From 385cb7f36a0538094fda87168c0298b4c38985f9 Mon Sep 17 00:00:00 2001 From: ahmedtouahria Date: Mon, 5 Jan 2026 10:19:20 +0100 Subject: [PATCH 1/2] Update entrypoint script to ensure directory permissions for gvm --- .docker/Dockerfile | 1 - .docker/entrypoint.sh | 13 ++++++++++++- 2 files changed, 12 insertions(+), 2 deletions(-) diff --git a/.docker/Dockerfile b/.docker/Dockerfile index ba34511..d2f629b 100644 --- a/.docker/Dockerfile +++ b/.docker/Dockerfile @@ -49,7 +49,6 @@ COPY .docker/entrypoint.sh /usr/local/bin/entrypoint RUN python3 -m pip install --break-system-packages /greenbone-feed-sync/* RUN chown -R gvm:gvm /greenbone-feed-sync && \ - chown -R gvm:gvm /var/lib/ && \ chmod 755 /usr/local/bin/entrypoint ENTRYPOINT [ "/usr/local/bin/entrypoint" ] diff --git a/.docker/entrypoint.sh b/.docker/entrypoint.sh index 2cb28d6..5c0a67c 100644 --- a/.docker/entrypoint.sh +++ b/.docker/entrypoint.sh @@ -1,3 +1,14 @@ #!/bin/bash -exec gosu gvm "$@" +# Ensure the directories for lock files exist and are owned by gvm. +# This part runs as root (the default user before gosu) to ensure permissions are set correctly. +mkdir -p /var/lib/openvas +chown gvm:gvm /var/lib/openvas +chmod 775 /var/lib/openvas # Give group write access as well, for broader compatibility + +mkdir -p /var/lib/gvm +chown gvm:gvm /var/lib/gvm +chmod 775 /var/lib/gvm # Give group write access as well, for broader compatibility + +# Now execute the main command passed to the container as the gvm user. +exec gosu gvm "$@" \ No newline at end of file From 20ba643f27b9f83d39b04937075fb1c13374f149 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Bj=C3=B6rn=20Ricks?= Date: Mon, 5 Jan 2026 10:25:21 +0100 Subject: [PATCH 2/2] Update .docker/entrypoint.sh --- .docker/entrypoint.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.docker/entrypoint.sh b/.docker/entrypoint.sh index 5c0a67c..be34b47 100644 --- a/.docker/entrypoint.sh +++ b/.docker/entrypoint.sh @@ -11,4 +11,4 @@ chown gvm:gvm /var/lib/gvm chmod 775 /var/lib/gvm # Give group write access as well, for broader compatibility # Now execute the main command passed to the container as the gvm user. -exec gosu gvm "$@" \ No newline at end of file +exec gosu gvm "$@"