mirror of
https://github.com/containers/podman.git
synced 2025-11-30 10:07:33 +08:00
vendor: update buildah to latest
Includes a fix for CVE-2024-9407 Signed-off-by: Paul Holzinger <pholzing@redhat.com>
This commit is contained in:
27
vendor/github.com/containers/buildah/run_freebsd.go
generated
vendored
27
vendor/github.com/containers/buildah/run_freebsd.go
generated
vendored
@@ -1,5 +1,4 @@
|
||||
//go:build freebsd
|
||||
// +build freebsd
|
||||
|
||||
package buildah
|
||||
|
||||
@@ -46,16 +45,14 @@ const (
|
||||
PROC_REAP_RELEASE = 3
|
||||
)
|
||||
|
||||
var (
|
||||
// We dont want to remove destinations with /etc, /dev as
|
||||
// rootfs already contains these files and unionfs will create
|
||||
// a `whiteout` i.e `.wh` files on removal of overlapping
|
||||
// files from these directories. everything other than these
|
||||
// will be cleaned up
|
||||
nonCleanablePrefixes = []string{
|
||||
"/etc", "/dev",
|
||||
}
|
||||
)
|
||||
// We dont want to remove destinations with /etc, /dev as
|
||||
// rootfs already contains these files and unionfs will create
|
||||
// a `whiteout` i.e `.wh` files on removal of overlapping
|
||||
// files from these directories. everything other than these
|
||||
// will be cleaned up
|
||||
var nonCleanablePrefixes = []string{
|
||||
"/etc", "/dev",
|
||||
}
|
||||
|
||||
func procctl(idtype int, id int, cmd int, arg *byte) error {
|
||||
_, _, e1 := unix.Syscall6(
|
||||
@@ -185,7 +182,7 @@ func (b *Builder) Run(command []string, options RunOptions) error {
|
||||
uid, gid := spec.Process.User.UID, spec.Process.User.GID
|
||||
idPair := &idtools.IDPair{UID: int(uid), GID: int(gid)}
|
||||
|
||||
mode := os.FileMode(0755)
|
||||
mode := os.FileMode(0o755)
|
||||
coptions := copier.MkdirOptions{
|
||||
ChownNew: idPair,
|
||||
ChmodNew: &mode,
|
||||
@@ -226,7 +223,7 @@ func (b *Builder) Run(command []string, options RunOptions) error {
|
||||
})
|
||||
}
|
||||
}
|
||||
err = b.addHostsEntries(hostsFile, mountPoint, entries, nil)
|
||||
err = b.addHostsEntries(hostsFile, mountPoint, entries, nil, "")
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
@@ -244,7 +241,7 @@ func (b *Builder) Run(command []string, options RunOptions) error {
|
||||
// Only add entries here if we do not have to do setup network,
|
||||
// if we do we have to do it much later after the network setup.
|
||||
if !configureNetwork {
|
||||
err = b.addResolvConfEntries(resolvFile, nil, nil, false, true)
|
||||
err = b.addResolvConfEntries(resolvFile, nil, spec, false, true)
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
@@ -536,7 +533,7 @@ func (b *Builder) configureNamespaces(g *generate.Generator, options *RunOptions
|
||||
namespaceOptions.AddOrReplace(options.NamespaceOptions...)
|
||||
|
||||
networkPolicy := options.ConfigureNetwork
|
||||
//Nothing was specified explicitly so network policy should be inherited from builder
|
||||
// Nothing was specified explicitly so network policy should be inherited from builder
|
||||
if networkPolicy == NetworkDefault {
|
||||
networkPolicy = b.ConfigureNetwork
|
||||
|
||||
|
||||
Reference in New Issue
Block a user