forge/qubes-builder-alpine
1
0
Fork 0
Code Issues 7 Pull requests 1 Projects Releases 12 Packages Wiki Activity Actions

Port build system to Forge Actions #15

New issue
Closed
opened 2024-08-14 05:01:16 +00:00 by forge · 3 comments
forge commented 2024-08-14 05:01:16 +00:00
Owner
Copy link
No description provided.
forge added this to the QubesOS Alpine Linux Template project 2024-08-14 05:01:16 +00:00
forge commented 2024-08-21 14:40:29 +00:00
Author
Owner
Copy link

Hit a snag: loop mounts dont work within docker containers. Since the infra is docker-on-lxc, LXC would require making it available. Since docker runs as root in this unpriviliged container, it would pick up whatever loop device lxc would create. But making loop devices available breaks LXC's security context. So either I find a way to hack loopback support in userspace, or break some security contexts.

Hit a snag: loop mounts dont work within docker containers. Since the infra is docker-on-lxc, LXC would require making it available. Since docker runs as root in this unpriviliged container, it would pick up whatever loop device lxc would create. But making loop devices available breaks LXC's security context. So either I find a way to hack loopback support in userspace, or break some security contexts.
forge commented 2024-08-21 17:54:30 +00:00
Author
Owner
Copy link

I've converted linux-template-builder to use fuse instead, which works in docker.

I've converted linux-template-builder to use fuse instead, which works in docker.
forge commented 2024-08-22 20:30:18 +00:00
Author
Owner
Copy link

Done with a8b3f4c64d

Done with https://ayakael.net/forge/qubes-builder-alpine/commit/a8b3f4c64d322e3610e4a8709ef54b75cd96df17
forge closed this issue 2024-08-22 20:30:18 +00:00
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
r4.2
forgejo-319
r4.1
master
alpine320-r42-r3
alpine320-r42-r2
alpine320-r42-r1
alpine320-r42-r0
alpine319-r42-r1
alpine319-r41-r1
alpine319-r42-r0
alpine319-r41-r0
alpine318-r42-r1
alpine318-r42-r0
alpine318-r41-r1
alpine318-r41-r0
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
QubesOS Alpine Linux Template
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: forge/qubes-builder-alpine#15
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?