*-tcwg-*: Integrity checking for autogenerated Dockerfiles.

In order to avoid accidental modification of auto-generated tcwg Dockerfiles, add checksum validation to those files. This patch: . adds comments to generated Dockerfiles indicating the source file and the file's md5sum. . regenerates all *-tcwg-* Dockerfiles (to add those comments) . adds validation of the md5sum to the build-image.sh . restricts search for Dockerfile.in to the tcwg-base hierarchy Change-Id: I691ef4f1d93820bcdd7d50e19c11542a1db52875
author: Charles Baylis <charles.baylis@linaro.org> 2017-09-11 20:38:09 +0100
committer: Charles Baylis <charles.baylis@linaro.org> 2017-09-12 19:06:14 +0100
commit: 89033e301c73ef570d1b272383d4e8c536e7b9a1 (patch)
tree: e74e1c0c0916732edb71c44e19a0745707916a82 /xenial-arm64-tcwg-base
parent: 850b3cd3b0f08ac0dc232626d7ee05b210680137 (diff)
4 files changed, 8 insertions, 0 deletions
diff --git a/xenial-arm64-tcwg-base/Dockerfile b/xenial-arm64-tcwg-base/Dockerfile
index dc2d71ea..e3f09160 100644
--- a/xenial-arm64-tcwg-base/Dockerfile
+++ b/xenial-arm64-tcwg-base/Dockerfile
@@ -1,3 +1,4 @@
+# Auto generated from tcwg-base/Dockerfile.in. Do not edit.
 FROM linaro/base-arm64-ubuntu:xenial
 
 RUN (url="http://ports.ubuntu.com/ubuntu-ports/"; \
@@ -98,3 +99,4 @@ VOLUME /tmp
 
 EXPOSE 22
 CMD ["/usr/sbin/sshd", "-D"]
+# checksum: 40397c18fc66ea4780a088b64ff6bb9f
diff --git a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/Dockerfile b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/Dockerfile
index 8ca789e4..a7b83a1b 100644
--- a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/Dockerfile
+++ b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/Dockerfile
@@ -1,3 +1,4 @@
+# Auto generated from tcwg-base/tcwg-build/Dockerfile.in. Do not edit.
 FROM linaro/ci-arm64-tcwg-base-ubuntu:xenial
 
 RUN groupadd -g 9000 tcwg-infra \
@@ -9,3 +10,4 @@ RUN groupadd -g 9000 tcwg-infra \
 COPY tcwg-buildslave /home/tcwg-buildslave
 RUN chown -R tcwg-buildslave:tcwg-infra /home/tcwg-buildslave/ \
  && chmod 0700 /home/tcwg-buildslave/.ssh/
+# checksum: 680a06d7dd1b149519daeb1283efe320
diff --git a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/xenial-arm64-tcwg-test/Dockerfile b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/xenial-arm64-tcwg-test/Dockerfile
index 76dcac7f..ef1ce192 100644
--- a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/xenial-arm64-tcwg-test/Dockerfile
+++ b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-build/xenial-arm64-tcwg-test/Dockerfile
@@ -1,3 +1,4 @@
+# Auto generated from tcwg-base/tcwg-build/tcwg-test/Dockerfile.in. Do not edit.
 FROM linaro/ci-arm64-tcwg-build-ubuntu:xenial
 
 COPY tcwg-buildslave/.ssh /root/.ssh
@@ -5,3 +6,4 @@ COPY tcwg-buildslave/.ssh /root/.ssh
 RUN chmod 0700 /root/.ssh/ \
  && sed -i -e "/.*PermitRootLogin.*/d" /etc/ssh/sshd_config \
  && echo "PermitRootLogin without-password" >> /etc/ssh/sshd_config
+# checksum: 9d6f202aa1c9a2f4391cb0687d75c45a
diff --git a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-dev/Dockerfile b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-dev/Dockerfile
index 5b5ad3d4..1e4231a0 100644
--- a/xenial-arm64-tcwg-base/xenial-arm64-tcwg-dev/Dockerfile
+++ b/xenial-arm64-tcwg-base/xenial-arm64-tcwg-dev/Dockerfile
@@ -1,3 +1,4 @@
+# Auto generated from tcwg-base/tcwg-dev/Dockerfile.in. Do not edit.
 FROM linaro/ci-arm64-tcwg-base-ubuntu:xenial
 
 COPY run.sh .
@@ -46,3 +47,4 @@ RUN mkdir -p /tmp/.X11-unix /tmp/.ICE-unix \
 
 ENTRYPOINT ["/run.sh"]
 CMD ["start.sh"]
+# checksum: b696da1932a5d731c66720c3fb02bfcd
author	Charles Baylis <charles.baylis@linaro.org>	2017-09-11 20:38:09 +0100
committer	Charles Baylis <charles.baylis@linaro.org>	2017-09-12 19:06:14 +0100
commit	89033e301c73ef570d1b272383d4e8c536e7b9a1 (patch)
tree	e74e1c0c0916732edb71c44e19a0745707916a82 /xenial-arm64-tcwg-base
parent	850b3cd3b0f08ac0dc232626d7ee05b210680137 (diff)