From patchwork Fri Feb 20 17:16:01 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Felix Moessbauer X-Patchwork-Id: 4902 Return-Path: Received: from shymkent.ilbers.de ([unix socket]) by shymkent (Cyrus 2.5.10-Debian-2.5.10-3+deb9u2) with LMTPA; Fri, 20 Feb 2026 18:17:46 +0100 X-Sieve: CMU Sieve 2.4 Received: from mail-dl1-f64.google.com (mail-dl1-f64.google.com [74.125.82.64]) by shymkent.ilbers.de (8.15.2/8.15.2/Debian-8+deb9u1) with ESMTPS id 61KHHi6r007064 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Fri, 20 Feb 2026 18:17:45 +0100 Received: by mail-dl1-f64.google.com with SMTP id a92af1059eb24-1275c2ae713sf88822241c88.0 for ; Fri, 20 Feb 2026 09:17:45 -0800 (PST) ARC-Seal: i=3; a=rsa-sha256; t=1771607858; cv=pass; d=google.com; s=arc-20240605; b=Hl/+uNrH1DNEhjLB/ilVdgoTdyBSx7Aj5QvmKVEwxj2CrisBKs3uIdyPn107MUOlTI ad3wXOLtKoojaQEZSnCLg1iqA/yMg6Y63JcXgbxhk0x8rWx6DPyyunmn/OJmlaKiuHjx aOGMXwaRzIxo0pxLrvWaH8GkgbacpNbOaxsRlWuCv10Qeg1B+tmskA9WGk+lytdrIoT1 ePb+dox6hJgZYOAohj9346wO+3hdzyCZc7+6FbVLoCH0+J3zcxROFivIIjWrSGfRb1f+ lYf+cNznaUL9OhsgW4nNu6Oba2x1AzOjQymxmq/3Ly/rynLJx0eW2SzcK2TnnwE5RJLQ IW9g== ARC-Message-Signature: i=3; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to:mime-version:references :in-reply-to:message-id:date:subject:cc:to:from:dkim-signature; bh=SWjzrM3GOQ4ixDMUGUriAlF4kSGzZYfhJerJutZ2jIg=; fh=G/Uefw9yWfZ45wA/eFQoVCqOHJhRzCdtLYjT8axyuWg=; b=gFH5Dp2OlzslNP/fVnrOmKGckQ6AUlVouNkABfvTpVKcYJ6uu9KnysQ1YROyxFThDZ gO7mv5+R+dTSi9/JasaNT1WfxeZb7VrH8JbyWCKjhNJJtigylFb8np0B8SN1qow8jtKP XpjN9LhbtB3Jc9/K6BgANeV2Ir3FHtqtP+MsTjtJrX+b4I42/KPRRZRl20qvLTobx+Ho xvzEUdSgBREPrG7uuzkHZgCMzQPf3DGeeC1VBdCcRstlL168rRwdPz6ISjtUvTaojFf3 e8RFia8dd/f6YEzKBDeVKCnzHsWgqrkZUhQT1DLhRcKcLEoFFJkM9VFh720f5unP7J/M N83A==; darn=isar-build.org ARC-Authentication-Results: i=3; gmr-mx.google.com; dkim=pass header.i=@siemens.com header.s=selector2 header.b=JIg62T1k; arc=pass (i=1 spf=pass spfdomain=siemens.com dkim=pass dkdomain=siemens.com dmarc=pass fromdomain=siemens.com); spf=pass (google.com: domain of felix.moessbauer@siemens.com designates 2a01:111:f403:c20f::7 as permitted sender) smtp.mailfrom=felix.moessbauer@siemens.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com; s=20230601; t=1771607858; x=1772212658; darn=isar-build.