[PATCH v3 3/9] docker: Support building for multiple architectures
Tom Rini
trini at konsulko.com
Wed Nov 13 00:11:21 CET 2024
On Tue, Nov 12, 2024 at 04:08:17PM +0100, Heinrich Schuchardt wrote:
> On 12.11.24 15:10, Simon Glass wrote:
> > Add instructions on how to build the file for multiple architectures.
> > Add a message indicating what is happening.
> >
> > Update the documentation as well. Drop the 'sudo' since these should not
> > be needed if Docker is correctly configured.
>
> Please, explain what you mean by correctly configured.
>
> By default Ubuntu requires sudo to execute docker.
>
> https://docs.docker.com/engine/install/linux-postinstall/#manage-docker-as-a-non-root-user
> teaches us:
>
> "The docker group grants root-level privileges to the user. For details
> on how this impacts security in your system, see Docker Daemon Attack
> Surface."
>
> So adding a user to the docker group may not be the best idea.
>
> Installing Docker in rootless mode is possible
> (https://docs.docker.com/engine/security/rootless/) but as said it is
> not necessarily the distro default.
Yes, please drop this patch as we expect to handle things in the
broadest possible way, so not assuming that the user is in the docker
group.
--
Tom
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 659 bytes
Desc: not available
URL: <https://lists.denx.de/pipermail/u-boot/attachments/20241112/d20a142d/attachment.sig>
More information about the U-Boot
mailing list