nixos/github-runners: clean workDir as root

Purge contents of `workDir` as root to also allow the removal of files
marked as read-only. It is easy to create read-only files in `workDir`,
e.g., by copying files from the Nix store.
This commit is contained in:
Vincent Haupert 2023-02-23 08:41:06 +01:00
parent 79e0d204e2
commit 36949b9718

View file

@ -124,6 +124,8 @@ in
# The state directory is entirely empty which indicates a first start # The state directory is entirely empty which indicates a first start
copy_tokens copy_tokens
fi fi
# Always clean workDir
find -H "$WORK_DIRECTORY" -mindepth 1 -delete
''; '';
configureRunner = writeScript "configure" '' configureRunner = writeScript "configure" ''
if [[ -e "${newConfigTokenPath}" ]]; then if [[ -e "${newConfigTokenPath}" ]]; then
@ -159,9 +161,6 @@ in
fi fi
''; '';
setupWorkDir = writeScript "setup-work-dirs" '' setupWorkDir = writeScript "setup-work-dirs" ''
# Cleanup previous service
${pkgs.findutils}/bin/find -H "$WORK_DIRECTORY" -mindepth 1 -delete
# Link _diag dir # Link _diag dir
ln -s "$LOGS_DIRECTORY" "$WORK_DIRECTORY/_diag" ln -s "$LOGS_DIRECTORY" "$WORK_DIRECTORY/_diag"