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to :x-original-authentication-results:x-original-sender:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from:from:to :cc:subject:date:message-id:reply-to; bh=SWjzrM3GOQ4ixDMUGUriAlF4kSGzZYfhJerJutZ2jIg=; b=G/ql9ra8pbQofcwsKehjGBIvvwQvvWsine7U9k3XuXgPq2ii3KOl3O+I9Vx7PopKpT O7Xm4jGyemeiifMgNrWZGj5AOld26/wzRYPfFfJL3degmS8PqrNpqWvjodHtDEQAMduJ H4OqO8HkJxIG7oVfu6UD/ew12hWYFvfgQlt4H1253dsAgWxiVU0nHV6FhWNJwRjjcbHR ZerZ8Xfe0Eaxypo63L6KjweZA/OFPvdBeiZkNAyh36Y4RZSzYAJDzIiGQ2zGWNAkZFJ/ KhSOK65Nq/zS01W9CSvN2+O+geMrjk5kKc10FXYwI6PmfRcV1Ndp5ptbpZT3BE6AIiIT 6uLQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1771607858; x=1772212658; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :x-spam-checked-in-group:list-id:mailing-list:precedence:reply-to :x-original-authentication-results:x-original-sender:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :x-beenthere:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=SWjzrM3GOQ4ixDMUGUriAlF4kSGzZYfhJerJutZ2jIg=; b=e9+xD+rtNN+SV16qgu7rk++yIm5ieOKezexVBABVaKPAeuKRJ4YDwO/O9AjNMevrPy zBhTnZD+qhFMvXpE7od9RKHXct/cRbDIBAZuRSQobFnhsfnp+yHZYslipZxIY24xx+2N oUaI/+gpT9VmGopVVYNq0HjDlvZVSKdaiHXoEIBiScRFM8vU2qjv3rxWShlCjIztW9bc YVKdjKu+fhrzkEUTq7ZIsDFwua2MKJLvpSRDSLJPsqyEEZR+JXYv+cB6zwYxM++6E5KJ YhZWGzJxTybn0jYNm9lQ0ycSbiu/vdON4bXpAKKGhMi4EERXJy7/k0NRy/Xvl6p7kxdk tPjw== X-Forwarded-Encrypted: i=3; AJvYcCW4Br0V8vo0PPYZzZzjQpADeej3dCWS4lMHczlGepWjPbOTasEZltuSkKsbwVUgEFHo7YVO52Q=@isar-build.org X-Gm-Message-State: AOJu0YyqMtK7DhGvMn7NOjFrNo+qDlfLwfo4ONI6SD4mRw/dbnf8w02A TzyylfwtnS0sF/B6x15SPOGwQGQE91+E7cAxbrTorbdRuvR2ICaCFcW+ X-Received: by 2002:a05:7022:660c:b0:11b:b179:6e17 with SMTP id a92af1059eb24-1276ad37a67mr151424c88.34.1771607857752; Fri, 20 Feb 2026 09:17:37 -0800 (PST) X-BeenThere: isar-users@googlegroups.com; h="AV1CL+GqP7zc3LIAcrP74jYBrp5AXgj9Kj5F7MdwgwXJ+hHOYQ==" Received: by 2002:a05:7022:20e:b0:11b:519:d7f6 with SMTP id a92af1059eb24-1273067042dls8069725c88.1.-pod-prod-02-us; Fri, 20 Feb 2026 09:17:36 -0800 (PST) X-Received: by 2002:a05:7022:662a:b0:119:e56b:957c with SMTP id a92af1059eb24-1276acb153emr138351c88.1.1771607855759; Fri, 20 Feb 2026 09:17:35 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1771607855; cv=pass; d=google.com; s=arc-20240605; b=K0Gf9DWMCvXVQG8NheLdYTIBjinZozuBCviNbtBz/NTxyIFOngRzoigKpYwxQUNMYM 2YRNXkRjM95wb7FbgN1ibVtVIDmLb4DQHj1x81JakGgh88TLTW5TDHUFOPRSAST0YoaD orA4zsWIR3sUijZA2ecGKiJbO8WAPd9dSvL3qIbisSh9r89cWaX5NA3O65us16NuxVt6 TFPjv0bCv6Ney9szeUMvFrcpaWTqBiaCeOhT8/aN5kack4/uXxb9/5iOdEuERM6Y3Z0+ ii6R9ty0A0IK5z7cm5ilFE4TnrouDURorUydQUyQkKtME5vEzZU25ckJdsEY1cVuc/ca 5+DA== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=mime-version:content-transfer-encoding:references:in-reply-to :message-id:date:subject:cc:to:from:dkim-signature; bh=En+6a6yKgT8sskUWNX0kI4v/OoyI0ok1H843VcpCf2Q=; fh=WkhL8kaJc+l2wQon1t06Ej3uvBGj9sVhNcE8PaS/XbI=; b=LGsLSQlVBo6sNyWUTHyWzq3bj2Fw6uJnbxl8w5WH88LNywWY+1wONohcSYo0iKOq5h JOxuhNG+ddaR67rK6i8mv9fkklSSMmkiSNueYsL4JJ6u5LNmzvCfu5N01Syo7FMOG5U3 JOaL2/IsojR7s6A4mH+VU2mMhCLMkpjYHrpG+LkCurnkM4ErX6oSkBQEDCloeuxBr7dr Us0WZ9pXYO/z9xjdNoWZnyZtq67CrrdwT5cF/HjgyXk9uvYjNm5tEljmXXgRcBKpbp6s DByc6O1yMYHhiAGUKSfS/aOmMOLDj93RVkC8fEt2I8Y3VuQTNBRySO1EpN/9X1cJj8EG XZkQ==; dara=google.com ARC-Authentication-Results: i=2; gmr-mx.google.com; dkim=pass header.i=@siemens.com header.s=selector2 header.b=JIg62T1k; arc=pass (i=1 spf=pass spfdomain=siemens.com dkim=pass dkdomain=siemens.com dmarc=pass fromdomain=siemens.com); spf=pass (google.com: domain of felix.moessbauer@siemens.com designates 2a01:111:f403:c20f::7 as permitted sender) smtp.mailfrom=felix.moessbauer@siemens.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com Received: from OSPPR02CU001.outbound.protection.outlook.com (mail-norwayeastazlp170130007.outbound.protection.outlook.com. [2a01:111:f403:c20f::7]) by gmr-mx.google.com with ESMTPS id a92af1059eb24-1276af6c2b0si1646c88.7.2026.02.20.09.17.35 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 20 Feb 2026 09:17:35 -0800 (PST) Received-SPF: pass (google.com: domain of felix.moessbauer@siemens.com designates 2a01:111:f403:c20f::7 as permitted sender) client-ip=2a01:111:f403:c20f::7; ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=U/wOer1L0Q0pMyr1nSvfOvEq5dCwcLSPZFFv6GVYGnPq4pKxgeS/W3K6AGuhu1djeN0SPO7QDnhJZ4bwCJ04uVXN9M1PTZkjDrfKORRoGRNyfIptGpYEHjQX5feXhh96TJXU7DYcdEUlJ2tSamJKvvMCC5N3wumZumaTwtOxzDmlgzaKhco+AlGb8ZK3MwqPFl4LG/puk7a48KNUt/FrIXOxsTd8tf3tC6YtihMnDT9loC/yDGSqt4sEMKKM2QE6Jl7FzDmqWaGm8wPciGLK7bZ0h+0URDFVR546aOybWQhortlZA9wljp0+IxgJVj4NXPAhsGnlrWdrVUgrxunVuA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=En+6a6yKgT8sskUWNX0kI4v/OoyI0ok1H843VcpCf2Q=; b=ozgRzq/R7FDuXthwxpWRaVFXyEL0rv9uaqjOp6gxBnWVN+2FhYkjzp9L2vP0LzfWbUwI+6ZewobsAp9zpx+2I1OX5qw3yVXwUbiaXUrA6SHD9+ELIs/k0JOz/OyIK6Un5XeL2PtrQd+OgocQzzYzuVo6QJob0Jwt5Ywb5fMu1Tz5zn8aEBs4BZ160iuf5sH/0FdoNRjmxh+CwOQR7lITbNtfQeU/tfaOfp0zN8QGa2yewQMENSCpQ/42qk2SY4SeQ3qLn8BZBoHUKAQ7gMfKu8u34v22KWtWyPqzPYZzVrsGyG0Y3yWrip1PySEcfGec0oUXUj67FO8iOdjwayOidw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none Received: from DU0PR10MB6828.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:10:47f::13) by VI0PR10MB8381.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:800:216::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9632.16; Fri, 20 Feb 2026 17:17:29 +0000 Received: from DU0PR10MB6828.EURPRD10.PROD.OUTLOOK.COM ([fe80::9412:cd7f:3f72:92ab]) by DU0PR10MB6828.EURPRD10.PROD.OUTLOOK.COM ([fe80::9412:cd7f:3f72:92ab%3]) with mapi id 15.20.9632.015; Fri, 20 Feb 2026 17:17:29 +0000 X-Patchwork-Original-From: "'Felix Moessbauer' via isar-users" From: Felix Moessbauer To: isar-users@googlegroups.com