[bitnami/gitlab-runner-helper] Release 15.10.1-debian-11-r6 (#30908)

Signed-off-by: Bitnami Containers <bitnami-bot@vmware.com>
2023-04-19 22:19:54 +02:00 · 2023-04-19 22:19:54 +02:00 · 364e5f7b63
parent 8fbc577224
commit 364e5f7b63
4 changed files with 101 additions and 10 deletions
--- a/bitnami/gitlab-runner-helper/15/debian-11/Dockerfile
+++ b/bitnami/gitlab-runner-helper/15/debian-11/Dockerfile
@ -3,10 +3,10 @@ FROM docker.io/bitnami/minideb:bullseye
 ARG TARGETARCH

 LABEL org.opencontainers.image.base.name="docker.io/bitnami/minideb:bullseye" \
-      org.opencontainers.image.created="2023-04-16T19:31:37Z" \
+      org.opencontainers.image.created="2023-04-19T19:59:15Z" \
      org.opencontainers.image.description="Application packaged by VMware, Inc" \
      org.opencontainers.image.licenses="Apache-2.0" \
-      org.opencontainers.image.ref.name="15.10.1-debian-11-r5" \
+      org.opencontainers.image.ref.name="15.10.1-debian-11-r6" \
      org.opencontainers.image.title="gitlab-runner-helper" \
      org.opencontainers.image.vendor="VMware, Inc." \
      org.opencontainers.image.version="15.10.1"
@ -22,7 +22,6 @@ SHELL ["/bin/bash", "-o", "pipefail", "-c"]
 RUN install_packages ca-certificates curl git git-lfs openssh-client procps
 RUN mkdir -p /tmp/bitnami/pkg/cache/ && cd /tmp/bitnami/pkg/cache/ && \
    COMPONENTS=( \
-      "gosu-1.16.0-5-linux-${OS_ARCH}-debian-11" \
      "gitlab-runner-helper-15.10.1-2-linux-${OS_ARCH}-debian-11" \
    ) && \
    for COMPONENT in "${COMPONENTS[@]}"; do \
--- a/bitnami/gitlab-runner-helper/15/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json
+++ b/bitnami/gitlab-runner-helper/15/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json
@ -4,11 +4,5 @@
        "distro": "debian-11",
        "type": "NAMI",
        "version": "15.10.1-2"
-    },
-    "gosu": {
-        "arch": "amd64",
-        "distro": "debian-11",
-        "type": "NAMI",
-        "version": "1.16.0-5"
    }
 }
--- a/bitnami/gitlab-runner-helper/15/debian-11/prebuildfs/opt/bitnami/scripts/libos.sh
+++ b/bitnami/gitlab-runner-helper/15/debian-11/prebuildfs/opt/bitnami/scripts/libos.sh
@ -553,3 +553,98 @@ get_root_disk_device_id() {
 get_root_disk_size() {
    fdisk -l "$(get_root_disk_device_id)" | grep 'Disk.*bytes' | sed -E 's/.*, ([0-9]+) bytes,.*/\1/' || true
 }
+
+########################
+# Run command as a specific user and group (optional)
+# Arguments:
+#   $1 - USER(:GROUP) to switch to
+#   $2..$n - command to execute
+# Returns:
+#   Exit code of the specified command
+#########################
+run_as_user() {
+    run_chroot "$@"
+}
+
+########################
+# Execute command as a specific user and group (optional),
+# replacing the current process image
+# Arguments:
+#   $1 - USER(:GROUP) to switch to
+#   $2..$n - command to execute
+# Returns:
+#   Exit code of the specified command
+#########################
+exec_as_user() {
+    run_chroot --replace-process "$@"
+}
+
+########################
+# Run a command using chroot
+# Arguments:
+#   $1 - USER(:GROUP) to switch to
+#   $2..$n - command to execute
+# Flags:
+#   -r | --replace-process - Replace the current process image (optional)
+# Returns:
+#   Exit code of the specified command
+#########################
+run_chroot() {
+    local userspec
+    local user
+    local homedir
+    local replace=false
+    local -r cwd="$(pwd)"
+
+    # Parse and validate flags
+    while [[ "$#" -gt 0 ]]; do
+        case "$1" in
+            -r | --replace-process)
+                replace=true
+                ;;
+            --)
+                shift
+                break
+                ;;
+            -*)
+                stderr_print "unrecognized flag $1"
+                return 1
+                ;;
+            *)
+                break
+                ;;
+        esac
+        shift
+    done
+
+    # Parse and validate arguments
+    if [[ "$#" -lt 2 ]]; then
+        echo "expected at least 2 arguments"
+        return 1
+    else
+        userspec=$1
+        shift
+
+        # userspec can optionally include the group, so we parse the user
+        user=$(echo "$userspec" | cut -d':' -f1)
+    fi
+
+    if ! am_i_root; then
+        error "Could not switch to '${userspec}': Operation not permitted"
+        return 1
+    fi
+
+    # Get the HOME directory for the user to switch, as chroot does
+    # not properly update this env and some scripts rely on it
+    homedir=$(eval echo "~${user}")
+    if [[ ! -d $homedir ]]; then
+        homedir="${HOME:-/}"
+    fi
+
+    # Obtaining value for "$@" indirectly in order to properly support shell parameter expansion
+    if [[ "$replace" = true ]]; then
+        exec chroot --userspec="$userspec" / bash -c "cd ${cwd}; export HOME=${homedir}; exec \"\$@\"" -- "$@"
+    else
+        chroot --userspec="$userspec" / bash -c "cd ${cwd}; export HOME=${homedir}; exec \"\$@\"" -- "$@"
+    fi
+}
--- a/bitnami/gitlab-runner-helper/15/debian-11/rootfs/opt/bitnami/scripts/gitlab-runner-helper/entrypoint.sh
+++ b/bitnami/gitlab-runner-helper/15/debian-11/rootfs/opt/bitnami/scripts/gitlab-runner-helper/entrypoint.sh
@ -25,7 +25,10 @@ if ! am_i_root; then
        export NSS_WRAPPER_PASSWD
        NSS_WRAPPER_GROUP="$(mktemp)"
        export NSS_WRAPPER_GROUP
-        echo "gitlab-runner:x:$(id -u):$(id -g):GitlabRunner:/home/gitlab-runner:/bin/false" >"$NSS_WRAPPER_PASSWD"
+        if [[ "$HOME" == "/" ]]; then
+            export HOME=/home/gitlab-runner
+        fi
+        echo "gitlab-runner:x:$(id -u):$(id -g):GitlabRunner:${HOME}:/bin/false" >"$NSS_WRAPPER_PASSWD"
        echo "gitlab-runner:x:$(id -g):" >"$NSS_WRAPPER_GROUP"
        chmod 400 "$NSS_WRAPPER_PASSWD" "$NSS_WRAPPER_GROUP"
    fi