diff options
author | Charles Baylis <charles.baylis@linaro.org> | 2017-09-11 20:38:09 +0100 |
---|---|---|
committer | Charles Baylis <charles.baylis@linaro.org> | 2017-09-12 19:06:14 +0100 |
commit | 89033e301c73ef570d1b272383d4e8c536e7b9a1 (patch) | |
tree | e74e1c0c0916732edb71c44e19a0745707916a82 /xenial-arm64-tcwg-base | |
parent | 850b3cd3b0f08ac0dc232626d7ee05b210680137 (diff) |
*-tcwg-*: Integrity checking for autogenerated Dockerfiles.
In order to avoid accidental modification of auto-generated
tcwg Dockerfiles, add checksum validation to those files.
This patch:
. adds comments to generated Dockerfiles indicating the
source file and the file's md5sum.
. regenerates all *-tcwg-* Dockerfiles (to add those comments)
. adds validation of the md5sum to the build-image.sh
. restricts search for Dockerfile.in to the tcwg-base hierarchy
Change-Id: I691ef4f1d93820bcdd7d50e19c11542a1db52875
Diffstat (limited to 'xenial-arm64-tcwg-base')
4 files changed, 8 insertions, 0 deletions
diff --git a/xenial-arm64-tcwg-base/Dockerfile b/xenial-arm64-tcwg-base/Dockerfile index dc2d71ea..e3f09160 100644 --- a/xenial-arm64-tcwg-base/Dockerfile +++ b/xenial-arm64-tcwg-base/Dockerfile @@ -1,3 +1,4 @@ +# Auto generated from tcwg-base/Dockerfile.in. Do not edit. FROM linaro/base-arm64-ubuntu:xenial RUN (url="http://ports.ubuntu.com/ubuntu-ports/"; \ @@ -98,3 +99,4 @@ VOLUME /tmp EXPOSE 22 CMD ["/usr/sbin/sshd", "-D"] +# checksum: 40397c18fc66ea4780a088b64ff6bb9f diff --git a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/Dockerfile b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/Dockerfile index 8ca789e4..a7b83a1b 100644 --- a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/Dockerfile +++ b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/Dockerfile @@ -1,3 +1,4 @@ +# Auto generated from tcwg-base/tcwg-build/Dockerfile.in. Do not edit. FROM linaro/ci-arm64-tcwg-base-ubuntu:xenial RUN groupadd -g 9000 tcwg-infra \ @@ -9,3 +10,4 @@ RUN groupadd -g 9000 tcwg-infra \ COPY tcwg-buildslave /home/tcwg-buildslave RUN chown -R tcwg-buildslave:tcwg-infra /home/tcwg-buildslave/ \ && chmod 0700 /home/tcwg-buildslave/.ssh/ +# checksum: 680a06d7dd1b149519daeb1283efe320 diff --git a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/xenial-arm64-tcwg-test/Dockerfile b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/xenial-arm64-tcwg-test/Dockerfile index 76dcac7f..ef1ce192 100644 --- a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/xenial-arm64-tcwg-test/Dockerfile +++ b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/xenial-arm64-tcwg-test/Dockerfile @@ -1,3 +1,4 @@ +# Auto generated from tcwg-base/tcwg-build/tcwg-test/Dockerfile.in. Do not edit. FROM linaro/ci-arm64-tcwg-build-ubuntu:xenial COPY tcwg-buildslave/.ssh /root/.ssh @@ -5,3 +6,4 @@ COPY tcwg-buildslave/.ssh /root/.ssh RUN chmod 0700 /root/.ssh/ \ && sed -i -e "/.*PermitRootLogin.*/d" /etc/ssh/sshd_config \ && echo "PermitRootLogin without-password" >> /etc/ssh/sshd_config +# checksum: 9d6f202aa1c9a2f4391cb0687d75c45a diff --git a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-dev/Dockerfile b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-dev/Dockerfile index 5b5ad3d4..1e4231a0 100644 --- a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-dev/Dockerfile +++ b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-dev/Dockerfile @@ -1,3 +1,4 @@ +# Auto generated from tcwg-base/tcwg-dev/Dockerfile.in. Do not edit. FROM linaro/ci-arm64-tcwg-base-ubuntu:xenial COPY run.sh . @@ -46,3 +47,4 @@ RUN mkdir -p /tmp/.X11-unix /tmp/.ICE-unix \ ENTRYPOINT ["/run.sh"] CMD ["start.sh"] +# checksum: b696da1932a5d731c66720c3fb02bfcd |