From 37ce18f4576deeda593101d15842aa8c045b120d Mon Sep 17 00:00:00 2001 From: Luca Guerra Date: Thu, 7 Sep 2023 14:01:04 +0000 Subject: [PATCH] fix(docker): prevent variable expansion with FALCO_DRIVER_LOADER_OPTIONS Signed-off-by: Luca Guerra --- docker/falco/docker-entrypoint.sh | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/docker/falco/docker-entrypoint.sh b/docker/falco/docker-entrypoint.sh index 4eaae1e7391..23b98d3c2ed 100755 --- a/docker/falco/docker-entrypoint.sh +++ b/docker/falco/docker-entrypoint.sh @@ -27,7 +27,9 @@ if [[ -z "${SKIP_DRIVER_LOADER}" ]]; then ln -s "$i" "/usr/src/$base" done - falco_driver_loader_option_arr=($FALCO_DRIVER_LOADER_OPTIONS) + # convert the optional space-separated env variable FALCO_DRIVER_LOADER_OPTIONS to array, prevent + # shell expansion and use it as argument list for falco-driver-loader + read -a falco_driver_loader_option_arr <<< $FALCO_DRIVER_LOADER_OPTIONS /usr/bin/falco-driver-loader "${falco_driver_loader_option_arr[@]}" fi