Cc: jan.kiszka@siemens.com, quirin.gylstorff@siemens.com, Felix Moessbauer Subject: [RFC v2 19/19] use copy of sbom-chroot for sbom creation Date: Fri, 20 Feb 2026 18:16:01 +0100 Message-ID: <20260220171601.3845113-20-felix.moessbauer@siemens.com> X-Mailer: git-send-email 2.51.0 In-Reply-To: <20260220171601.3845113-1-felix.moessbauer@siemens.com> References: <20260220171601.3845113-1-felix.moessbauer@siemens.com> X-ClientProxiedBy: FR4P281CA0161.DEUP281.PROD.OUTLOOK.COM (2603:10a6:d10:ba::13) To DU0PR10MB6828.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:10:47f::13) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: DU0PR10MB6828:EE_|VI0PR10MB8381:EE_ X-MS-Office365-Filtering-Correlation-Id: b14d1c5b-48f7-436b-1c80-08de70a3ed2e X-MS-Exchange-AtpMessageProperties: SA X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0;ARA:13230040|1800799024|366016|376014; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DU0PR10MB6828.EURPRD10.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(376014);DIR:OUT;SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: tuckYjA6lCJuWjezMreaR9KGuyLKPpiWQZdzUclPlMFjK1hlpB8pHF1HL1dWn5bcszYU/39OBb5ztlIuIMBbvR3gw8ExDk3WlVd0X0RALcES956CC4kN+TaluKdg6PFGKsevt1UkFcjUFKubxnSdp9WilX9nnEahJWR1z9hZyC9X92WbqT7xNmegE42kqid5RyZ3k4HnD9+pO4zPQ9ED8Lmtg5AQc4mKzQLZmEwP0gLPpL79JqyydJh45ataeQRJFjBO0eBbqdIHM5/5TZ4i5+ajMio9s0m8XwmjQfHufEhy2wbwTfzQ0BEiXMathm2ADGlB+vDs4AlNg3jN4Am7b/Ly/8QJvGopWpYxeSPfn3iTrymOky4FMqrUzzm9/qPQES3T71bgJJJL6khSVnwlhRJO8moE7g5i/3fz2BLtnP8muLSYcQsh4qk4SpyQYCshrZX7iqgTnlPFydf4WGRfR/pGWGf0L+QQjaPkuxmh9M1g4C8/FIxvB7uGOJsr8W92Cmzi+8r+Rv/4rXF2PGddpsz+wiH0HN531CT6bNi33PdHg3cMbierQBTJ/XWI1oj+W4k41m14O7UV+WyFAGoWCP1asOElXRYVlEhz7Ryx8+R6Kp3Dcjpdt9vnWmxSG27S403mn1659VwoeJQEzPR7zEF19GHRrsmwzUxF5UZVmEvMMabEyy5XSesXrYW1hyz7M21534G4zlHU8STI8jXKCkyE+sqrsAtixTgo0BaBpol+yXK3LrMqpCqWZkbRzU+ZBqpOebnaVGMT2JTo8eZJlENQqXx473AXmXbvZVHVqW4dgGMJf/0MnOnSIAjlqHaOfgEtHqBXK3qcpTebdg3gI4Z2+/fb5ppJ+Qt10ifxIQsIH0jz5fdyVqiXRwGl3wd6Xhfgrc5ZgHCHp8IYby2H9okkrDrhp7kakjD2Zhonyr+sxah2HE3IR1YjyBRcA6IOV64deJYUF4K9bGB3C/dj7DRqFDrqy6EbBsVyjJFczqZnjmFhjzjG24pbr/kPsPzeHTaGq6bSHVm8Ect/VmZlhg3FEDIg1O17Gl9lcpsgsiY6qJzs82DLGopY5ERYF4VublwtfpNba4QCWuaINX9MkM6C4xG+5BQMQmryMP4Vk+DTS50+K7t5zVPPrPnaXYVofYx4rZyMeqoVtQt+1ASgAaCp34dQirz6TLbQajgKhTFMQFcAgerDXV7NaAOt7zfIlHFg7de8PiD9swgY3YQmxsbz/qztTjXMCBsRMJEy/evZVUXwBI8gWlVEiJjqtUj1j+XlS7fk7/WfTOX2J4Q4ABjdl1ROBmPJiBlPQkSLGXrSZmQEMDz/jlH3R2d3uhZtrdNSsJG/SLUxAiUGfPPSGgwKdLMynZ6m20UP4ZZquC0xjLhBn3G5N3g7UwlrjVp22n0TLi3R4oX2IGoLfpYQs2g1N4WbZqtJN7BB/HZB2fRtY/j4n0bcTtnS/wSjtcYUPjwjW2PWWQrxC+aE7rWDS3OlythTht9GD3Knp6DyrnZYk8Bxg43NNBvwqDMYF0fLV0Ooz249RZsyIu9jufUoCiByKQXo9eHWyEVXnyFcW2OPbsGegiwHtA8CWfINWDBOVzI9Gm6piWiiKwJJ/TSnrLz3wrDhvUtnIu+dVIQAyuP7vyPsD66MB2GkXPbDA5hPlHBPkRrHOvloEPtN2yTxKdbYKFV75pLdLQ/r77RAZs8XpzluWya17rC/b0v30gJ3CfxHy2/sgodBiYQRKBEZsdCLlyIx4XP4Zp4OHyw0jRc= X-OriginatorOrg: siemens.com X-MS-Exchange-CrossTenant-Network-Message-Id: b14d1c5b-48f7-436b-1c80-08de70a3ed2e X-MS-Exchange-CrossTenant-AuthSource: DU0PR10MB6828.EURPRD10.