Commit d0ccbb7c authored by Ross Younger's avatar Ross Younger Committed by Kevin Daudt
Browse files

abuild: filter out security.selinux xattrs

This patch modifies abuild's behaviour to be independent of
whether SELinux labels are present in the build environment.

This is a workaround for containerised build environments where the
hosting environment has SELinux enabled. Security labels leak into the
container, manifesting as xattrs.

Discussion thread:
https://lists.alpinelinux.org/~alpine/devel/%3CCA%2Bgy4ieuXLuQddxmPuiucyZbut%3D14cR8tgmGrh0qE9qLDBivmg%40mail.gmail.com%3E
parent f2ab7751
Pipeline #96313 passed with stage
in 48 seconds
......@@ -1717,6 +1717,7 @@ create_apks() {
# explicitly sort package content
find "$@" -print0 | LC_ALL=C sort -z | tar --xattrs \
--xattrs-exclude=security.selinux \
--format=posix \
--pax-option=exthdr.name=%d/PaxHeaders/%f,atime:=0,ctime:=0 \
--mtime="@${SOURCE_DATE_EPOCH}" \
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment