From 45b129fb55ebcbaef2d56f00d2f34ee218cb8d8a Mon Sep 17 00:00:00 2001 From: techknowlogick Date: Wed, 7 Jul 2021 15:03:54 -0400 Subject: [PATCH] Update seccomp to 20.10 docker (#322) * Update seccomp to 20.10 docker --- docker/docker/Dockerfile.linux.amd64 | 9 +++++++++ docker/docker/Dockerfile.linux.arm | 2 +- docker/docker/Dockerfile.linux.arm64 | 9 +++++++++ 3 files changed, 19 insertions(+), 1 deletion(-) diff --git a/docker/docker/Dockerfile.linux.amd64 b/docker/docker/Dockerfile.linux.amd64 index e96d96be..8281b2a4 100644 --- a/docker/docker/Dockerfile.linux.amd64 +++ b/docker/docker/Dockerfile.linux.amd64 @@ -2,5 +2,14 @@ FROM docker:20.10.10-dind ENV DOCKER_HOST=unix:///var/run/docker.sock +RUN apk --update add --virtual .build-deps curl && \ + mkdir -p /etc/docker/ && \ + curl -SsL -o /etc/docker/default.json https://raw.githubusercontent.com/moby/moby/20.10/profiles/seccomp/default.json && \ + sed -i 's/SCMP_ACT_ERRNO/SCMP_ACT_TRACE/g' /etc/docker/default.json && \ + chmod 600 /etc/docker/default.json && \ + apk del .build-deps && \ + rm -rf /var/cache/apk/* && \ + rm -rf /tmp/* + ADD release/linux/amd64/drone-docker /bin/ ENTRYPOINT ["/usr/local/bin/dockerd-entrypoint.sh", "/bin/drone-docker"] diff --git a/docker/docker/Dockerfile.linux.arm b/docker/docker/Dockerfile.linux.arm index 38c8992e..ace5a378 100644 --- a/docker/docker/Dockerfile.linux.arm +++ b/docker/docker/Dockerfile.linux.arm @@ -4,7 +4,7 @@ ENV DOCKER_HOST=unix:///var/run/docker.sock RUN apk --update add --virtual .build-deps curl && \ mkdir -p /etc/docker/ && \ - curl -SsL -o /etc/docker/default.json https://raw.githubusercontent.com/moby/moby/19.03/profiles/seccomp/default.json && \ + curl -SsL -o /etc/docker/default.json https://raw.githubusercontent.com/moby/moby/20.10/profiles/seccomp/default.json && \ sed -i 's/SCMP_ACT_ERRNO/SCMP_ACT_TRACE/g' /etc/docker/default.json && \ chmod 600 /etc/docker/default.json && \ apk del .build-deps && \ diff --git a/docker/docker/Dockerfile.linux.arm64 b/docker/docker/Dockerfile.linux.arm64 index d12c4f81..37f4fe24 100644 --- a/docker/docker/Dockerfile.linux.arm64 +++ b/docker/docker/Dockerfile.linux.arm64 @@ -2,5 +2,14 @@ FROM arm64v8/docker:20.10.9-dind ENV DOCKER_HOST=unix:///var/run/docker.sock +RUN apk --update add --virtual .build-deps curl && \ + mkdir -p /etc/docker/ && \ + curl -SsL -o /etc/docker/default.json https://raw.githubusercontent.com/moby/moby/20.10/profiles/seccomp/default.json && \ + sed -i 's/SCMP_ACT_ERRNO/SCMP_ACT_TRACE/g' /etc/docker/default.json && \ + chmod 600 /etc/docker/default.json && \ + apk del .build-deps && \ + rm -rf /var/cache/apk/* && \ + rm -rf /tmp/* + ADD release/linux/arm64/drone-docker /bin/ ENTRYPOINT ["/usr/local/bin/dockerd-entrypoint.sh", "/bin/drone-docker"]