Skip to content

Commit

Permalink
.github/workflows: enable fs-verity on /
Browse files Browse the repository at this point in the history
...instead of using an extra loopback partition.

Suggested by Colin in containers/composefs#389.
  • Loading branch information
allisonkarlitskaya committed Oct 29, 2024
1 parent 379cef7 commit 78d3670
Showing 1 changed file with 2 additions and 12 deletions.
14 changes: 2 additions & 12 deletions .github/workflows/rust.yml
Original file line number Diff line number Diff line change
Expand Up @@ -15,18 +15,8 @@ jobs:
runs-on: ubuntu-24.04

steps:
- name: Create and mount an fs-verity-enabled filesystem
run: |
sudo truncate --size 4GiB /verity.fs
sudo mkfs.ext4 -O verity /verity.fs
sudo mkdir /verity
sudo mount -o loop /verity.fs /verity
sudo chmod 1777 /verity
mkdir /verity/worker
mkdir -p ~/.var
ln -sf /verity/worker ~/.var/tmp
- name: Enable fs-verity on /
run: sudo tune2fs -O verity $(findmnt -vno SOURCE /)
- uses: actions/checkout@v4
- name: Build
run: cargo build --verbose
Expand Down

0 comments on commit 78d3670

Please sign in to comment.