Skip to content

Commit

Permalink
chore: Copy signing keys to /etc/ only (#288)
Browse files Browse the repository at this point in the history 
Supplements main PR: blue-build/modules#375

Tests & it works, can be merged.
  • Loading branch information
@fiftydinar
fiftydinar authored Dec 8, 2024
1 parent a8cac2a commit 273d879
Showing 1 changed file with 0 additions and 2 deletions.
2 changes: 0 additions & 2 deletions template/templates/Containerfile.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,9 +26,7 @@ ARG RUST_LOG_STYLE=always
# Key RUN
RUN --mount=type=bind,from=stage-keys,src=/keys,dst=/tmp/keys \
mkdir -p /etc/pki/containers/ \
mkdir -p /usr/etc/pki/containers/ \
&& cp /tmp/keys/* /etc/pki/containers/ \
&& cp /tmp/keys/* /usr/etc/pki/containers/ \
&& ostree container commit

# Bin RUN
Expand Down

1 comment on commit 273d879

@yacoob
Copy link

@yacoob yacoob commented on 273d879 Dec 27, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sidenote: before this edit the "Key RUN" command was buggy - the second mkdir was lacking && and as a result was interpreted as an argument for the first mkdir. Which lead to /mkdir being present in the resulting image.

Adding this for the posterity.

Please sign in to comment.