From b1c57d08537fb912cf50a326567b438551f6bd35 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Zolt=C3=A1n=20Felleg?= <zoltan.felleg@userrendszerhaz.hu>
Date: Tue, 4 Jun 2024 14:16:06 +0200
Subject: [PATCH] Updated scripts/create-base.sh (unprivilege tweaks).

---
 scripts/create-base.sh | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/scripts/create-base.sh b/scripts/create-base.sh
index 58736fe..ad4dbdb 100755
--- a/scripts/create-base.sh
+++ b/scripts/create-base.sh
@@ -318,6 +318,10 @@ postinstall()
 
 unprivilege()
 {
+    find $CONTAINER_BUILDROOT -perm -u+s >/tmp/us.$$
+    find $CONTAINER_BUILDROOT -perm -g+s >/tmp/gs.$$
+    find $CONTAINER_BUILDROOT -perm -o+t >/tmp/ot.$$
+
     PRIV_UID=0
     UNPRIV_UID=$(( $PRIV_UID + 100000 ))
     PRIV_UID_COUNT=$(find $CONTAINER_BUILDROOT -uid $PRIV_UID | wc -l)
@@ -349,6 +353,20 @@ unprivilege()
         UNPRIV_GID=$(( $PRIV_GID + 100000 ))
         chgrp --no-dereference $UNPRIV_GID $PRIV_GID_FILE
     done
+
+    cat /tmp/us.$$ | while read US_NODE
+    do
+        chmod u+s $US_NODE
+    done
+    cat /tmp/gs.$$ | while read GS_NODE
+    do
+        chmod g+s $GS_NODE
+    done
+    cat /tmp/ot.$$ | while read OT_NODE
+    do
+        chmod o+t $OT_NODE
+    done
+    rm --force /tmp/us.$$ /tmp/gs.$$ /tmp/ot.$$
 }
 
 set_variables $1
-- 
2.54.0