mirror of
https://github.com/linuxkit/linuxkit.git
synced 2025-07-23 19:05:37 +00:00
561ce6f4be
This commit removes Notary and Content Trust. Notary v1 is due to be replaced with Notary v2 soon. There is no clean migration path from one to the other. For now, this removes all signing from LinuxKit. We will look to add this back once a new Notary alternative becomes available. Signed-off-by: Dave Tucker <dave@dtucker.co.uk>
67 lines
2.3 KiB
Makefile
67 lines
2.3 KiB
Makefile
# This builds the supported LinuxKit kernels. Kernels are wrapped up
|
|
# in a minimal toybox container, which contains the bzImage, a tar
|
|
# ball with modules and the kernel source.
|
|
#
|
|
# Each kernel is pushed to hub twice, once as
|
|
# linuxkit/kernel:<kernel>.<major>.<minor>-<hash> and once as
|
|
# inuxkit/kernel:<kernel>.<major>.x. The <hash> is the git tree hash
|
|
# of the current directory. The build will only rebuild the kernel
|
|
# image if the git tree hash changed.
|
|
|
|
# Git tree hash of this directory. Override to force build
|
|
HASH?=$(shell git ls-tree HEAD -- ../$(notdir $(CURDIR)) | awk '{print $$3}')
|
|
# Name and Org on Hub
|
|
ORG?=linuxkitprojects
|
|
IMAGE:=kernel-shiftfs
|
|
|
|
.PHONY: check tag push sign
|
|
# Targets:
|
|
# build: builds all kernels
|
|
# push: pushes all tagged kernel images to hub
|
|
# sign: sign and push all kernel images to hub
|
|
build:
|
|
push:
|
|
sign:
|
|
|
|
# A template for defining kernel build
|
|
# Arguments:
|
|
# $1: Full kernel version, e.g., 4.9.22
|
|
# $2: Kernel "series", e.g., 4.9.x
|
|
# $3: Build a debug kernel (used as suffix for image)
|
|
# This defines targets like:
|
|
# build_4.9.x, push_4.9.x and sign_4.9.x and adds them as dependencies
|
|
# to the global targets
|
|
# Set $3 to "_dbg", to build debug kernels. This defines targets like
|
|
# build_4.9.x_dbg and adds "_dbg" to the hub image name.
|
|
define kernel
|
|
build_$(2)$(3): Dockerfile Makefile $(wildcard patches-$(2)/*) kernel_config-$(2) kernel_config.debug
|
|
docker pull $(ORG)/$(IMAGE):$(1)$(3)-$(HASH) || \
|
|
docker build \
|
|
--build-arg KERNEL_VERSION=$(1) \
|
|
--build-arg KERNEL_SERIES=$(2) \
|
|
--build-arg DEBUG=$(3) \
|
|
--no-cache -t $(ORG)/$(IMAGE):$(1)$(3)-$(HASH) .
|
|
|
|
push_$(2)$(3): build_$(2)$(3)
|
|
docker pull $(ORG)/$(IMAGE):$(1)$(3)-$(HASH) || \
|
|
(docker push $(ORG)/$(IMAGE):$(1)$(3)-$(HASH) && \
|
|
docker tag $(ORG)/$(IMAGE):$(1)$(3)-$(HASH) $(ORG)/$(IMAGE):$(2)$(3) && \
|
|
docker push $(ORG)/$(IMAGE):$(2)$(3))
|
|
|
|
sign_$(2)$(3): build_$(2)$(3)
|
|
docker pull $(ORG)/$(IMAGE):$(1)$(3)-$(HASH) || \
|
|
( docker push $(ORG)/$(IMAGE):$(1)$(3)-$(HASH) && \
|
|
docker tag $(ORG)/$(IMAGE):$(1)$(3)-$(HASH) $(ORG)/$(IMAGE):$(2)$(3) && \
|
|
docker push $(ORG)/$(IMAGE):$(2)$(3))
|
|
|
|
build: build_$(2)$(3)
|
|
push: push_$(2)$(3)
|
|
sign: sign_$(2)$(3)
|
|
endef
|
|
|
|
#
|
|
# Build Targets
|
|
# Debug targets only for latest stable and LTS stable
|
|
#
|
|
$(eval $(call kernel,4.11.4,4.11.x))
|