From cac37c848bdd56ea3b506e9f882181b74b920068 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Tue, 8 Oct 2024 14:05:51 -0700
Subject: [PATCH] Cleaner gvisor-updater ExecStart

Signed-off-by: Tommy <contact@tommytran.io>
---
 x86-QEMU-Docker.yml | 16 ++++++----------
 1 file changed, 6 insertions(+), 10 deletions(-)

diff --git a/x86-QEMU-Docker.yml b/x86-QEMU-Docker.yml
index 8891e2c..506c719 100644
--- a/x86-QEMU-Docker.yml
+++ b/x86-QEMU-Docker.yml
@@ -94,17 +94,13 @@ systemd:
         Type=oneshot
         RuntimeDirectory=gvisor-updater
         WorkingDirectory=/run/gvisor-updater
+        
         ExecStart=/usr/bin/sleep 5
-        ExecStart=/usr/bin/curl -sS -O https://storage.googleapis.com/gvisor/releases/release/latest/x86_64/runsc
-        ExecStart=/usr/bin/curl -sS -O https://storage.googleapis.com/gvisor/releases/release/latest/x86_64/runsc.sha512
-        ExecStart=/usr/bin/curl -sS -O https://storage.googleapis.com/gvisor/releases/release/latest/x86_64/containerd-shim-runsc-v1
-        ExecStart=/usr/bin/curl -sS -O https://storage.googleapis.com/gvisor/releases/release/latest/x86_64/containerd-shim-runsc-v1.sha512
-        ExecStart=/usr/bin/sha512sum -c runsc.sha512 -c containerd-shim-runsc-v1.sha512
-        ExecStart=/usr/bin/rm -f runsc.sha512 containerd-shim-runsc-v1.sha512
-        ExecStart=+/usr/bin/chown root:root runsc containerd-shim-runsc-v1
-        ExecStart=+/usr/bin/chmod a+rx runsc containerd-shim-runsc-v1
-        ExecStart=+/usr/bin/mv runsc containerd-shim-runsc-v1 /var/usrlocal/bin
-        ExecStart=+/usr/bin/chcon system_u:object_r:container_runtime_exec_t:s0 /var/usrlocal/bin/runsc
+        ExecStart=curl -sS --remote-name-all 'https://storage.googleapis.com/gvisor/releases/release/latest/x86_64/runsc' 'https://storage.googleapis.com/gvisor/releases/release/latest/x86_64/runsc.sha512' 'https://storage.googleapis.com/gvisor/releases/release/latest/x86_64/containerd-shim-runsc-v1' 'https://storage.googleapis.com/gvisor/releases/release/latest/x86_64/containerd-shim-runsc-v1.sha512'
+        ExecStart=sha512sum -c runsc.sha512 -c containerd-shim-runsc-v1.sha512
+        ExecStart=+chown root:root runsc containerd-shim-runsc-v1
+        ExecStart=+chmod a+rx runsc containerd-shim-runsc-v1
+        ExecStart=+mv -Z runsc containerd-shim-runsc-v1 /usr/local/bin/
 
         DynamicUser=true
         CapabilityBoundingSet=