Skip to content

Use container labels to get container ID on GitLab #126

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 27, 2023
Merged

Use container labels to get container ID on GitLab #126

merged 1 commit into from
Apr 27, 2023

Conversation

@securitykernel
Copy link
Contributor

@securitykernel securitykernel commented Mar 16, 2023

I recently updated a self-hosted GitLab Runner from Ubuntu 20.04 to 22.04 and noticed that all fuzzing jobs failed because cut -c9- < /proc/1/cpuset which we use to populate CFL_CONTAINER_ID returns an empty string.

Instead, use docker container labels set by GitLab Runner to get the running container ID. Solution found via Stack Overflow.

Also harmonizes case sensitivity for all mentioning of GitLab.

@jonathanmetzman
Copy link
Collaborator

jonathanmetzman commented Mar 16, 2023

Will this work for non-self-hosted runners?

@jonathanmetzman
Copy link
Collaborator

jonathanmetzman commented Mar 16, 2023

Thanks for this btw

@securitykernel
Copy link
Contributor Author

securitykernel commented Mar 17, 2023

As far as I know the only supported mode with GitLab.com SaaS Runners is Docker-in-Docker. These runners don't provide access to docker.sock other than with Docker-in-Docker, as can be seen in https://gitlab.com/securitykernel/cflite-example.

@securitykernel securitykernel mentioned this pull request Apr 27, 2023
Open
@securitykernel
Copy link
Contributor Author

securitykernel commented Apr 27, 2023

Maybe I was not clear enough here. The change is not relevant for non -self hosted runners, because the variable is not used there anyway.

jonathanmetzman
jonathanmetzman approved these changes Apr 27, 2023
View reviewed changes
Copy link
Collaborator

@jonathanmetzman jonathanmetzman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@jonathanmetzman jonathanmetzman merged commit e647b6c into google:main Apr 27, 2023
@jonathanmetzman
Copy link
Collaborator

jonathanmetzman commented Apr 27, 2023

Sorry for not merging this earlier.

@jonathanmetzman
Copy link
Collaborator

jonathanmetzman commented Apr 27, 2023
edited
Loading

Maybe I was not clear enough here. The change is not relevant for non -self hosted runners, because the variable is not used there anyway.

Ah maybe I shouldn't have merged this...might revert.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jonathanmetzman jonathanmetzman jonathanmetzman approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@securitykernel @jonathanmetzman