu builder"
fi
if [ "$PWD" = / ]; then
cd /builder || exit 1
fi
if [ -n "$1" ]; then
case "$1" in
build|checkout|dump|for-all-repos|menu|shell|-*)
# SC2086: Double quote to prevent globbing and word splitting.
# shellcheck disable=2086
exec $GOSU kas "$@"
;;
*)
# SC2086: Double quote to prevent globbing and word splitting.
# shellcheck disable=2086
exec $GOSU "$@"
;;
esac
else
# SC2086: Double quote to prevent globbing and word splitting.
# shellcheck disable=2086
exec $GOSU bash
fi
Reference in New Issue View Git Blame Copy Permalink