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Feb 2026 17:17:29.5611 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: vZO3Kbb+na2XWxaG1uO0yaCW/V43voQ5S+nIqQp7OUfmHU2wF4SyFEhc+y1e1rO2J3mumwSH/7ssWU/lcFvQbtaw6nL0rVleOJIDyhP22Ms= X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI0PR10MB8381 X-Original-Sender: felix.moessbauer@siemens.com X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass header.i=@siemens.com header.s=selector2 header.b=JIg62T1k; arc=pass (i=1 spf=pass spfdomain=siemens.com dkim=pass dkdomain=siemens.com dmarc=pass fromdomain=siemens.com); spf=pass (google.com: domain of felix.moessbauer@siemens.com designates 2a01:111:f403:c20f::7 as permitted sender) smtp.mailfrom=felix.moessbauer@siemens.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com X-Original-From: Felix Moessbauer Reply-To: Felix Moessbauer Precedence: list Mailing-list: list isar-users@googlegroups.com; contact isar-users+owners@googlegroups.com List-ID: X-Spam-Checked-In-Group: isar-users@googlegroups.com X-Google-Group-Id: 914930254986 List-Post: , List-Help: , List-Archive: , List-Unsubscribe: , X-Spam-Status: No, score=-4.9 required=5.0 tests=DKIMWL_WL_MED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,MAILING_LIST_MULTI, RCVD_IN_DNSWL_BLOCKED,RCVD_IN_MSPIKE_H2,RCVD_IN_RP_CERTIFIED, RCVD_IN_RP_RNBL,RCVD_IN_RP_SAFE,SPF_PASS autolearn=unavailable autolearn_force=no version=3.4.2 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on shymkent.ilbers.de X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?= We previously used the same sbom-chroot for generating the sbom of different root filesystems. This required to have a live copy of the sbom-chroot in the deploy dir, on which also was operated on. Further, this copy was left behind in the deploy dir. We improve this by just storing a minimized tarball of the sbom-chroot in the deploy dir and extract that into the workdir of the rootfs. Signed-off-by: Felix Moessbauer --- meta/classes/sbom.bbclass | 29 ++++++++++++++++--- .../sbom-chroot/sbom-chroot.bb | 11 ++++++- 2 files changed, 35 insertions(+), 5 deletions(-) diff --git a/meta/classes/sbom.bbclass b/meta/classes/sbom.bbclass index e3d0e702..69c5d1b0 100644 --- a/meta/classes/sbom.bbclass +++ b/meta/classes/sbom.bbclass @@ -23,7 +23,8 @@ SBOM_SPDX_NAMESPACE_PREFIX ?