Nulo/fireactions
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

agregar TODOs para hacer root readonly (seguridad)

Browse source
This commit is contained in:
Cat /dev/Nulo 2023-06-23 17:42:23 -03:00
parent ec3a75acca
commit 63690627d6
2 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
js/index.js
View file

@ -91,6 +91,7 @@ class FirecrackerInstance {
drive_id: "rootfs", drive_id: "rootfs",
path_on_host: "../rootfs.ext4", path_on_host: "../rootfs.ext4",
is_root_device: true, is_root_device: true,
// TODO: readonly
is_read_only: false, is_read_only: false,
}); });
if (opts?.drives) { if (opts?.drives) {

1
rootfs/build.js
View file

@ -82,6 +82,7 @@ hostname -F /etc/hostname
// r("/root/.ssh/authorized_keys"), // r("/root/.ssh/authorized_keys"),
// ]); // ]);
// TODO: hacer squashfs
const ext4 = "rootfs.ext4"; const ext4 = "rootfs.ext4";
await rm(ext4); await rm(ext4);
await execFile("fallocate", ["--length", "1G", ext4]); await execFile("fallocate", ["--length", "1G", ext4]);