Home Explore Help
Register Sign In
Apq
/
s6-overlay
mirror of https://github.com/just-containers/s6-overlay.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: bb136eb025
Branches Tags
s6-overlay
/
layout
/
rootfs-overlay
/
package
/
admin
/
s6-overlay-@VERSION@
/
libexec
/
preinit

preinit 2.4 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. #!/bin/sh -e
    2. 

  2. 

  3. # This script is spawned by s6-overlay-suexec, as the
    4. 

  4. # first thing in the userland boot process.
    5. 

  5. # It is run as root even with a USER directive present.
    6. 

  6. # If USER, then UID and GID hold the uid and gid of the user
    7. 

  7. # (this is used by s6-chown -U).
    8. 

  8. 

  9. prog=/package/admin/s6-overlay/libexec/preinit
    10. 

  10. 

  11. checknoexec () {
    12. 

  12.   IFS=,
    13. 

  13.   set -- $1
    14. 

  14.   IFS=
    15. 

  15.   while test "$#" -gt 0 ; do
    16. 

  16.     if test "$1" = noexec ; then
    17. 

  17.       return 0
    18. 

  18.     fi
    19. 

  19.     shift
    20. 

  20.   done
    21. 

  21.   return 1
    22. 

  22. }
    23. 

  23. 

  24. # Ensure /run is writable
    25. 

  25. if test "0$S6_READ_ONLY_ROOT" -ne 0 ; then
    26. 

  26.   echo "$prog: info: read-only root" 1>&2
    27. 

  27.   if ! test -d /run ; then
    28. 

  28.     echo "$prog: fatal: /run is missing or not a directory" 1>&2
    29. 

  29.     exit 100
    30. 

  30.   fi
    31. 

  31.   if : > '/run/test of writability' 2>/dev/null ; then
    32. 

  32.     echo "$prog: info: writable /run. Checking for executability." 1>&2
    33. 

  33.     s6-rmrf '/run/test of writability'
    34. 

  34.     if ! s6-mount -o remount,rw,exec tmpfs /run 2>/dev/null ; then
    35. 

  35.       notfound=true
    36. 

  36.       while read these filesystem type options please ; do
    37. 

  37.         if test $filesystem = /run ; then
    38. 

  38.           notfound=false
    39. 

  39.           if checknoexec "$options" ; then
    40. 

  40.             echo "$prog: warning: your container manager pre-mounts run with \
    41. 

  41. the incorrect noexec option, which s6-overlay cannot work with; expect /init \
    42. 

  42. to crash soon. To fix the issue, either pre-mount /run with the exec option, \
    43. 

  43. or as a workaround give this container the CAP_SYS_ADMIN capability so \
    44. 

  44. s6-overlay can fix it at run time."
    45. 

  45.           fi
    46. 

  46.           break
    47. 

  47.         fi
    48. 

  48.       done < /proc/mounts
    49. 

  49.       if $notfound ; then
    50. 

  50.         echo "$prog: warning: unable to find /run in /proc/mounts, check that \
    51. 

  51. your container manager pre-mounts /proc, and that /run is a tmpfs. The container \
    52. 

  52. is likely to crash soon, if /run is (incorrectly) mounted noexec."
    53. 

  53.       fi
    54. 

  54.     fi
    55. 

  55.   else
    56. 

  56.     echo "$prog: info: creating a tmpfs on /run" 1>&2
    57. 

  57.     s6-mount -wt tmpfs -o exec,mode=0755 tmpfs /run
    58. 

  58.   fi
    59. 

  59. else
    60. 

  60.   s6-mkdir -p -m 0755 /run
    61. 

  61. fi
    62. 

  62. if test "0$UID" -ne 0 ; then
    63. 

  63.   s6-chown -U -- /run
    64. 

  64. fi
    65. 

  65. 

  66. # Ensure /var/run is a symlink to /run
    67. 

  67. if test -L /var/run && test "`s6-linkname -f /var/run`" = /run ; then : ; else
    68. 

  68.   echo "$prog: notice: /var/run is not a symlink to /run, fixing it" 1>&2
    69. 

  69.   s6-rmrf /var/run
    70. 

  70.   s6-ln -s /run /var/run
    71. 

  71. fi
    72. 

  72. 

  73. # Clean up in case /run hasn't been wiped or USER has changed
    74. 

  74. s6-rmrf /run/s6 /run/service /run/uncaught-logs /run/s6-rc*
    75. 

  75. s6-mkdir -m 0755 /run/s6 /run/service
    76. 

  76. if test "0$UID" -ne 0 ; then
    77. 

  77.   s6-chown -U -- /run/s6
    78. 

  78.   s6-chown -U -- /run/service
    79. 

  79. fi
    80.