[Buildroot] [PATCH RFC 1/2] utils/docker-run: make it compatible with SELinux
Antoine Tenart
atenart at kernel.org
Thu Jul 27 08:13:53 UTC 2023
Hi Thomas,
Quoting Thomas Petazzoni via buildroot (2023-07-26 23:20:07)
>
> diff --git a/utils/docker-run b/utils/docker-run
> index 17c587a484..eee1aad7a4 100755
> --- a/utils/docker-run
> +++ b/utils/docker-run
> @@ -12,8 +12,8 @@ declare -a docker_opts=(
> -i
> --rm
> --user "$(id -u):$(id -g)"
> - --mount "type=bind,src=${MAIN_DIR},dst=${MAIN_DIR}"
> - --mount "type=bind,src=${GIT_DIR},dst=${GIT_DIR}"
> + --volume "${MAIN_DIR}:${MAIN_DIR}:Z"
> + --volume "${GIT_DIR}:${GIT_DIR}:Z"
Using Z will label all the files in MAIN_DIR and GIT_DIR with a private
label and IIRC that means relabeling all files each time a new container
is started; which can take quite some time if there are lots if files in
there. However z can be used to label files with a shared label and they
won't be relabeled after the first run.
Antoine
More information about the buildroot
mailing list