= "https://spdx.org/spdxdocs" DEPLOY_DIR_SBOM = "${DEPLOY_DIR_IMAGE}" SBOM_DIR = "${DEPLOY_DIR}/sbom" -SBOM_CHROOT = "${SBOM_DIR}/sbom-chroot" +SBOM_CHROOT = "${SBOM_DIR}/sbom-chroot.tar.zst" +SBOM_CHROOT_LOCAL = "${WORKDIR}/sbom-chroot" # adapted from the isar-cip-core image_uuid.bbclass def generate_document_uuid(d, warn_not_repr=True): @@ -40,14 +41,25 @@ def sbom_doc_uuid(d): if not d.getVar("SBOM_DOCUMENT_UUID"): d.setVar("SBOM_DOCUMENT_UUID", generate_document_uuid(d)) +prepare_sbom_chroot() { + create_chroot_parent_dir ${WORKDIR} + run_privileged_heredoc <<'EOF' + set -e + mkdir -p ${SBOM_CHROOT_LOCAL} + tar -xf ${SBOM_CHROOT} -C ${SBOM_CHROOT_LOCAL} +EOF +} + generate_sbom() { - run_privileged mkdir -p ${SBOM_CHROOT}/mnt/rootfs ${SBOM_CHROOT}/mnt/deploy-dir + run_privileged mkdir -p \ + ${SBOM_CHROOT_LOCAL}/mnt/rootfs \ + ${SBOM_CHROOT_LOCAL}/mnt/deploy-dir TIMESTAMP=$(date --iso-8601=s -d @${SOURCE_DATE_EPOCH}) bwrap \ --unshare-user \ --unshare-pid \ - --bind ${SBOM_CHROOT} / \ + --bind ${SBOM_CHROOT_LOCAL} / \ --bind ${ROOTFSDIR} /mnt/rootfs \ --bind ${DEPLOY_DIR_SBOM} /mnt/deploy-dir \ -- debsbom -v generate ${SBOM_DEBSBOM_TYPE_ARGS} -r /mnt/rootfs -o /mnt/deploy-dir/'${PN}-${DISTRO}-${MACHINE}' \ @@ -59,8 +71,17 @@ generate_sbom() { --timestamp $TIMESTAMP ${SBOM_DEBSBOM_EXTRA_ARGS} } +cleanup_sbom_chroot() { + run_privileged rm -rf ${SBOM_CHROOT_LOCAL} +} + do_generate_sbom[dirs] += "${DEPLOY_DIR_SBOM}" +do_generate_sbom[network] = "${TASK_USE_SUDO}" python do_generate_sbom() { sbom_doc_uuid(d) - bb.build.exec_func("generate_sbom", d) + try: + bb.build.exec_func("prepare_sbom_chroot", d) + bb.build.exec_func("generate_sbom", d) + finally: + bb.build.exec_func("cleanup_sbom_chroot", d) } diff --git a/meta/recipes-devtools/sbom-chroot/sbom-chroot.bb b/meta/recipes-devtools/sbom-chroot/sbom-chroot.bb index bf6d6683..fec1f502 100644 --- a/meta/recipes-devtools/sbom-chroot/sbom-chroot.bb +++ b/meta/recipes-devtools/sbom-chroot/sbom-chroot.bb @@ -27,7 +27,16 @@ ROOTFSDIR = "${WORKDIR}/rootfs" ROOTFS_PACKAGES = "${SBOM_IMAGE_INSTALL}" do_sbomchroot_deploy[dirs] = "${SBOM_DIR}" +do_sbomchroot_deploy[network] = "${TASK_USE_SUDO}" do_sbomchroot_deploy() { - ln -Tfsr "${ROOTFSDIR}" "${SBOM_CHROOT}" + # deploy with empty var to make it smaller + lopts="--one-file-system --exclude=var/*" + ZSTD="zstd -${SSTATE_ZSTD_CLEVEL} -T${ZSTD_THREADS}" + + run_privileged \ + tar -C ${ROOTFSDIR} -cpS $lopts ${ROOTFS_TAR_ATTR_FLAGS} . \ + | $ZSTD > ${SBOM_CHROOT} + # cleanup extracted rootfs + run_privileged rm -rf ${ROOTFSDIR} } addtask do_sbomchroot_deploy before do_build after do_rootfs